Franky86 | 14.08.2014 10:41 | Code:
2014-08-14 09:53 - 2014-08-14 09:53 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-14 09:53 - 2014-08-14 09:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-08-14 09:49 - 2014-08-14 09:49 - 00002076 _____ () C:\Users\Tobi\Desktop\JDownloader 2.lnk
2014-08-14 09:49 - 2014-08-14 09:49 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-08-14 09:48 - 2014-08-14 09:48 - 00076440 _____ (AppWork GmbH) C:\Users\Tobi\Downloads\WebInstaller_2002.exe
2014-08-14 09:43 - 2014-08-14 09:42 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 09:22 - 2014-08-14 09:22 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 09:21 - 2014-08-14 09:21 - 00007605 _____ () C:\Users\Tobi\AppData\Local\Resmon.ResmonCfg
2014-08-14 01:22 - 2014-08-14 01:22 - 00000000 _____ () C:\Users\Tobi\Desktop\remote app.txt
2014-08-13 22:40 - 2014-08-13 22:39 - 41155152 _____ (Google Inc.) C:\Users\Tobi\Downloads\ChromeStandaloneSetup.exe
2014-08-13 22:36 - 2014-08-13 22:36 - 00000871 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-08-13 22:36 - 2014-08-13 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-08-13 22:36 - 2014-08-13 22:36 - 00000000 ____D () C:\Program Files\VideoLAN
2014-08-13 22:35 - 2014-08-13 22:35 - 00000000 ____D () C:\Users\Tobi\Downloads\PDFXVE5_5.5.308.2
2014-08-13 22:34 - 2014-08-13 22:32 - 54162655 _____ () C:\Users\Tobi\Downloads\PDFXVE5_5.5.308.2.zip
2014-08-13 22:33 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-08-13 22:33 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-08-13 22:33 - 2009-07-14 06:45 - 00000000 ____D () C:\Windows\Setup
2014-08-13 22:30 - 2014-08-13 22:29 - 26465736 _____ () C:\Users\Tobi\Downloads\vlc-2.1.5-win64.exe
2014-08-13 22:30 - 2014-08-13 22:28 - 35595360 _____ (Skype Technologies S.A.) C:\Users\Tobi\Downloads\SkypeSetup106Full.exe
2014-08-13 22:26 - 2014-08-13 22:04 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-13 22:25 - 2014-08-13 22:25 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-13 22:25 - 2014-08-13 22:25 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-08-13 22:25 - 2014-08-13 22:25 - 00000000 ____D () C:\Program Files\Realtek
2014-08-13 22:25 - 2014-08-13 22:24 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-08-13 22:25 - 2014-08-13 21:51 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-13 22:25 - 2014-08-13 21:51 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\2C0A
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0C0A
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0C04
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0816
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0804
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0424
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\041F
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\041E
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\041D
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\041B
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0419
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0416
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0415
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0414
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0413
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0412
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0411
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0410
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\040E
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\040D
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\040C
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\040B
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\040A
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0409
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0408
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0406
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0405
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0404
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Windows\system32\0401
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-08-13 22:24 - 2014-08-13 22:24 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-08-13 22:24 - 2011-04-12 09:43 - 00000000 ____D () C:\Windows\system32\0407
2014-08-13 22:23 - 2014-08-13 22:23 - 02060744 _____ () C:\Users\Tobi\Downloads\winrar-x64-510d.exe
2014-08-13 22:23 - 2014-08-13 22:23 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\WinRAR
2014-08-13 22:23 - 2014-08-13 22:23 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-08-13 22:23 - 2014-08-13 22:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-08-13 22:23 - 2014-08-13 22:23 - 00000000 ____D () C:\Program Files\WinRAR
2014-08-13 22:12 - 2014-08-13 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-08-13 22:12 - 2014-08-13 22:12 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-08-13 22:12 - 2014-08-13 22:10 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-13 22:11 - 2014-08-13 22:11 - 00000000 ____D () C:\ProgramData\AMD
2014-08-13 22:11 - 2014-08-13 22:11 - 00000000 ____D () C:\Program Files\ATI
2014-08-13 22:11 - 2014-08-13 22:11 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-13 22:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-13 22:05 - 2014-08-13 22:05 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-13 22:05 - 2014-08-13 22:05 - 00000000 ____D () C:\Users\Tobi\AppData\Roaming\AVAST Software
2014-08-13 22:05 - 2014-08-13 22:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-13 22:05 - 2014-08-13 22:04 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-13 22:04 - 2014-08-13 22:04 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-13 22:04 - 2014-08-13 22:04 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-13 22:04 - 2014-08-13 22:04 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-13 22:04 - 2014-08-13 22:04 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-13 21:53 - 2014-08-13 21:53 - 00058016 _____ () C:\Users\Tobi\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-13 21:53 - 2014-08-13 21:53 - 00000000 ____D () C:\Users\Tobi\AppData\Local\Apps\2.0
2014-08-13 21:52 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-08-13 21:51 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-08-13 21:50 - 2014-08-13 21:50 - 00000000 ____D () C:\MSI
2014-08-13 21:48 - 2014-08-13 21:48 - 00000000 ____D () C:\Users\Tobi\AppData\Local\VirtualStore
2014-08-13 21:48 - 2014-08-13 21:46 - 00000000 ____D () C:\Users\Tobi
2014-08-13 21:46 - 2014-08-13 21:46 - 00000020 ___SH () C:\Users\Tobi\ntuser.ini
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Vorlagen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Startmenü
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Netzwerkumgebung
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Lokale Einstellungen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Eigene Dateien
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Druckumgebung
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Documents\Eigene Musik
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Documents\Eigene Bilder
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\AppData\Local\Verlauf
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\AppData\Local\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Tobi\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Programme
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-08-13 21:46 - 2014-08-13 21:46 - 00000000 __SHD () C:\Recovery
2014-08-13 21:46 - 2012-12-13 09:17 - 00000000 ____D () C:\Windows\Panther
2014-08-13 21:46 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-08-13 21:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-13 21:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-08-13 21:36 - 2012-12-13 09:29 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-08-13 21:36 - 2009-07-14 06:46 - 00003806 _____ () C:\Windows\DtcInstall.log
2014-08-13 21:33 - 2014-08-13 21:33 - 00000000 ____D () C:\Windows\CSC
2014-08-07 04:06 - 2014-08-14 03:07 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-14 03:07 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-05 09:20 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-07-31 23:41 - 2012-12-13 10:31 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-16 05:25 - 2014-08-14 03:08 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-07-16 05:23 - 2014-08-14 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-07-16 04:46 - 2014-08-14 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-07-16 04:46 - 2014-08-14 03:08 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-07-16 04:12 - 2014-08-14 03:08 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys Code:
Some content of TEMP:
====================
C:\Users\Tobi\AppData\Local\Temp\devcon64.exe
C:\Users\Tobi\AppData\Local\Temp\JDSetup130524761227694247.exe
C:\Users\Tobi\AppData\Local\Temp\PrefJsonCpp.exe
C:\Users\Tobi\AppData\Local\Temp\proxy_vole5008672202313719864.dll
C:\Users\Tobi\AppData\Local\Temp\sqlite3.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-14 03:45
==================== End Of Log ============================ Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-08-2014 01
Ran by Tobi at 2014-08-14 11:22:03
Running from C:\Users\Tobi\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD APP SDK Runtime (Version: 10.0.873.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{DD562794-C098-A1E5-66ED-10E8BD1C84C5}) (Version: 3.0.864.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0504.1554.26509 - Ihr Firmenname) Hidden
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Catalyst Control Center (x32 Version: 2012.0504.1554.26509 - Ihr Firmenname) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0504.1554.26509 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0504.1554.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0504.1553.26509 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0504.1554.26509 - Advanced Micro Devices, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
NVIDIA Update Core (Version: 10.4.0 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7245 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
13-08-2014 19:51:29 Installiert Realtek Ethernet Controller Driver
13-08-2014 20:04:34 avast! antivirus system restore point
13-08-2014 20:24:16 Installiert Renesas Electronics USB 3.0 Host Controller Driver
13-08-2014 20:35:25 PDF-XChange Editor
14-08-2014 01:02:33 Windows Update
14-08-2014 07:21:55 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {3445A6C4-0667-4B73-8348-F00B12E960A4} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-13] (AVAST Software)
Task: {5D55C115-075E-45CC-B7A6-33685140F221} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14] (Google Inc.)
Task: {69C34E89-5222-4AD7-89ED-D9A22EA68A8C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-14] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-08-14 10:12 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-05-04 15:41 - 2012-05-04 15:41 - 00211968 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 14:30 - 2011-11-13 14:30 - 00676864 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2011-11-13 14:31 - 2011-11-13 14:31 - 03643392 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-08-13 22:04 - 2014-08-13 22:04 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-13 22:08 - 2014-08-13 22:08 - 02797056 _____ () C:\Program Files\AVAST Software\Avast\defs\14081301\algo.dll
2014-08-13 22:04 - 2014-08-13 22:04 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 00718152 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\libegl.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 08537928 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 00353096 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 01732936 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-08-14 11:01 - 2014-08-07 05:20 - 14669128 _____ () C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Error: (08/14/2014 11:00:34 AM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2012-12-13 10:29:15.841
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:23:12.616
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:23:12.257
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:23:12.148
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:23:12.023
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:20:10.908
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:15:21.549
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 10:03:42.638
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 08:48:30.951
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-13 08:33:55.490
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\DisplaySwitch.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: AMD FX(tm)-6350 Six-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 8140.02 MB
Available physical RAM: 6180.44 MB
Total Pagefile: 16278.22 MB
Available Pagefile: 14081.39 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:223.47 GB) (Free:180.96 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 224 GB) (Disk ID: F108FFAB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
==================== End Of Log ============================ So das sind die beiden logs von farber recovery scan =)
Weiterhin habe ich schon adwcleaner drüberlaufen lassen. wo finde ich die log dazu wenn ich sie geschlossen habe? :( |