Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: FRST Log Auswertung?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 22.09.2015, 18:04   #1
zoos001
 
FRST Log Auswertung? - Standard

FRST Log Auswertung?



Hey da mein virsenscanner heut ein paar mal rumgesponnen hat und mein pc auch sonst in letzter zeit irgenwie immer ein bisschen faxen gemacht hat wäre es nett wenn sich jemand mal mein first logfile anschauen könnte ?

Beste grüße zoos


FRST.txt

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
durchgeführt von NEO007D (Administrator) auf DESKTOP-D0B9UFG (22-09-2015 17:47:49)
Gestartet von C:\Users\NEO007D\Downloads
Geladene Profile: NEO007D (Verfügbare Profile: NEO007D)
Platform: Windows 10 Education (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe
(Foxit Software Inc.) D:\Programme\Office\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Igor Pavlov) C:\Program Files\7-Zip\7zFM.exe
() D:\Programme\Geo\OpenGeo\services\PostgreSQL.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) D:\Programme\Geo\OpenGeo\pgsql\bin\postgres.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) D:\Programme\E-Mail\thunderbird.exe
() D:\Programme\Geo\OpenGeo\services\Jetty.exe
(Oracle Corporation) D:\Programme\Geo\OpenGeo\jetty\jre\bin\javaw.exe
(Oracle Corporation) D:\Programme\Geo\OpenGeo\jetty\jre\bin\java.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) D:\Games\Steam\Steam.exe
(Valve Corporation) D:\Games\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Games\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Games\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(MPC-HC Team) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(The Document Foundation) D:\Programme\Office\LibreOffice\program\swriter.exe
(The Document Foundation) D:\Programme\Office\LibreOffice\program\soffice.exe
(The Document Foundation) D:\Programme\Office\LibreOffice\program\soffice.bin
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avcenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDSettings.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16464_none_116100d161f6ab1d\TiWorker.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-08-19] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [14601160 2015-07-02] (Logitech Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [39175960 2015-08-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-06] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [54520 2015-07-28] (Panda Security, S.L.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Run: [Steam] => D:\Games\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224 2015-07-29] (Google)
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.)
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Run: [GoogleChromeAutoLaunch_CA6F0D03928EF0FF06DB2A0F60B460BB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-12] (Google Inc.)
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\RunOnce: [Uninstall C:\Users\NEO007D\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\NEO007D\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{728554b6-9a0e-41a8-8d26-81b8a36aef59}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{729d141b-7fc2-4129-8f53-13189ff76a3b}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\Programme\Office\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\Programme\Office\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\Programme\Office\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\Programme\Office\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hp&ts=1437750092&z=5d8d4b5ea36878e60d40d9dg9zccambm7w7efe1z1g&from=cor&uid=SAMSUNGXSP2504C_S09QJ1MA114826"
CHR Profile: C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-08-28]
CHR Extension: (Google Präsentationen) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-19]
CHR Extension: (Google Docs) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-19]
CHR Extension: (Google Drive) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-19]
CHR Extension: (YouTube) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-19]
CHR Extension: (Google-Suche) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-19]
CHR Extension: (Google Tabellen) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-19]
CHR Extension: (Avira Browserschutz) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-09-04]
CHR Extension: (Chrome Remote Desktop) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-08-28]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]
CHR Extension: (AdBlock) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-08-19]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-09-22]
CHR Extension: (Stealthy) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieaebnkibonmpbhdaanjkmedikadnoje [2015-09-14]
CHR Extension: (Modify Headers for Google Chrome™) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\innpjfdalfhpcoinfnehdnbkglpmogdi [2015-09-14]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-19]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-08-27]
CHR Extension: (Premiumize.me) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\lojbjecfjcnaledoelddkcjlifhhfebm [2015-09-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-19]
CHR Extension: (Late Night) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgbdhkpacgdhfabeceekiafonfkipohm [2015-09-14]
CHR Extension: (Google Mail) - C:\Users\NEO007D\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-19]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-08-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-06] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-06] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe [69448 2015-07-24] (Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-20] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-20] (Dropbox, Inc.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-09-09] () [Datei ist nicht signiert]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 FoxitCloudUpdateService; D:\Programme\Office\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-09-09] (Foxit Software Inc.)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [1169616 2015-06-04] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96600 2015-06-04] ()
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [589520 2015-06-04] ()
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-19] (Intel Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2015-07-29] (Panda Security, S.L.)
R2 OpenGeo Jetty; D:\Programme\Geo\OpenGeo\services\Jetty.exe [7168 2015-03-31] () [Datei ist nicht signiert]
R2 OpenGeo PostgreSQL 9.3; D:\Programme\Geo\OpenGeo\services\PostgreSQL.exe [7680 2015-03-31] () [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-21] (Electronic Arts)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [73464 2015-07-23] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2015-07-28] (Panda Security, S.L.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-08-19] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-08-06] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-08-06] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-08-06] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-08-06] (Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-30] (Disc Soft Ltd)
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-05-08] (AnchorFree Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech Inc.)
R1 NNSALPC; C:\Windows\system32\DRIVERS\NNSALPC.sys [103824 2015-07-17] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\system32\DRIVERS\NNSHTTP.sys [211352 2015-07-17] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\system32\DRIVERS\NNSHTTPS.sys [120216 2015-07-17] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\system32\DRIVERS\NNSIDS.sys [120208 2015-07-17] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [58616 2015-06-19] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\system32\DRIVERS\NNSPICC.sys [112536 2015-07-17] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\system32\DRIVERS\NNSPIHSW.sys [87448 2015-07-17] ()
R1 NNSPOP3; C:\Windows\system32\DRIVERS\NNSPOP3.sys [133528 2015-07-17] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\system32\DRIVERS\NNSPROT.sys [309648 2015-07-17] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\system32\DRIVERS\NNSPRV.sys [179608 2015-07-17] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\system32\DRIVERS\NNSSMTP.sys [122776 2015-07-17] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\system32\DRIVERS\NNSSTRM.sys [267160 2015-07-17] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\system32\DRIVERS\NNSTLSC.sys [115600 2015-07-17] (Panda Security, S.L.)
R2 PSINAflt; C:\Windows\system32\DRIVERS\PSINAflt.sys [173464 2015-07-22] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [130968 2015-07-22] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\system32\DRIVERS\PSINKNC.sys [207256 2015-07-22] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [133528 2015-07-22] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\system32\DRIVERS\PSINProt.sys [143768 2015-07-22] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\system32\DRIVERS\PSINReg.sys [117144 2015-07-22] (Panda Security, S.L.)
U3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [62080 2015-06-16] (Panda Security, S.L.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42184 2015-05-08] (Anchorfree Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-22 17:41 - 2015-09-22 17:42 - 00041825 _____ C:\Users\NEO007D\Downloads\Addition.txt
2015-09-22 17:39 - 2015-09-22 17:47 - 00029574 _____ C:\Users\NEO007D\Downloads\FRST.txt
2015-09-22 17:39 - 2015-09-22 17:47 - 00000000 ____D C:\FRST
2015-09-22 17:37 - 2015-09-22 17:39 - 02191360 _____ (Farbar) C:\Users\NEO007D\Downloads\FRST64.exe
2015-09-22 17:34 - 2015-09-22 17:47 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-09-22 17:34 - 2015-09-22 17:34 - 00001464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-09-22 17:34 - 2015-09-22 17:34 - 00001452 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-09-22 17:34 - 2015-09-22 17:34 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-09-22 17:34 - 2015-09-22 17:34 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-09-22 17:34 - 2015-09-22 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-09-22 17:34 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2015-09-22 17:28 - 2015-09-22 17:28 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\NEO007D\Downloads\spybot-2.4.exe
2015-09-22 17:24 - 2015-09-22 17:24 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Panda Security
2015-09-22 17:24 - 2015-07-22 00:27 - 00117144 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINReg.sys
2015-09-22 17:24 - 2015-07-22 00:22 - 00207256 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINKNC.sys
2015-09-22 17:24 - 2015-07-22 00:22 - 00173464 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINAflt.sys
2015-09-22 17:24 - 2015-07-22 00:22 - 00143768 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINProt.sys
2015-09-22 17:24 - 2015-07-22 00:22 - 00133528 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINProc.sys
2015-09-22 17:24 - 2015-07-22 00:22 - 00130968 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSINFile.sys
2015-09-22 17:24 - 2015-06-16 16:41 - 00062080 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2015-09-22 17:23 - 2015-09-22 17:25 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus.lnk
2015-09-22 17:23 - 2015-09-22 17:24 - 00000000 ____D C:\Program Files (x86)\Panda Security
2015-09-22 17:23 - 2015-09-22 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2015-09-22 17:22 - 2015-09-22 17:24 - 00000000 ____D C:\ProgramData\Panda Security
2015-09-22 17:22 - 2015-09-22 17:22 - 64326088 _____ C:\Users\NEO007D\Downloads\PANDAFREEAV.exe
2015-09-22 17:14 - 2015-09-22 17:16 - 00002885 _____ C:\Users\NEO007D\Desktop\DM.lnk
2015-09-22 17:13 - 2015-09-22 17:13 - 00889416 _____ (Microsoft Corporation) C:\Users\NEO007D\Downloads\dotNetFx40_Full_setup.exe
2015-09-22 16:50 - 2015-09-22 17:06 - 00505681 _____ C:\Users\NEO007D\Downloads\OpenGeo Suite Enterprise.rar
2015-09-22 15:55 - 2015-09-22 15:55 - 00001103 _____ C:\Users\NEO007D\Desktop\QGIS Browser 2.8.3.lnk
2015-09-22 15:55 - 2015-09-22 15:55 - 00001087 _____ C:\Users\NEO007D\Desktop\QGIS Desktop 2.8.3.lnk
2015-09-22 15:55 - 2015-09-22 15:55 - 00001071 _____ C:\Users\Public\Desktop\SAGA GIS (2.1.2).lnk
2015-09-22 15:55 - 2015-09-22 15:55 - 00000997 _____ C:\Users\Public\Desktop\MSYS.lnk
2015-09-22 15:55 - 2015-09-22 15:55 - 00000862 _____ C:\Users\Public\Desktop\OSGeo4W Shell.lnk
2015-09-22 15:54 - 2015-09-22 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QGIS Wien
2015-09-22 15:54 - 2015-09-22 15:54 - 00001135 _____ C:\Users\NEO007D\Desktop\GRASS GIS 6.4.3.lnk
2015-09-22 15:47 - 2015-09-22 15:50 - 299530368 _____ C:\Users\NEO007D\Downloads\QGIS-OSGeo4W-2.8.3-1-Setup-x86_64.exe
2015-09-22 15:39 - 2015-09-22 15:39 - 00016148 _____ C:\Windows\system32\DESKTOP-D0B9UFG_NEO007D_HistoryPrediction.bin
2015-09-22 14:50 - 2015-09-22 14:50 - 15327856 _____ C:\Users\NEO007D\Downloads\v3.9.0.zip
2015-09-22 13:49 - 2015-09-22 13:49 - 00001221 _____ C:\Users\NEO007D\AppData\Local\recently-used.xbel
2015-09-22 13:44 - 2015-09-22 13:46 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenGeo Suite 4.7
2015-09-22 13:44 - 2015-09-22 13:44 - 00000000 ____D C:\ProgramData\Boundless
2015-09-22 13:33 - 2015-09-22 13:35 - 416463347 _____ C:\Users\NEO007D\Downloads\OpenGeoSuite-4.7.zip
2015-09-21 14:09 - 2015-09-21 14:10 - 00821704 _____ C:\Users\NEO007D\Downloads\fires.zip
2015-09-21 13:19 - 2015-09-22 16:33 - 00000000 ____D C:\Users\NEO007D\.qgis2
2015-09-21 13:19 - 2015-09-22 16:33 - 00000000 ____D C:\Users\NEO007D\.matplotlib
2015-09-21 13:18 - 2015-09-21 13:18 - 00000000 ____D C:\Users\NEO007D\Desktop\Gis
2015-09-21 13:10 - 2015-09-21 13:16 - 00000000 ____D C:\Users\NEO007D\Documents\GIS DataBase
2015-09-21 13:01 - 2015-09-21 13:09 - 300645221 _____ C:\Users\NEO007D\Downloads\QGIS-OSGeo4W-2.10.1-1-Setup-x86_64.exe
2015-09-21 12:59 - 2015-09-21 12:59 - 00182207 _____ C:\Users\NEO007D\Downloads\Australia_and_New_Zealand_7d.zip
2015-09-21 12:58 - 2015-09-21 12:58 - 00015283 _____ C:\Users\NEO007D\Downloads\Canada_7d.zip
2015-09-21 01:54 - 2015-09-21 01:54 - 00000574 _____ C:\Users\NEO007D\Downloads\gnupg-2.1.8.tar.bz2.sig
2015-09-21 01:51 - 2015-09-21 01:51 - 04900705 _____ C:\Users\NEO007D\Downloads\gnupg-2.1.8.tar.bz2
2015-09-21 01:47 - 2015-09-21 01:47 - 00001758 _____ C:\Users\NEO007D\Downloads\0x91393CE0.asc
2015-09-21 01:45 - 2015-09-21 01:45 - 00011057 _____ C:\Users\NEO007D\Downloads\hijackthis.log
2015-09-21 01:42 - 2015-09-21 01:44 - 00388608 _____ (Trend Micro Inc.) C:\Users\NEO007D\Downloads\HijackThis_2.0.5.exe
2015-09-21 01:42 - 2015-09-21 01:42 - 00388608 _____ (Trend Micro Inc.) C:\Users\NEO007D\Downloads\HijackThis_2.0.5 (1).exe
2015-09-21 01:42 - 2015-09-21 01:42 - 00000000 ____D C:\Users\NEO007D\Documents\PGP
2015-09-21 01:39 - 2015-09-21 01:39 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\PGP Corporation
2015-09-21 01:39 - 2015-09-21 01:39 - 00000000 ____D C:\Users\NEO007D\AppData\Local\PGP Corporation
2015-09-21 01:35 - 2015-09-21 18:00 - 00000022 _____ C:\Windows\S.dirmngr
2015-09-21 01:34 - 2015-09-21 01:34 - 00135146 _____ C:\Windows\SysWOW64\PGPlspRollback.reg
2015-09-21 01:32 - 2015-09-21 01:32 - 15865898 _____ C:\Users\NEO007D\Downloads\PGPDesktop.zip
2015-09-21 00:05 - 2015-09-21 00:05 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-09-21 00:04 - 2015-09-21 00:05 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Origin
2015-09-21 00:04 - 2015-09-21 00:05 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Origin
2015-09-21 00:02 - 2015-09-21 01:34 - 00000000 ____D C:\ProgramData\Origin
2015-09-21 00:02 - 2015-09-21 00:02 - 00001052 _____ C:\Users\Public\Desktop\Origin.lnk
2015-09-21 00:02 - 2015-09-21 00:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-09-21 00:02 - 2015-09-21 00:02 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-09-21 00:01 - 2015-09-21 00:03 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-21 00:01 - 2015-09-21 00:01 - 17113896 _____ (Electronic Arts, Inc.) C:\Users\NEO007D\Downloads\OriginThinSetup.exe
2015-09-20 16:52 - 2015-09-20 16:52 - 00000000 ____D C:\Windows\system32\Drivers\etc\host edit
2015-09-20 16:46 - 2015-09-20 16:57 - 00001131 _____ C:\Users\NEO007D\Desktop\hosts.lnk
2015-09-20 16:33 - 2015-09-20 16:57 - 00945306 _____ C:\Users\NEO007D\Desktop\Chum (mit Wasserzeichen).tif
2015-09-20 16:27 - 2015-09-20 16:27 - 00000743 _____ C:\Users\NEO007D\Desktop\PhotoZoom Pro 6.lnk
2015-09-20 16:27 - 2015-09-20 16:27 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoZoom Pro 6
2015-09-20 16:26 - 2015-09-20 16:26 - 00000000 ____D C:\Program Files\PhotoZoom Pro 6
2015-09-20 16:25 - 2015-09-21 01:30 - 00000000 ____D C:\Users\NEO007D\Downloads\BenVista PhotoZoom Pro v6 0 6 Multilingual Incl Keymaker-CORE
2015-09-20 16:23 - 2015-09-20 16:23 - 00000932 _____ C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\keygen.lnk
2015-09-20 16:20 - 2015-09-20 16:23 - 00000000 ____D C:\Users\NEO007D\Downloads\BPZP 6 0
2015-09-19 18:01 - 2015-09-19 18:01 - 01110476 _____ C:\Users\NEO007D\Downloads\7z920.exe
2015-09-19 18:01 - 2015-09-19 18:01 - 01110476 _____ C:\Users\NEO007D\Downloads\7z920 (1).exe
2015-09-19 02:18 - 2015-09-19 02:18 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\WinRAR
2015-09-19 02:18 - 2015-09-19 02:18 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-19 02:18 - 2015-09-19 02:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-18 17:18 - 2015-09-22 17:06 - 00000000 ____D C:\Users\NEO007D\Desktop\Regio Geo
2015-09-18 12:59 - 2015-09-18 12:59 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\LibreOffice
2015-09-18 12:58 - 2015-09-18 12:58 - 00001022 _____ C:\Users\Public\Desktop\LibreOffice 4.4.lnk
2015-09-18 12:58 - 2015-09-18 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.4
2015-09-17 19:40 - 2015-09-17 19:56 - 00000000 ____D C:\Users\NEO007D\Desktop\ebay
2015-09-17 01:01 - 2015-09-17 01:01 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\AMD
2015-09-16 14:15 - 2015-09-16 14:15 - 00002108 _____ C:\Users\Public\Desktop\Kleopatra.lnk
2015-09-16 14:15 - 2015-09-16 14:15 - 00001326 _____ C:\Users\Public\Desktop\GPA.lnk
2015-09-16 14:15 - 2015-09-16 14:15 - 00000000 ____D C:\Users\Public\Desktop\Gpg4win Dokumentation
2015-09-16 14:15 - 2015-09-16 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gpg4win
2015-09-16 14:15 - 2015-09-16 14:15 - 00000000 ____D C:\Program Files (x86)\GNU
2015-09-15 19:10 - 2015-09-22 12:50 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Skype
2015-09-15 19:10 - 2015-09-15 19:10 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-15 19:10 - 2015-09-15 19:10 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-15 19:10 - 2015-09-15 19:10 - 00000000 ____D C:\Users\NEO007D\Tracing
2015-09-15 19:10 - 2015-09-15 19:10 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Skype
2015-09-15 19:10 - 2015-09-15 19:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-15 19:09 - 2015-09-15 19:10 - 00000000 ____D C:\ProgramData\Skype
2015-09-14 20:16 - 2015-09-14 20:16 - 00000000 ____D C:\ProgramData\Google
2015-09-13 21:15 - 2015-09-13 23:01 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Kodi
2015-09-13 20:55 - 2015-09-13 20:55 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2015-09-11 19:31 - 2015-09-21 12:48 - 00000000 ____D C:\Windows\AutoKMS
2015-09-11 19:20 - 2015-09-21 01:52 - 00000000 ____D C:\Users\NEO007D\Desktop\Neuer Ordner
2015-09-11 19:10 - 2012-08-18 14:09 - 00000641 _____ C:\Users\NEO007D\Desktop\readme.htm
2015-09-11 18:46 - 2015-09-11 19:58 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-11 18:46 - 2015-09-11 19:58 - 00000000 ____D C:\Program Files\Microsoft Office
2015-09-11 18:46 - 2015-09-11 18:46 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Microsoft Help
2015-09-11 16:46 - 2015-09-11 16:46 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-09-11 11:01 - 2015-09-11 11:01 - 00000000 ____D C:\Users\NEO007D\Desktop\2
2015-09-11 11:01 - 2015-09-11 11:01 - 00000000 ____D C:\Users\NEO007D\Desktop\1
2015-09-11 02:20 - 2015-09-11 02:22 - 00000000 ____D C:\Users\NEO007D\Documents\Bosstransformation
2015-09-08 22:59 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-09-08 22:59 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-09-08 22:59 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-09-08 22:59 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-08 22:59 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2015-09-08 22:59 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-09-08 22:59 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-08 22:59 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-08 22:59 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2015-09-08 22:59 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-08 22:59 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-08 22:59 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-09-08 22:59 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-08 22:59 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-08 22:59 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-08 22:59 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-08 22:59 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-09-08 22:59 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-09-08 22:59 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2015-09-08 22:59 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-09-08 22:59 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-08 22:59 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-08 22:59 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-08 22:59 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-09-08 22:59 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-08 22:59 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 22:59 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-08 22:59 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-08 22:59 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-09-08 22:59 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-09-08 22:59 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-08 22:59 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-05 20:17 - 2015-09-05 20:17 - 00001881 _____ C:\Users\NEO007D\Desktop\JDownloader 2.lnk
2015-09-05 20:17 - 2015-09-05 20:17 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-09-05 20:15 - 2015-09-05 20:15 - 00000000 ____D C:\Users\NEO007D\Downloads\JDown
2015-09-05 20:12 - 2015-09-04 08:57 - 00298064 _____ C:\Users\NEO007D\Desktop\Install JDownloader.exe
2015-09-05 16:27 - 2015-09-05 20:38 - 00000000 ____D C:\Users\NEO007D\Desktop\Muke Handy
2015-09-05 15:49 - 2015-09-15 20:04 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\foobar2000
2015-09-05 15:49 - 2015-09-05 15:49 - 00000799 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2015-09-05 15:49 - 2015-09-05 15:49 - 00000729 _____ C:\Users\Public\Desktop\foobar2000.lnk
2015-09-05 15:37 - 2015-09-05 15:37 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Album Art Downloader
2015-09-05 15:37 - 2015-09-05 15:37 - 00000000 ____D C:\Users\NEO007D\AppData\Local\AlbumArtDownloader
2015-09-05 15:37 - 2015-09-05 15:37 - 00000000 ____D C:\Program Files\AlbumArtDownloader
2015-09-05 15:31 - 2015-09-11 01:37 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Mp3tag
2015-09-05 15:30 - 2015-09-05 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2015-09-04 19:31 - 2015-09-04 19:41 - 00000000 ____D C:\Users\NEO007D\Desktop\Paletten Möbel
2015-09-04 02:11 - 2015-09-04 02:11 - 00000000 ____D C:\Users\NEO007D\Desktop\BIG
2015-09-04 01:42 - 2015-09-04 01:42 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Avira
2015-09-04 01:40 - 2015-09-04 01:40 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-09-04 01:40 - 2015-09-04 01:40 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-09-04 01:40 - 2015-09-04 01:40 - 00000000 ____D C:\Program Files\MSBuild
2015-09-04 01:40 - 2015-09-04 01:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-09-04 01:40 - 2015-09-04 01:40 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-09-04 01:39 - 2015-08-06 20:58 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-09-04 01:39 - 2015-08-06 20:58 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-09-04 01:39 - 2015-08-06 20:58 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-09-04 01:39 - 2015-08-06 20:58 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-09-04 01:36 - 2015-09-04 01:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-04 01:36 - 2015-09-04 01:38 - 00000000 ____D C:\ProgramData\Avira
2015-09-04 01:36 - 2015-09-04 01:38 - 00000000 ____D C:\Program Files (x86)\Avira
2015-09-04 01:36 - 2015-09-04 01:36 - 00001287 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-04 01:35 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2015-09-04 01:35 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 01:35 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-09-04 01:35 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2015-09-04 01:35 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-04 01:35 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-09-04 01:33 - 2015-09-11 16:30 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\DVDVideoSoft
2015-09-04 01:28 - 2015-09-04 01:28 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Disc_Soft_Ltd
2015-09-04 01:27 - 2015-09-04 01:27 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2015-09-04 01:17 - 2015-09-04 01:28 - 00000000 ____D C:\Users\NEO007D\Desktop\Chronik 1
2015-09-03 02:14 - 2015-09-03 02:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-09-03 02:14 - 2015-09-03 02:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-09-03 02:14 - 2015-09-03 02:14 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-31 19:59 - 2015-08-31 20:45 - 00000000 ____D C:\Users\NEO007D\Desktop\Foto
2015-08-30 19:43 - 2015-08-30 19:44 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\.kde
2015-08-30 19:42 - 2015-08-30 19:42 - 00000000 ____D C:\ProgramData\GNU
2015-08-30 18:13 - 2015-08-30 18:13 - 00000376 _____ C:\Windows\ODBC.INI
2015-08-30 17:59 - 2015-08-30 17:59 - 00000000 ____D C:\Users\NEO007D\AppData\Local\GNU
2015-08-30 17:56 - 2015-08-30 17:56 - 00000000 ____D C:\Program Files (x86)\Disc Soft
2015-08-30 17:55 - 2015-09-04 01:25 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\DAEMON Tools Lite
2015-08-30 17:55 - 2015-08-30 18:07 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2015-08-30 17:55 - 2015-08-30 17:56 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2015-08-30 17:55 - 2015-08-30 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-08-30 17:54 - 2015-09-04 01:15 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2015-08-30 17:44 - 2015-09-16 14:32 - 00000000 ____D C:\Users\NEO007D\AppData\Local\gtk-2.0
2015-08-30 17:44 - 2015-09-16 14:31 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\gnupg
2015-08-30 00:22 - 2015-08-30 00:46 - 00001121 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk
2015-08-30 00:18 - 2015-08-30 00:47 - 00000000 ____D C:\Program Files (x86)\Hotspot Shield
2015-08-30 00:18 - 2015-08-30 00:18 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Hotspot Shield
2015-08-30 00:18 - 2015-08-30 00:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2015-08-30 00:18 - 2015-08-30 00:18 - 00000000 ____D C:\ProgramData\Hotspot Shield
2015-08-30 00:18 - 2015-05-08 01:20 - 00044744 _____ (AnchorFree Inc.) C:\Windows\system32\Drivers\hssdrv6.sys
2015-08-28 18:08 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-28 18:08 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-28 18:08 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-28 18:08 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2015-08-28 18:08 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-28 18:08 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-28 18:08 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-28 18:08 - 2015-08-18 09:56 - 02498808 _____ C:\Windows\system32\CoreUIComponents.dll
2015-08-28 18:08 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-08-28 18:08 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-08-28 18:08 - 2015-08-18 09:27 - 01771592 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-08-28 18:08 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-08-28 18:08 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2015-08-28 18:08 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2015-08-28 18:08 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-08-28 18:08 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-08-28 18:08 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-08-28 18:08 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-08-28 18:08 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2015-08-28 18:08 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-08-28 18:08 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2015-08-28 18:08 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-08-28 18:08 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-08-28 18:08 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2015-08-28 18:08 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-08-28 18:08 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2015-08-28 18:08 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-08-28 18:08 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-08-28 18:08 - 2015-08-18 08:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2015-08-28 18:08 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-08-28 18:08 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-08-28 18:08 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-08-28 18:08 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2015-08-28 18:08 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-08-28 18:08 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2015-08-28 18:08 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-08-28 18:08 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-08-28 18:08 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-08-28 18:08 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-08-28 18:08 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-08-28 18:08 - 2015-08-18 06:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2015-08-28 01:26 - 2015-08-28 01:26 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-27 16:29 - 2015-09-05 02:40 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Foxit Software
2015-08-27 16:29 - 2015-08-27 16:29 - 00000000 ____D C:\Users\Public\Foxit Software
2015-08-27 16:29 - 2015-08-27 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2015-08-27 15:39 - 2015-08-27 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DoNotSpy10
2015-08-27 15:30 - 2015-08-27 15:30 - 00000089 _____ C:\Users\Public\Documents\pre_fileassoc.tmp
2015-08-27 13:40 - 2015-09-22 12:49 - 00000000 ___RD C:\Users\NEO007D\Google Drive
2015-08-27 13:37 - 2015-08-27 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-08-27 02:00 - 2015-08-30 20:35 - 00000000 ____D C:\Users\NEO007D\Desktop\Plattenspieler
2015-08-24 20:45 - 2015-09-21 22:43 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\TS3Client
2015-08-24 20:45 - 2015-08-24 20:45 - 00000815 _____ C:\Users\NEO007D\Desktop\TeamSpeak 3 Client.lnk
2015-08-24 20:45 - 2015-08-24 20:45 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-24 20:41 - 2015-09-21 01:53 - 00000000 ____D C:\Windows\system32\appmgmt
2015-08-23 23:26 - 2015-08-23 23:26 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Logitech
2015-08-23 23:26 - 2015-08-23 23:26 - 00000000 ____D C:\ProgramData\LogiShrd
2015-08-23 23:25 - 2015-08-23 23:26 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-08-23 23:25 - 2015-08-23 23:26 - 00000776 _____ C:\Windows\LkmdfCoInst.log
2015-08-23 23:25 - 2015-08-23 23:26 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2015-08-23 23:25 - 2015-08-23 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-08-23 22:51 - 2015-08-23 22:51 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Logitech
2015-08-23 22:51 - 2015-08-23 22:51 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Logishrd
2015-08-23 21:20 - 2015-08-23 21:20 - 00002384 _____ C:\Users\NEO007D\Documents\MumbleAutomaticCertificateBackup.p12
2015-08-23 21:17 - 2015-08-23 22:02 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Mumble
2015-08-23 16:25 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-08-23 16:25 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-08-23 16:25 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-08-23 16:25 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-08-23 16:25 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-08-23 16:25 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-08-23 16:25 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-08-23 16:25 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-08-23 16:25 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-08-23 16:25 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-08-23 16:25 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-08-23 16:25 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-08-23 16:25 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-08-23 16:25 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-08-23 16:25 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-08-23 16:25 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-08-23 16:25 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-08-23 16:25 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-08-23 16:25 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-08-23 16:25 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-08-23 16:25 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-08-23 16:25 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-08-23 16:25 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-08-23 16:25 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-08-23 16:25 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-08-23 16:25 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-08-23 16:25 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-08-23 16:25 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-08-23 16:25 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-08-23 16:25 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-08-23 16:25 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-08-23 16:25 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-08-23 16:25 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-08-23 16:25 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-08-23 16:25 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-08-23 16:25 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-08-23 16:25 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-08-23 16:25 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-08-23 16:25 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-08-23 16:25 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-08-23 16:25 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-08-23 16:25 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-08-23 16:25 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-08-23 16:25 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-08-23 16:25 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-08-23 16:25 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-08-23 16:25 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-08-23 16:25 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-08-23 16:25 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-08-23 16:25 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-08-23 16:25 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-08-23 16:25 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-08-23 16:25 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-08-23 16:25 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-08-23 16:25 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-08-23 16:25 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-08-23 16:25 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-08-23 16:25 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-08-23 16:25 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-08-23 16:25 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-08-23 16:25 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-08-23 16:25 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-08-23 16:25 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-08-23 16:25 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-08-23 16:25 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-08-23 16:25 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-08-23 16:25 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-08-23 16:25 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-08-23 16:25 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-08-23 16:25 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-08-23 16:25 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-08-23 16:24 - 2015-08-23 16:25 - 00010085 _____ C:\Windows\DirectX.log
2015-08-23 16:24 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-08-23 16:24 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-08-23 16:24 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-08-23 16:24 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-08-23 16:24 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-08-23 16:24 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-08-23 16:24 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-08-23 16:24 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-08-23 16:24 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-08-23 16:24 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-08-23 16:24 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-08-23 16:24 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-08-23 16:24 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-08-23 16:24 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-08-23 16:24 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-08-23 16:24 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-08-23 16:24 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-08-23 16:24 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-08-23 16:24 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-08-23 16:24 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-08-23 16:24 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-08-23 16:24 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-08-23 16:24 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-08-23 16:24 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-08-23 16:24 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-08-23 16:24 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-08-23 16:24 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-08-23 16:24 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-08-23 16:24 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-08-23 16:24 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-08-23 16:24 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-08-23 16:24 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-08-23 16:24 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-08-23 16:24 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-08-23 16:24 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-08-23 16:24 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-08-23 16:24 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-08-23 16:24 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-08-23 16:24 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-08-23 16:24 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-08-23 16:24 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-08-23 16:24 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-08-23 16:24 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-08-23 16:24 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-08-23 14:45 - 2015-08-23 14:45 - 00000205 _____ C:\Users\NEO007D\Desktop\Counter-Strike Global Offensive.url
2015-08-23 14:36 - 2015-08-23 14:36 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Steam
2015-08-23 14:36 - 2015-08-23 14:36 - 00000000 ____D C:\Users\NEO007D\AppData\Local\CEF
2015-08-23 14:35 - 2015-08-23 14:35 - 00000653 _____ C:\Users\Public\Desktop\Steam.lnk
2015-08-23 14:35 - 2015-08-23 14:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-23 14:34 - 2015-08-23 14:34 - 00000000 ____D C:\ProgramData\ATI
2015-08-23 14:30 - 2015-08-23 14:30 - 00062133 _____ C:\Windows\SysWOW64\CCCInstall_201508231430218110.log
2015-08-23 14:30 - 2015-08-23 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-08-23 14:30 - 2015-08-23 14:30 - 00000000 ____D C:\Program Files\ATI Technologies
2015-08-23 14:28 - 2015-08-23 14:28 - 00061253 _____ C:\Windows\SysWOW64\CCCInstall_201508231428483200.log
2015-08-23 14:26 - 2015-08-23 14:26 - 47795680 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 39723504 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 30760944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 27544560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 25308656 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 22328800 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 15727072 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 14312416 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 10191264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 09191312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 08009344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 07575664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 06486000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 05076976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2015-08-23 14:26 - 2015-08-23 14:26 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2015-08-23 14:26 - 2015-08-23 14:26 - 01213192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 01196032 _____ C:\Windows\system32\amdocl_as64.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 01070592 _____ C:\Windows\system32\amdocl_ld64.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 01005552 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00936928 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00833798 _____ C:\Windows\system32\amdicdxx.dat
2015-08-23 14:26 - 2015-08-23 14:26 - 00807424 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00660928 _____ C:\Windows\SysWOW64\atiapfxx.blb
2015-08-23 14:26 - 2015-08-23 14:26 - 00660928 _____ C:\Windows\system32\atiapfxx.blb
2015-08-23 14:26 - 2015-08-23 14:26 - 00472832 _____ C:\Windows\system32\amdmiracast.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00377312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00243696 _____ C:\Windows\system32\clinfo.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00213488 _____ C:\Windows\system32\amdgfxinfo64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00201184 _____ (AMD) C:\Windows\system32\atitmm64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00198640 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00170464 _____ C:\Windows\system32\atieah64.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00169152 _____ C:\Windows\system32\ativce03.dat
2015-08-23 14:26 - 2015-08-23 14:26 - 00167456 _____ C:\Windows\system32\amde31a.dat
2015-08-23 14:26 - 2015-08-23 14:26 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00153456 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00152560 _____ C:\Windows\SysWOW64\atieah32.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00152032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00143344 _____ C:\Windows\system32\amdhdl64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00132080 _____ C:\Windows\SysWOW64\amdhdl32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00117600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00113880 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00111832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00111600 _____ C:\Windows\system32\hsa-thunk64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00111088 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00102384 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00100816 _____ C:\Windows\system32\ativce02.dat
2015-08-23 14:26 - 2015-08-23 14:26 - 00099296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00095216 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00091104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00089520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00085472 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00082680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00073712 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00071152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00069600 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00064496 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00062432 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00061408 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2015-08-23 14:26 - 2015-08-23 14:26 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00059360 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00049632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00039904 _____ (AMD) C:\Windows\system32\atimuixx.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00012784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2015-08-23 14:26 - 2015-08-23 14:26 - 00012784 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-09-22 17:33 - 2015-07-10 12:55 - 00000000 ____D C:\Windows\CbsTemp
2015-09-22 17:31 - 2015-07-10 14:22 - 00000275 _____ C:\Windows\WindowsUpdate.log
2015-09-22 17:28 - 2015-08-20 11:23 - 00001248 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-09-22 17:22 - 2015-08-19 13:07 - 00001150 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-22 16:49 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\system32\sru
2015-09-22 15:12 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\AppReadiness
2015-09-22 12:50 - 2015-08-20 11:25 - 00000000 ___RD C:\Users\NEO007D\Dropbox
2015-09-22 12:50 - 2015-08-20 11:23 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Dropbox
2015-09-22 12:48 - 2015-08-19 13:07 - 00001146 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-22 12:47 - 2015-08-20 11:23 - 00001244 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-09-22 01:17 - 2015-08-19 12:51 - 00000000 ____D C:\Users\NEO007D
2015-09-21 18:00 - 2015-07-10 14:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-21 17:59 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\LiveKernelReports
2015-09-21 13:14 - 2015-08-19 12:37 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-21 01:44 - 2015-08-19 12:51 - 00000000 ____D C:\Users\NEO007D\AppData\Local\VirtualStore
2015-09-21 01:35 - 2015-08-19 12:07 - 00141220 _____ C:\Windows\PFRO.log
2015-09-21 01:35 - 2015-07-10 11:05 - 00131072 ___SH C:\Windows\system32\config\BBI
2015-09-21 00:02 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-20 20:39 - 2015-08-19 12:17 - 01790124 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-20 20:39 - 2015-07-10 18:31 - 00771100 _____ C:\Windows\system32\perfh007.dat
2015-09-20 20:39 - 2015-07-10 18:31 - 00153964 _____ C:\Windows\system32\perfc007.dat
2015-09-20 20:36 - 2015-07-10 14:20 - 00028841 _____ C:\Windows\setupact.log
2015-09-20 16:57 - 2015-08-19 13:07 - 00002328 _____ C:\Users\NEO007D\Desktop\Google Chrome.lnk
2015-09-19 19:36 - 2015-07-10 14:20 - 00278592 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-16 17:02 - 2015-08-19 12:51 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Packages
2015-09-16 01:17 - 2015-08-19 13:07 - 00004208 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 01:17 - 2015-08-19 13:07 - 00003976 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-14 20:15 - 2015-08-19 13:06 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-11 19:56 - 2015-07-10 18:43 - 00000000 ____D C:\Windows\ShellNew
2015-09-11 11:53 - 2015-07-10 18:43 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-11 11:53 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-09-10 19:43 - 2015-08-19 13:06 - 00000000 ____D C:\Users\NEO007D\AppData\Local\Google
2015-09-04 20:01 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\rescache
2015-09-04 01:42 - 2015-08-19 13:59 - 00000000 ____D C:\Users\NEO007D\AppData\Roaming\Mozilla
2015-09-04 01:40 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-09-04 01:40 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\system32\MUI
2015-08-30 18:09 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\System
2015-08-28 20:44 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\system32\oobe
2015-08-28 17:58 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\appcompat
2015-08-27 18:12 - 2015-07-10 13:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2015-08-23 14:30 - 2015-08-19 12:37 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-08-23 14:28 - 2015-08-19 12:36 - 00000000 ____D C:\AMD
2015-08-23 14:26 - 2015-08-19 12:36 - 21632992 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2015-08-23 14:26 - 2015-08-19 12:36 - 12062040 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 08979760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 08865496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 01468224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 01257952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 00874480 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 00681456 _____ (AMD) C:\Windows\system32\atieclxx.exe
2015-08-23 14:26 - 2015-08-19 12:36 - 00675296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2015-08-23 14:26 - 2015-08-19 12:36 - 00452576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 00256992 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2015-08-23 14:26 - 2015-08-19 12:36 - 00162240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2015-08-23 14:26 - 2015-08-19 12:36 - 00131592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-09-22 13:49 - 2015-09-22 13:49 - 0001221 _____ () C:\Users\NEO007D\AppData\Local\recently-used.xbel
2015-08-19 12:34 - 2015-08-19 12:34 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\NEO007D\AppData\Local\Temp\avgnt.exe
C:\Users\NEO007D\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcg0ved.dll
C:\Users\NEO007D\AppData\Local\Temp\PidGenX.dll
C:\Users\NEO007D\AppData\Local\Temp\proxy_vole6366384057235121352.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-09-14 19:39

==================== Ende von FRST.txt ============================
         

Geändert von zoos001 (22.09.2015 um 18:20 Uhr)

Alt 22.09.2015, 18:05   #2
zoos001
 
FRST Log Auswertung? - Standard

FRST Log Auswertung?



Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:15-09-2015
durchgeführt von NEO007D (2015-09-22 17:49:42)
Gestartet von C:\Users\NEO007D\Downloads
Windows 10 Education (X64) (2015-08-19 10:29:51)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2128539298-1628825653-1423823794-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2128539298-1628825653-1423823794-503 - Limited - Disabled)
Gast (S-1-5-21-2128539298-1628825653-1423823794-501 - Limited - Disabled)
NEO007D (S-1-5-21-2128539298-1628825653-1423823794-1002 - Administrator - Enabled) => C:\Users\NEO007D

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Panda Free Antivirus (Enabled - Up to date) {AAF74A68-8713-CDF1-004F-30003398BE9E}
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Panda Free Antivirus (Enabled - Up to date) {1196AB8C-A129-C27F-3AFF-0B72481FF423}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Panda Firewall (Disabled) {92CCCB4D-CD7C-CCA9-2B10-9935CD4BF9E5}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Album Art Downloader XUI 1.02 (HKLM-x32\...\Album Art Downloader XUI) (Version: 1.02 - hxxp://sourceforge.net/projects/album-art)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG) Hidden
BenVista PhotoZoom Pro 6.0.6 (HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\PhotoZoom Pro 6) (Version: 6.0.6 - BenVista Ltd.)
Chrome Remote Desktop Host (HKLM-x32\...\{912422D4-0A22-4F70-BF8D-802B4BCD0999}) (Version: 45.0.2454.17 - Google Inc.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DoNotSpy10 (HKLM-x32\...\{32D066BD-F94C-4948-8FA8-84653EE9617E}_is1) (Version: 1.0.0.2 - pXc-coding.com)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.135.908 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.93 - Google Inc.)
Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Gpg4win (2.2.6) (HKLM-x32\...\GPG4Win) (Version: 2.2.6 - The Gpg4win Project)
Hotspot Shield 4.15.3 (HKLM-x32\...\HotspotShield) (Version: 4.15.3 - AnchorFree Inc.)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 11.3.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.3.6 - )
Kodi (HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\Kodi) (Version:  - XBMC-Foundation)
LibreOffice 4.4.5.2 (HKLM-x32\...\{406EECCC-AF98-4F2C-A99F-FED788F7580C}) (Version: 4.4.5.2 - The Document Foundation)
Logitech Gaming Software 8.70 (HKLM\...\Logitech Gaming Software) (Version: 8.70.315 - Logitech Inc.)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.2.0 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
Mp3tag v2.71 (HKLM-x32\...\Mp3tag) (Version: v2.71 - Florian Heidenreich)
OpenGeo Suite 4.7 (HKLM-x32\...\OpenGeo Suite 4.7) (Version:  - Boundless)
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Panda Devices Agent (x32 Version: 1.03.05 - Panda Security) Hidden
Panda Devices Agent (x32 Version: 1.06.00 - Panda Security) Hidden
Panda Free Antivirus (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 16.00.01.0000 - Panda Security)
Panda Free Antivirus (Version: 8.03.00.0000 - Panda Security) Hidden
QGIS Pisa 2.10.1 Pisa (HKLM\...\QGIS Pisa) (Version:  - QGIS Development Team)
QGIS Wien 2.8.3 Wien (HKLM\...\QGIS Wien) (Version:  - QGIS Development Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2128539298-1628825653-1423823794-1002_Classes\CLSID\{33155A95-D11E-9948-5114-33E32FABD489}\InprocServer32 -> kein Dateipfad
CustomCLSID: HKU\S-1-5-21-2128539298-1628825653-1423823794-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Wiederherstellungspunkte =========================

21-09-2015 01:33:28 Installed PGP Desktop
22-09-2015 15:54:44 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-07-10 13:04 - 2015-09-20 16:53 - 00000859 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {002DF4D3-C048-4466-903B-D1DEB083B9EE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {5AB02327-C245-48EB-B98D-1B475FC0F80C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-20] (Dropbox, Inc.)
Task: {6EF35592-5D34-43C3-AF63-ABA27A50421A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {9B63549B-21F7-46BC-8851-3B5C2E9C1F4E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19] (Google Inc.)
Task: {A786344E-13DD-4878-9512-64FF598FA80F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19] (Google Inc.)
Task: {BAA3816A-D8D4-4F6E-BDC9-D54714DAE2B0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-28] (Microsoft Corporation)
Task: {F8977456-BD90-46DE-A044-179A060350E4} - \AutoKMS -> Keine Datei <==== ACHTUNG
Task: {F89B6343-36A4-4568-9A80-F80987A91848} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-08-03] ()
Task: {FADA67F0-EB76-47A9-A009-94B285DDC697} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-20] (Dropbox, Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-19 12:35 - 2015-07-15 04:04 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-06-04 00:59 - 2015-06-04 00:59 - 00589520 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2015-09-09 12:52 - 2015-09-09 12:52 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2015-08-28 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-08-28 18:08 - 2015-08-18 09:56 - 02498808 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-19 12:35 - 2015-08-03 03:30 - 00642048 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-07-02 02:28 - 2015-07-02 02:28 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-07-02 02:28 - 2015-07-02 02:28 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-03-31 19:32 - 2015-03-31 19:32 - 00007680 _____ () D:\Programme\Geo\OpenGeo\services\PostgreSQL.exe
2015-03-31 19:32 - 2015-03-31 19:32 - 00007168 _____ () D:\Programme\Geo\OpenGeo\services\Jetty.exe
2015-09-19 17:13 - 2015-09-19 17:13 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-09-19 17:13 - 2015-09-19 17:13 - 10712576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-09-19 17:13 - 2015-09-19 17:13 - 00500224 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.915.17170.0_x64__8wekyb3d8bbwe\Lumia.SequencePlayer.UAP.dll
2015-08-19 14:02 - 2015-08-03 20:00 - 00299008 _____ () C:\Program Files (x86)\K-Lite Codec Pack\Filters\LAV64\libbluray.dll
2015-08-19 12:35 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 12:35 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-19 12:35 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 13:00 - 00215352 _____ () c:\windows\system32\WerEtw.dll
2015-06-04 00:57 - 2015-06-04 00:57 - 01749200 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2015-06-04 01:19 - 2015-06-04 01:19 - 00616144 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.4.15.3.dll
2015-04-25 03:03 - 2015-04-25 03:03 - 00280143 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libidn-11.dll
2009-03-27 22:02 - 2009-03-27 22:02 - 01554920 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libeay32.dll
2009-03-27 22:02 - 2009-03-27 22:02 - 00332254 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libssl32.dll
2015-09-09 12:28 - 2015-09-09 12:28 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2015-09-09 12:40 - 2015-09-09 12:40 - 00221696 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2015-09-09 12:42 - 2015-09-09 12:42 - 00744448 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2015-09-09 12:39 - 2015-09-09 12:39 - 00072192 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2015-09-09 12:34 - 2015-09-09 12:34 - 00087040 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2015-09-16 13:23 - 2015-09-12 02:22 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\libglesv2.dll
2015-09-16 13:23 - 2015-09-12 02:22 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\libegl.dll
2015-09-22 12:48 - 2015-09-22 12:48 - 00071168 _____ () c:\users\neo007d\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcg0ved.dll
2015-08-20 11:24 - 2015-08-05 07:26 - 00012800 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
2015-08-20 11:24 - 2015-08-05 07:26 - 00779776 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-08-20 11:24 - 2015-08-05 07:26 - 00056320 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-08-20 11:24 - 2015-08-05 07:26 - 00012288 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
2015-09-22 12:48 - 2015-09-22 12:48 - 00098816 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32api.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00110080 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\pywintypes27.dll
2015-09-22 12:48 - 2015-09-22 12:48 - 00364544 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\pythoncom27.dll
2015-09-22 12:48 - 2015-09-22 12:48 - 00045568 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_socket.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 01161216 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_ssl.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00320512 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32com.shell.shell.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00713216 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_hashlib.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 01176576 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._core_.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00806400 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._gdi_.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00816128 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._windows_.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 01067008 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._controls_.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00733184 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._misc_.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00682496 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\pysqlite2._sqlite.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00087552 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_ctypes.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00119808 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32file.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00108544 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32security.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00007168 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\hashobjs_ext.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00068096 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\usb_ext.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00167936 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32gui.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00018432 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32event.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00128512 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_elementtree.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00127488 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\pyexpat.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00013824 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\common.time34.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00036864 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_psutil_windows.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00038912 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32inet.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00011264 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32crypt.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00077312 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._html2.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00027136 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_multiprocessing.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00020480 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\_yappi.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00035840 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32process.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00686080 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\unicodedata.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00123392 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._wizard.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00024064 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32pipe.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00010240 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\select.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00025600 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32pdh.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00525640 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\windows._lib_cacheinvalidation.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00017408 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32profile.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00022528 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\win32ts.pyd
2015-09-22 12:48 - 2015-09-22 12:48 - 00078848 _____ () C:\Users\NEO007D\AppData\Local\Temp\_MEI67042\wx._animate.pyd
2015-04-17 21:51 - 2015-04-17 21:51 - 04563351 _____ () D:\Programme\Geo\OpenGeo\pgsql\bin\libxml2-2.dll
2015-04-17 21:51 - 2015-04-17 21:51 - 00100352 _____ () D:\Programme\Geo\OpenGeo\pgsql\bin\zlib1.dll
2015-09-16 13:23 - 2015-09-12 02:22 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\PepperFlash\pepflashplayer.dll
2015-08-19 13:59 - 2015-08-13 18:22 - 00153768 _____ () D:\Programme\E-Mail\NSLDAP32V60.dll
2015-08-19 13:59 - 2015-08-13 18:22 - 00023208 _____ () D:\Programme\E-Mail\NSLDAPPR32V60.dll
2006-10-13 14:18 - 2006-10-13 14:18 - 00040960 _____ () D:\Programme\Geo\OpenGeo\jetty\jre\bin\clib_jiio_util.dll
2006-10-13 14:18 - 2006-10-13 14:18 - 01089536 _____ () D:\Programme\Geo\OpenGeo\jetty\jre\bin\clib_jiio_sse2.dll
2015-08-23 14:36 - 2015-07-03 18:12 - 00778240 _____ () D:\Games\Steam\SDL2.dll
2015-08-23 14:35 - 2015-07-03 18:12 - 04962816 _____ () D:\Games\Steam\v8.dll
2015-08-23 14:36 - 2015-08-19 22:39 - 02413248 _____ () D:\Games\Steam\video.dll
2015-08-23 14:35 - 2015-07-03 18:12 - 01556992 _____ () D:\Games\Steam\icui18n.dll
2015-08-23 14:35 - 2015-07-03 18:12 - 01187840 _____ () D:\Games\Steam\icuuc.dll
2015-08-23 14:35 - 2014-12-01 23:31 - 02396672 _____ () D:\Games\Steam\libavcodec-56.dll
2015-08-23 14:35 - 2014-12-01 23:31 - 00479744 _____ () D:\Games\Steam\libavformat-56.dll
2015-08-23 14:35 - 2014-12-01 23:31 - 00332800 _____ () D:\Games\Steam\libavresample-2.dll
2015-08-23 14:35 - 2014-12-01 23:31 - 00442880 _____ () D:\Games\Steam\libavutil-54.dll
2015-08-23 14:35 - 2014-12-01 23:31 - 00485888 _____ () D:\Games\Steam\libswscale-3.dll
2015-08-23 14:35 - 2015-08-19 22:39 - 00704192 _____ () D:\Games\Steam\bin\chromehtml.DLL
2015-08-23 14:35 - 2015-07-27 03:13 - 00171008 _____ () D:\Games\Steam\bin\openvr_api.dll
2015-08-23 14:35 - 2015-07-03 18:12 - 39553928 _____ () D:\Games\Steam\bin\libcef.dll
2015-07-23 23:10 - 2015-07-23 23:10 - 01039976 _____ () D:\Programme\Office\LibreOffice\program\libxml2.dll
2015-07-23 23:10 - 2015-07-23 23:10 - 00356968 _____ () D:\Programme\Office\LibreOffice\program\glew32.dll
2015-07-23 23:10 - 2015-07-23 23:10 - 00182376 _____ () D:\Programme\Office\LibreOffice\program\libxslt.dll
2015-07-23 23:11 - 2015-07-23 23:11 - 00100456 _____ () D:\Programme\Office\LibreOffice\program\python3.dll
2015-07-23 16:12 - 2015-07-23 16:12 - 00049664 _____ () D:\Programme\Office\LibreOffice\program\python-core-3.3.3\lib\_socket.pyd
2013-04-12 19:23 - 2013-04-12 19:23 - 00612664 _____ () C:\Program Files (x86)\Panda Security\Panda Security Protection\SQLite3.dll
2015-09-22 17:34 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-09-22 17:34 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-09-22 17:34 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-09-22 17:34 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-09-22 17:34 - 2014-04-25 14:11 - 02972112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\NotificationSpreader.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\NEO007D\Desktop\antrag.jpg:com.dropbox.attributes

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2128539298-1628825653-1423823794-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{03C8B31C-0C42-437E-BFF3-E866553F618E}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{96C7617F-97A6-4390-AD13-D5E51A777D0A}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{AE28831E-8FC0-489E-88A2-918AB61F103B}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{54A33205-15E2-4F7A-9FFD-258C7DE2627B}] => (Allow) D:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{24C02B55-BCEC-4D68-838F-5FE823041FE4}] => (Allow) D:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{97A44CD3-6431-448D-9DFF-796B0B404245}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{AAD59204-106F-4FA7-997E-BB1AF85A3EE2}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{77C13E8A-D608-4565-AFD8-F5389883D739}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{D1D138D4-3719-4290-9ED8-1A63492A7019}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{207FF972-4E1B-460B-9D75-EE8636016AA8}D:\programme\kodi\kodi.exe] => (Allow) D:\programme\kodi\kodi.exe
FirewallRules: [UDP Query User{8CAB079D-E343-4551-B842-545DF845321C}D:\programme\kodi\kodi.exe] => (Allow) D:\programme\kodi\kodi.exe
FirewallRules: [{E522562C-116A-479C-85E0-7637C2031112}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe
FirewallRules: [{E742EEEF-688C-4DCA-841F-480EE7D2E9DB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{AAEAE27E-61AA-4064-B512-404DA88E8729}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/22/2015 05:46:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SDFSSvc.exe, Version: 2.4.40.217, Zeitstempel: 0x535a5114
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x2cb8
Startzeit der fehlerhaften Anwendung: 0xSDFSSvc.exe0
Pfad der fehlerhaften Anwendung: SDFSSvc.exe1
Pfad des fehlerhaften Moduls: SDFSSvc.exe2
Berichtskennung: SDFSSvc.exe3
Vollständiger Name des fehlerhaften Pakets: SDFSSvc.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SDFSSvc.exe5

Error: (09/22/2015 03:54:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (09/22/2015 01:17:25 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-D0B9UFG)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 06:39:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm mpc-hc64.exe, Version 1.7.9.137 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 140c

Startzeit: 01d0f48bf30b1768

Beendigungszeit: 6

Anwendungspfad: C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe

Berichts-ID: 53b17177-607f-11e5-9be0-bc5ff453b0bf

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (09/21/2015 04:29:03 PM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
   bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
   bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
   bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
   bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
   bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...

Error: (09/21/2015 04:27:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-D0B9UFG)
Description: Bei der Aktivierung der App „Microsoft.WindowsStore_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 04:27:14 PM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
   bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
   bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
   bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
   bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
   bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...

Error: (09/21/2015 04:26:40 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-D0B9UFG)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 02:20:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-D0B9UFG)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 12:45:00 PM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
   bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
   bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
   bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
   bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
   bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
   bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...


Systemfehler:
=============
Error: (09/22/2015 05:24:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINAflt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%259

Error: (09/22/2015 05:24:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINProt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%31

Error: (09/22/2015 05:24:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINReg" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%31

Error: (09/22/2015 05:24:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINProc" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%31

Error: (09/22/2015 05:24:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINFile" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%31

Error: (09/22/2015 05:24:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PSINKNC" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%87

Error: (09/22/2015 01:17:25 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-D0B9UFG)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca

Error: (09/22/2015 01:17:22 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/21/2015 06:01:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (09/21/2015 06:01:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Presentation Foundation-Schriftartcache 3.0.0.0 erreicht.


CodeIntegrity:
===================================
  Date: 2015-09-21 14:10:23.577
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 14:10:23.570
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 14:10:23.311
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 14:10:23.256
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:17:34.070
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:17:34.054
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:17:34.037
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:17:33.032
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:17:32.185
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-09-21 13:00:41.377
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 68%
Installierter physikalischer RAM: 8079.41 MB
Verfügbarer physikalischer RAM: 2509.88 MB
Summe virtueller Speicher: 11271.91 MB
Verfügbarer virtueller Speicher: 1957.23 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:121.31 GB) NTFS
Drive d: (Volume) (Fixed) (Total:1862.53 GB) (Free:1831.15 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 24A1EDCD)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=500 MB) - (Type=42)
Partition 3: (Not Active) - (Size=1862.5 GB) - (Type=42)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 24A1EDC4)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
__________________


Alt 22.09.2015, 18:53   #3
schrauber
/// the machine
/// TB-Ausbilder
 

FRST Log Auswertung? - Standard

FRST Log Auswertung?



hi,

Zitat:
Hey da mein virsenscanner heut ein paar mal rumgesponnen hat und mein pc auch sonst in letzter zeit irgenwie immer ein bisschen faxen gemacht hat
geht das genauer?
__________________
__________________

Alt 09.10.2015, 18:39   #4
zoos001
 
FRST Log Auswertung? - Standard

FRST Log Auswertung?



Hatt sich erledigt kann. Kann bitte jemand das theme löschen. Mir wär es nicht so lieb wenn die logfiles noch weiterhin online sind.. THX

Alt 10.10.2015, 01:09   #5
schrauber
/// the machine
/// TB-Ausbilder
 

FRST Log Auswertung? - Standard

FRST Log Auswertung?



Regeln hast Du aber gelesen bevor du hier gepostet hast?

http://www.trojaner-board.de/108422-...-anfragen.html

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu FRST Log Auswertung?
anschauen, auswertung, dnsapi.dll, faxen, first, frst log, hotspot, keygen, log, logfile, onedrive, safer networking, scan, scanner, tagen



Ähnliche Themen: FRST Log Auswertung?


  1. ich habe einen Virus eingefangen der aus FRST.txt ein FRST.txt!___prosschiff@gmail.com_ macht
    Log-Analyse und Auswertung - 27.09.2015 (3)
  2. FRST Logfile auswertung?
    Log-Analyse und Auswertung - 03.08.2015 (1)
  3. FRST Logfiles
    Log-Analyse und Auswertung - 23.02.2015 (5)
  4. FRST Auswertung, ist alles in Ordnung?
    Log-Analyse und Auswertung - 18.09.2014 (5)
  5. FRST Auswertung, alles Ok?
    Log-Analyse und Auswertung - 24.08.2014 (11)
  6. FRST-Auswertung: Langsames Arbeiten/Surfen mit Notebook
    Plagegeister aller Art und deren Bekämpfung - 29.06.2014 (42)
  7. FRST Log - Auswertung (ohne Anfangsverdacht)
    Log-Analyse und Auswertung - 27.05.2014 (2)
  8. Windows 7 FRST Auswertung
    Log-Analyse und Auswertung - 16.04.2014 (9)
  9. FRST-Log verstehen
    Diskussionsforum - 24.03.2014 (6)
  10. FRST Logfile Auswertung
    Log-Analyse und Auswertung - 11.02.2014 (38)
  11. GMER, FRST, ADWCleaner Auswertung. Festplatte defekt. Neustart
    Log-Analyse und Auswertung - 19.11.2013 (7)
  12. FRST.txt und Addition.txt auswertung
    Log-Analyse und Auswertung - 30.09.2013 (62)
  13. Auswertung der FRST Logdatei :)
    Log-Analyse und Auswertung - 18.09.2013 (7)
  14. Weißer Bildschirm nach Neustart, scan via FRST.exe --> FRST.txt
    Log-Analyse und Auswertung - 06.08.2013 (5)
  15. Weißer Bildschirm win7 Frst. log gemacht bitte um Auswertung
    Plagegeister aller Art und deren Bekämpfung - 18.07.2013 (12)
  16. GUV Trojaner -- LOG FRST
    Log-Analyse und Auswertung - 24.06.2013 (1)

Zum Thema FRST Log Auswertung? - Hey da mein virsenscanner heut ein paar mal rumgesponnen hat und mein pc auch sonst in letzter zeit irgenwie immer ein bisschen faxen gemacht hat wäre es nett wenn sich - FRST Log Auswertung?...
Archiv
Du betrachtest: FRST Log Auswertung? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.