Wandalensalz | 11.08.2015 19:57 | mbam.txt: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlaufdatum: 11.08.2015
Suchlaufzeit: 18:26
Protokolldatei: mbam.txt
Administrator: Ja
Version: 2.1.8.1057
Malware-Datenbank: v2015.08.11.06
Rootkit-Datenbank: v2015.08.06.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: hendrik_2002
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 674433
Abgelaufene Zeit: 1 Std., 44 Min., 18 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 0
(keine bösartigen Elemente erkannt)
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswerte: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Dateien: 1
PUP.Optional.PCMechanic, C:\Users\hendr_000\Downloads\pcmechanicpm.exe, , [375bc1468b00c3732e442c9a0ef3d729],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end)
ADWCleaner.txt:
AdwCleaner Logfile: Code:
# AdwCleaner v4.201 - Bericht erstellt 11/08/2015 um 20:21:45
# Aktualisiert 08/04/2015 von Xplode
# Datenbank : 2015-08-11.1 [Server]
# Betriebssystem : Windows 8.1 (x64)
# Benutzername : hendrik_2002 - ARBEITSRECHNER
# Gestarted von : C:\Users\hendr_000\Desktop\adwcleaner_4.201.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : swdumon
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ftb
Ordner Gelöscht : C:\Users\hendr_000\AppData\Local\slimware utilities inc
Ordner Gelöscht : C:\Users\hendr_000\AppData\Roaming\Solvusoft
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Windows\System32\drivers\swdumon.sys
Datei Gelöscht : C:\Users\hendr_000\AppData\Roaming\Mozilla\Firefox\Profiles\2famRptk.default\user.js
Datei Gelöscht : C:\Users\hendr_000\AppData\Roaming\Mozilla\Firefox\Profiles\a42jhbp7.default-1396422616735\user.js
***** [ Geplante Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ChromaticHTM
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\SlimWare Utilities Inc
Schlüssel Gelöscht : HKLM\SOFTWARE\Uniblue
Schlüssel Gelöscht : HKLM\SOFTWARE\SecurityUtility
Schlüssel Gelöscht : HKLM\SOFTWARE\SlimWare Utilities Inc
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FAD0F79E-5EA4-542B-76A3-46093E52C1F5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\SecurityUtility
***** [ Internetbrowser ] *****
-\\ Internet Explorer v11.0.9600.17840
-\\ Mozilla Firefox v36.0 (x86 de)
-\\ Google Chrome v44.0.2403.130
-\\ Opera v0.0.0.0
*************************
AdwCleaner[R0].txt - [14361 Bytes] - [02/04/2014 09:03:53]
AdwCleaner[R10].txt - [2522 Bytes] - [22/04/2015 16:37:13]
AdwCleaner[R11].txt - [2299 Bytes] - [31/05/2015 08:49:31]
AdwCleaner[R12].txt - [2359 Bytes] - [31/05/2015 08:53:03]
AdwCleaner[R13].txt - [2290 Bytes] - [13/06/2015 10:04:20]
AdwCleaner[R14].txt - [4124 Bytes] - [11/08/2015 20:21:19]
AdwCleaner[R1].txt - [19934 Bytes] - [27/01/2015 19:31:34]
AdwCleaner[R2].txt - [1050 Bytes] - [30/01/2015 14:48:34]
AdwCleaner[R3].txt - [2028 Bytes] - [08/02/2015 10:26:18]
AdwCleaner[R4].txt - [1891 Bytes] - [12/02/2015 11:06:10]
AdwCleaner[R5].txt - [1456 Bytes] - [16/02/2015 15:21:28]
AdwCleaner[R6].txt - [1515 Bytes] - [16/02/2015 15:28:33]
AdwCleaner[R7].txt - [1978 Bytes] - [06/03/2015 21:32:13]
AdwCleaner[R8].txt - [1774 Bytes] - [07/03/2015 19:27:03]
AdwCleaner[R9].txt - [25450 Bytes] - [09/04/2015 11:49:10]
AdwCleaner[S0].txt - [11202 Bytes] - [02/04/2014 09:05:15]
AdwCleaner[S10].txt - [3392 Bytes] - [11/08/2015 20:21:45]
AdwCleaner[S1].txt - [17070 Bytes] - [27/01/2015 19:38:50]
AdwCleaner[S2].txt - [1965 Bytes] - [12/02/2015 11:15:26]
AdwCleaner[S3].txt - [1530 Bytes] - [16/02/2015 15:33:08]
AdwCleaner[S4].txt - [1997 Bytes] - [06/03/2015 21:37:18]
AdwCleaner[S5].txt - [1839 Bytes] - [07/03/2015 19:36:47]
AdwCleaner[S6].txt - [3828 Bytes] - [09/04/2015 12:07:25]
AdwCleaner[S7].txt - [2453 Bytes] - [22/04/2015 16:39:41]
AdwCleaner[S8].txt - [2417 Bytes] - [31/05/2015 08:54:53]
AdwCleaner[S9].txt - [2306 Bytes] - [13/06/2015 10:22:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S10].txt - [3984 Bytes] ########## --- --- ---
[/CODE]
JRT.txt:
JRT Logfile: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.5 (08.05.2015:1)
OS: Windows 8.1 x64
Ran by hendrik_2002 on 11.08.2015 at 20:33:14,87
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
Successfully deleted: [Task] C:\Windows\system32\tasks\Uninstaller_SkipUac_hendrik_2002
Successfully deleted: [Task] C:\Windows\Tasks\Uninstaller_SkipUac_hendrik_2002.job
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer
~~~ Files
~~~ Folders
Successfully deleted: [Folder] C:\ProgramData\productdata
Successfully deleted: [Folder] C:\Users\hendr_000\Appdata\Local\icsharpcode.net
Successfully deleted: [Folder] C:\Users\hendr_000\AppData\Roaming\goldengate
Successfully deleted: [Folder] C:\Users\hendr_000\AppData\Roaming\productdata
Successfully deleted: [Folder] C:\users\Public\Documents\downloaded installers
Successfully deleted: [Folder] C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
Successfully deleted: [Folder] C:\Users\hendr_000\Appdata\Local\14405
~~~ FireFox
Successfully deleted: [Folder] C:\Users\hendr_000\AppData\Roaming\mozilla\firefox\profiles\a42jhbp7.default-1396422616735\extensions\iobitascsurfingprotection@iobit.com
Emptied folder: C:\Users\hendr_000\AppData\Roaming\mozilla\firefox\profiles\a42jhbp7.default-1396422616735\minidumps [2 files]
~~~ Chrome
[C:\Users\hendr_000\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\hendr_000\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\hendr_000\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\hendr_000\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11.08.2015 at 20:42:06,51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ --- --- ---
FRST.txt: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:11-08-2015
durchgeführt von hendrik_2002 (Administrator) auf ARBEITSRECHNER (11-08-2015 20:46:55)
Gestartet von C:\Users\hendr_000\Desktop
Geladene Profile: hendrik_2002 (Verfügbare Profile: hendrik_2002 & Dirk & Niklas Steinmetz & Administrator)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [iFreeUp] => C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe [470304 2015-03-31] (IObit)
HKU\S-1-5-21-532561150-3242956754-1626305917-1001\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-532561150-3242956754-1626305917-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-532561150-3242956754-1626305917-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.msn.com/de-de/?pc=UP97&ocid=UP97DHP
hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-532561150-3242956754-1626305917-1001 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3323878&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPF4C30013-DBA8-4203-9422-5B83732DCF2E&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-532561150-3242956754-1626305917-1001 -> SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKU\S-1-5-21-532561150-3242956754-1626305917-1001 -> {36A2063E-A8A8-41E0-B063-C2945B3B3AA1} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-21] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-21] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0186D2C8-01F4-4F66-A6D2-3A87F13D817A}: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\hendr_000\AppData\Roaming\Mozilla\Firefox\Profiles\a42jhbp7.default-1396422616735
FF SelectedSearchEngine: Yahoo!
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-20] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-20] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-01-26] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-21] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-532561150-3242956754-1626305917-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-06-20] ()
FF Extension: Kein Name - C:\Program Files (x86)\McAfee\SiteAdvisor [2013-05-27]
FF Extension: Kein Name - C:\Users\hendr_000\AppData\Roaming\Mozilla\Firefox\Profiles\a42jhbp7.default-1396422616735\extensions\amazon-icon@giga.de [nicht gefunden]
FF Extension: Kein Name - C:\Users\hendr_000\AppData\Roaming\Mozilla\Firefox\Profiles\a42jhbp7.default-1396422616735\extensions\iobitascsurfingprotection@iobit.com [nicht gefunden]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
Chrome:
=======
CHR Profile: C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-06-06]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-22]
CHR Extension: (Adblock Pro) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-06-06]
CHR Extension: (uMatrix) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-04-20]
CHR Extension: (Chrome Apps & Extensions Developer Tool) - C:\Users\hendr_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohmmkhmmmpcnpikjeljgnaoabkaalbgc [2015-06-06]
CHR HKU\S-1-5-21-532561150-3242956754-1626305917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - https://clients2.google.com/service/update2/crx
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-532561150-3242956754-1626305917-1001) OperaStable - "C:\Users\hendr_000\AppData\Local\Programs\Opera\Launcher.exe"
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-02-04] (Adobe Systems) [Datei ist nicht signiert]
S2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit)
S4 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-03-17] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S4 Apache2.4; C:\xampp\apache\bin\httpd.exe [22016 2014-07-17] (Apache Software Foundation) [Datei ist nicht signiert]
S2 Bonjour Service; C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe [384512 2015-07-21] (Apple Inc.) [Datei ist nicht signiert]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-27] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-01] (Microsoft Corporation)
S4 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany) [Datei ist nicht signiert]
S2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21744 2015-07-09] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-09] (IObit)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S4 metasploitPostgreSQL; C:\metasploit\postgresql\bin\pg_ctl.exe [76288 2015-03-04] (PostgreSQL Global Development Group) [Datei ist nicht signiert]
S4 metasploitProSvc; C:\metasploit\ruby\bin\ruby.exe [107178 2015-03-04] (hxxp://www.ruby-lang.org/) [Datei ist nicht signiert]
S4 metasploitThin; C:\metasploit\ruby\bin\ruby.exe [107178 2015-03-04] (hxxp://www.ruby-lang.org/) [Datei ist nicht signiert]
S4 metasploitWorker; C:\metasploit\ruby\bin\ruby.exe [107178 2015-03-04] (hxxp://www.ruby-lang.org/) [Datei ist nicht signiert]
S4 mysql; C:\xampp\mysql\bin\mysqld.exe [10982912 2014-07-18] () [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
S3 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-06-22] ()
S4 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
S4 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [134656 2015-07-09] (Microsoft Corporation) [Datei ist nicht signiert]
S4 Tomcat7; C:\xampp\tomcat\bin\tomcat7.exe [80896 2013-07-02] (Apache Software Foundation) [Datei ist nicht signiert]
S4 vncserver; C:\Program Files\RealVNC\VNC Server\vncservice.exe [639808 2015-01-28] (RealVNC Ltd)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [52968 2015-07-07] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4265984 2014-12-11] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-12-21] (Advanced Micro Devices)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-15] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2014-08-19] (Riverbed Technology, Inc.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-07-09] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-07-09] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2015-05-21] (VMware, Inc.)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 cpuz137; \??\C:\Users\HENDR_~1\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-11 20:46 - 2015-08-11 20:47 - 00016402 _____ C:\Users\hendr_000\Desktop\FRST.txt
2015-08-11 20:46 - 2015-08-11 20:46 - 02172416 _____ (Farbar) C:\Users\hendr_000\Desktop\FRST64.exe
2015-08-11 20:46 - 2015-08-11 20:46 - 00000000 ____D C:\Users\hendr_000\Desktop\FRST-OlderVersion
2015-08-11 20:33 - 2015-08-11 20:32 - 01797896 _____ (Malwarebytes Corporation) C:\Users\hendr_000\Desktop\JRT.exe
2015-08-11 20:32 - 2015-08-11 20:32 - 01797896 _____ (Malwarebytes Corporation) C:\Users\hendr_000\Downloads\JRT.exe
2015-08-11 18:25 - 2015-08-11 18:25 - 00001078 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-11 18:25 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-11 18:25 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-11 18:25 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-10 15:57 - 2015-08-10 15:57 - 00000000 ____D C:\Users\hendr_000\Downloads\metasploitable-linux-2.0.0
2015-08-10 15:53 - 2015-08-10 15:53 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Xamarin
2015-08-10 15:53 - 2015-08-10 15:53 - 00000000 ____D C:\ProgramData\MonoTouch
2015-08-10 15:53 - 2015-08-10 15:53 - 00000000 ____D C:\ProgramData\Mono for Android
2015-08-09 22:25 - 2015-08-09 22:25 - 00001894 _____ C:\Users\hendr_000\Desktop\VS 2015.lnk
2015-08-09 22:14 - 2015-08-11 20:23 - 00017114 _____ C:\Windows\PFRO.log
2015-08-09 21:59 - 2015-08-10 16:14 - 00000000 ____D C:\Users\hendr_000\Documents\Visual Studio 2015
2015-08-09 21:55 - 2015-08-09 21:55 - 00000000 ____D C:\Program Files (x86)\Xamarin
2015-08-09 21:54 - 2015-08-09 21:55 - 00000000 ____D C:\ProgramData\Monodoc
2015-08-09 20:42 - 2015-08-09 20:42 - 00000000 ____D C:\Program Files\Application Verifier
2015-08-09 20:42 - 2015-08-09 20:42 - 00000000 ____D C:\Program Files (x86)\Application Verifier
2015-08-09 20:41 - 2015-08-09 20:41 - 00000000 ____D C:\ProgramData\Windows App Certification Kit
2015-08-09 20:27 - 2015-08-09 20:27 - 00000000 ____D C:\Program Files (x86)\AppInsights
2015-08-09 20:26 - 2015-08-09 20:26 - 00000000 ____D C:\ProgramData\NuGet
2015-08-09 20:26 - 2015-08-09 20:26 - 00000000 ____D C:\Program Files (x86)\NuGet
2015-08-09 19:56 - 2015-08-09 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
2015-08-09 19:54 - 2015-08-09 19:54 - 00000000 ____D C:\Program Files (x86)\Android
2015-08-09 19:50 - 2015-08-09 19:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone SDK 8.0
2015-08-09 19:43 - 2015-08-09 19:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK - Deutsch
2015-08-09 19:39 - 2015-08-09 19:39 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-08-09 19:30 - 2015-08-09 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-08-09 19:29 - 2015-08-09 19:29 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2015-08-09 19:28 - 2015-08-09 19:28 - 00000000 ____D C:\Program Files (x86)\ShellDir
2015-08-09 19:21 - 2015-08-09 19:21 - 00000000 ____D C:\ProgramData\Microsoft DNX
2015-08-09 19:21 - 2015-08-09 19:21 - 00000000 ____D C:\Program Files\Microsoft DNX
2015-08-09 19:08 - 2015-08-09 19:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2015-08-09 19:08 - 2015-08-09 19:08 - 00000000 ____D C:\Users\Administrator\Documents\ManageYourLife 1.0.0
2015-08-09 19:05 - 2015-08-09 19:05 - 00000000 ____D C:\Program Files\IIS Express
2015-08-09 19:05 - 2015-08-09 19:05 - 00000000 ____D C:\Program Files (x86)\IIS Express
2015-08-09 19:03 - 2015-08-09 19:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2015-08-09 19:01 - 2015-08-09 19:01 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2015-08-09 18:58 - 2015-08-09 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-08-09 18:56 - 2015-08-09 18:56 - 00001536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2015-08-09 18:53 - 2015-08-09 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone SDK 8.1
2015-08-09 18:53 - 2015-08-09 18:53 - 00000000 ____D C:\Program Files (x86)\Windows Phone Silverlight Kits
2015-08-09 18:52 - 2015-08-09 19:50 - 00000000 ____D C:\Program Files (x86)\Windows Phone Kits
2015-08-09 18:52 - 2015-08-09 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft XDE
2015-08-09 18:48 - 2015-08-09 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2015-08-09 18:40 - 2015-08-09 18:40 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2015-08-09 18:40 - 2015-08-09 18:40 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop
2015-08-09 18:30 - 2015-08-09 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2015-08-09 18:27 - 2015-08-09 18:27 - 00000000 ____D C:\Windows\symbols
2015-08-09 18:22 - 2015-08-09 19:40 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-08-09 18:22 - 2015-08-09 18:35 - 00000000 ____D C:\Windows\SysWOW64\1031
2015-08-09 18:22 - 2015-08-09 18:26 - 00000000 ____D C:\Windows\system32\1033
2015-08-09 18:22 - 2015-08-09 18:22 - 00001537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2015-08-09 18:22 - 2015-08-09 18:22 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-08-09 18:12 - 2015-08-11 20:24 - 00001330 _____ C:\Windows\setupact.log
2015-08-09 18:12 - 2015-08-09 21:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2015-08-09 18:12 - 2015-08-09 18:22 - 00000000 ____D C:\Windows\system32\1031
2015-08-09 18:12 - 2015-08-09 18:12 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 14.0
2015-08-09 18:12 - 2015-08-09 18:12 - 00000000 _____ C:\Windows\setuperr.log
2015-08-09 17:57 - 2015-06-22 08:31 - 00027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-08-09 17:56 - 2015-06-22 08:30 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-08-09 17:54 - 2015-08-09 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iFreeUp
2015-08-09 17:47 - 2015-08-09 17:47 - 64294912 _____ C:\Windows\system32\config\COMPONENTS.iobit
2015-08-09 17:47 - 2015-08-09 17:47 - 05189632 _____ C:\Windows\system32\config\DRIVERS.iobit
2015-08-09 17:32 - 2015-06-04 15:28 - 00961192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00062304 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:28 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00883712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00064352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2015-08-09 17:32 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2015-08-09 17:24 - 2015-08-09 17:43 - 873116238 _____ C:\Users\hendr_000\Downloads\metasploitable-linux-2.0.0.zip
2015-08-09 17:23 - 2015-08-10 15:46 - 00000000 ____D C:\ProgramData\VsTelemetry
2015-08-09 17:23 - 2015-08-09 17:23 - 03099760 _____ (Microsoft Corporation) C:\Users\hendr_000\Downloads\vs_community.exe
2015-08-08 19:48 - 2015-08-08 19:48 - 00000000 ____D C:\Program Files\Registrar Registry Manager
2015-08-08 19:45 - 2015-08-08 19:45 - 05032752 _____ (Resplendence Software Projects Sp. ) C:\Users\hendr_000\Downloads\RegistrarHomeV7.exe
2015-08-08 18:39 - 2015-08-09 19:24 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-08-08 18:39 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-08 18:39 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-08 18:39 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-08 18:39 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-08 18:39 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-08 18:39 - 2015-07-19 03:58 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-08 18:39 - 2015-07-18 20:51 - 03704320 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-08 18:39 - 2015-07-18 20:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-08 18:39 - 2015-07-18 20:31 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-08 18:39 - 2015-07-18 20:31 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-08 18:39 - 2015-07-18 20:29 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-08-08 18:39 - 2015-07-18 20:29 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-08 18:39 - 2015-07-18 20:29 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-08 18:39 - 2015-07-18 20:28 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-08 18:39 - 2015-07-18 20:12 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-08 18:39 - 2015-07-18 20:10 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-08 18:39 - 2015-07-18 20:09 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-08 18:38 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-08 18:38 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-07 17:20 - 2015-08-07 17:20 - 00052736 _____ C:\Users\hendr_000\Desktop\CopyBootLog.exe
2015-08-07 15:41 - 2015-08-07 15:41 - 00000000 ____D C:\Users\hendr_000\Downloads\geek_13346
2015-08-07 14:07 - 2015-08-07 14:07 - 00000000 ____D C:\Users\hendr_000\Downloads\gcc-5.1.0
2015-08-06 19:46 - 2015-08-06 20:38 - 00075139 _____ C:\Users\hendr_000\Desktop\Storereparatur.log
2015-08-06 18:26 - 2015-08-06 18:26 - 00000000 ____D C:\RefreshImage
2015-08-02 14:06 - 2015-08-02 14:07 - 07407166 _____ C:\Users\hendr_000\Downloads\AdventureMap ZeFlu.zip
2015-08-01 11:12 - 2015-08-01 11:12 - 00000440 _____ C:\Users\hendr_000\Downloads\App-Fix.zip
2015-08-01 11:00 - 2015-08-01 11:00 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-01 10:59 - 2015-08-01 10:59 - 00000000 ____D C:\Program Files\Realtek
2015-08-01 10:58 - 2000-01-01 02:00 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2015-08-01 10:58 - 2000-01-01 02:00 - 04460760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-08-01 10:58 - 2000-01-01 02:00 - 03262184 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-08-01 10:58 - 2000-01-01 02:00 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00837776 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00654480 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00544400 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2015-08-01 10:58 - 2000-01-01 02:00 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00435344 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00250536 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-08-01 10:58 - 2000-01-01 02:00 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-08-01 10:57 - 2000-01-01 02:00 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 05706688 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 02847448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 02532056 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 02036495 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-08-01 10:57 - 2000-01-01 02:00 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-08-01 10:57 - 2000-01-01 02:00 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 12975360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 05234952 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 01499984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 01365768 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00995120 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00979280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-01 10:56 - 2000-01-01 02:00 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01559744 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00328816 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-08-01 10:55 - 2000-01-01 02:00 - 00096568 _____ C:\Windows\system32\audioLibVc.dll
2015-08-01 10:54 - 2000-01-01 02:00 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-08-01 10:54 - 2000-01-01 02:00 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2015-07-31 17:00 - 2015-07-31 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-07-31 16:59 - 2015-08-01 10:52 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\Raptr
2015-07-31 16:59 - 2015-07-31 17:00 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-07-31 16:49 - 2015-07-31 16:51 - 00192816 _____ C:\Users\hendr_000\Downloads\raptr_installer.exe
2015-07-31 14:18 - 2015-08-06 19:03 - 00004270 _____ C:\Users\hendr_000\Desktop\FixMetro.cmd
2015-07-31 10:17 - 2015-07-31 10:17 - 00000308 _____ C:\Users\hendr_000\Desktop\MetroTwit.appref-ms
2015-07-31 10:17 - 2015-07-31 10:17 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pixel Tucker Pty Ltd
2015-07-30 19:07 - 2015-07-30 20:49 - 2147484783 _____ C:\Users\hendr_000\Downloads\kali-linux-1.1.0a-i386.iso
2015-07-29 20:55 - 2015-07-29 20:58 - 19302676 _____ C:\Users\hendr_000\Downloads\CommunityShowcaseNaturalLandscapes3.themepack
2015-07-29 20:48 - 2015-07-29 20:48 - 00536906 _____ C:\Users\hendr_000\Downloads\apps.diagcab
2015-07-29 20:48 - 2015-07-29 20:48 - 00423962 _____ C:\Users\hendr_000\Downloads\AppsDiagnostic.diagcab
2015-07-29 17:25 - 2013-06-18 15:12 - 00090304 _____ (Sysinternals) C:\Windows\system32\strings.exe
2015-07-29 17:24 - 2013-06-18 15:12 - 00090304 _____ (Sysinternals) C:\Users\hendr_000\Downloads\strings.exe
2015-07-29 17:23 - 2015-07-29 17:23 - 00050298 _____ C:\Users\hendr_000\Downloads\Strings.zip
2015-07-29 17:13 - 2015-07-29 17:13 - 00000000 ____D C:\Users\hendr_000\AppData\Local\GWX
2015-07-29 17:12 - 2015-07-29 17:12 - 00000000 ____D C:\Users\hendr_000\Downloads\win10fix_full_german.bat_
2015-07-29 17:11 - 2015-07-29 17:11 - 00002929 _____ C:\Users\hendr_000\Downloads\win10fix_full_german.bat_.zip
2015-07-29 16:55 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-07-29 16:55 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-07-29 16:54 - 2015-06-09 20:27 - 00411133 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-29 16:53 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-07-29 16:53 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-07-29 16:53 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-07-29 16:52 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-07-29 16:52 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-07-29 16:52 - 2015-06-10 00:39 - 00081920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-07-29 16:52 - 2015-06-10 00:39 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-07-29 16:52 - 2015-06-10 00:38 - 01201664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-07-28 16:43 - 2015-07-28 16:43 - 00001011 _____ C:\Users\hendr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FastCopy.lnk
2015-07-28 16:43 - 2015-07-28 16:43 - 00000981 _____ C:\Users\hendr_000\Desktop\FastCopy.lnk
2015-07-28 16:43 - 2015-07-28 16:43 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\FastCopy
2015-07-28 16:43 - 2015-07-28 16:43 - 00000000 ____D C:\Program Files\FastCopy
2015-07-27 18:36 - 2015-07-27 18:37 - 04954736 _____ (Microsoft Corporation) C:\Users\hendr_000\Downloads\WindowsSetupBox.exe
2015-07-27 18:10 - 2015-07-27 18:10 - 00060965 _____ C:\Users\hendr_000\Downloads\pkeyuibx_v1.5.0.zip
2015-07-27 18:08 - 2015-07-27 18:08 - 01198368 _____ C:\Users\hendr_000\Downloads\Windows Product Key Viewer - CHIP-Installer.exe
2015-07-27 18:02 - 2015-07-27 18:02 - 01198368 _____ C:\Users\hendr_000\Downloads\Windows 8 1 Setup Tool - CHIP-Installer.exe
2015-07-26 17:15 - 2015-07-26 17:15 - 00000000 ____D C:\Users\hendr_000\Downloads\rawwritewin-0.7
2015-07-26 16:33 - 2015-07-26 16:33 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-07-26 16:30 - 2015-07-26 17:14 - 00000000 ____D C:\Users\hendr_000\Desktop\ownOS
2015-07-26 16:27 - 2015-07-26 16:27 - 00214786 _____ C:\Users\hendr_000\Downloads\rawwritewin-0.7.zip
2015-07-26 16:27 - 2015-07-26 16:27 - 00000000 ____D C:\rawrite
2015-07-26 16:24 - 2015-07-26 16:25 - 00000000 ____D C:\NASM 2.11.08
2015-07-26 16:23 - 2015-07-26 16:23 - 00802892 _____ C:\Users\hendr_000\Downloads\nasm-2.11.08-installer.exe
2015-07-26 16:21 - 2015-07-26 16:22 - 01398894 _____ C:\Users\hendr_000\Downloads\nasm-2.11.08.zip
2015-07-25 21:07 - 2015-07-25 21:41 - 00428047 _____ C:\Users\hendr_000\Desktop\FastCopy211_x64.zip
2015-07-25 21:07 - 2015-07-25 21:07 - 00427277 _____ C:\Windows\SysWOW64\FastCopy211_x64.zip
2015-07-25 21:05 - 2015-07-25 21:05 - 00516664 _____ ( ) C:\Users\hendr_000\Downloads\FastCopy211_x64_CB-DL-Manager.exe
2015-07-25 16:55 - 2015-07-25 16:55 - 00000000 _____ C:\Windows\SysWOW64\InstallLocation
2015-07-24 14:03 - 2015-07-24 14:03 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Steam
2015-07-24 14:03 - 2015-07-24 14:03 - 00000000 ____D C:\Users\hendr_000\AppData\Local\CEF
2015-07-23 19:02 - 2015-07-31 10:26 - 00000000 ____D C:\Program Files (x86)\Steam
2015-07-23 19:02 - 2015-07-23 19:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-23 19:00 - 2015-07-23 19:01 - 01476720 _____ C:\Users\hendr_000\Downloads\SteamSetup.exe
2015-07-23 18:25 - 2015-07-23 18:35 - 606076928 _____ C:\Users\hendr_000\Downloads\ubuntu-14.04.2-server-i386.iso
2015-07-23 18:21 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-23 18:10 - 2015-07-23 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-07-23 18:10 - 2015-07-23 18:10 - 00000000 ____D C:\Program Files\Oracle
2015-07-23 18:10 - 2015-07-09 12:09 - 00958736 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2015-07-23 18:10 - 2015-07-09 12:09 - 00138904 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2015-07-21 14:11 - 2015-06-25 04:31 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-21 14:10 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-21 14:10 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-21 14:10 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-21 14:10 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-21 14:10 - 2015-06-15 22:50 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-21 14:10 - 2015-06-15 21:57 - 02460160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-21 14:09 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-21 14:09 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-21 14:09 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-21 14:09 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-21 14:09 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-21 14:09 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-21 14:09 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-21 14:09 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-21 14:09 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-07-21 14:09 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-21 14:09 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-21 14:09 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-07-21 14:09 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-21 14:07 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-21 14:07 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-21 14:07 - 2015-06-27 05:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-21 14:07 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-21 14:07 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-07-21 14:07 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-21 14:07 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-07-21 12:56 - 2015-07-02 00:08 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-21 12:56 - 2015-07-01 23:14 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-21 12:55 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-21 12:55 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-21 12:53 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-21 12:52 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-21 12:52 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-21 12:52 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-21 12:52 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-21 12:52 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-21 12:51 - 2015-06-16 00:39 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-21 12:51 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-21 12:51 - 2015-06-16 00:26 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-21 12:51 - 2015-06-16 00:24 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-21 12:51 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-07-21 12:51 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-21 12:51 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-21 12:51 - 2015-06-15 23:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-07-21 12:51 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-21 12:51 - 2015-06-15 23:49 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-07-21 12:51 - 2015-06-15 23:41 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-07-21 12:51 - 2015-06-15 23:38 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-21 12:51 - 2015-06-15 23:36 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-21 12:51 - 2015-06-15 23:17 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-07-21 12:51 - 2015-06-15 23:16 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-21 12:51 - 2015-06-15 23:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-21 12:51 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-21 12:51 - 2015-06-15 23:04 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-21 12:51 - 2015-06-15 23:03 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-21 12:51 - 2015-06-15 22:52 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-21 12:51 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-07-21 12:51 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-21 12:51 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-21 12:51 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-07-21 12:51 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-21 12:51 - 2015-06-15 22:37 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-07-21 12:51 - 2015-06-15 22:32 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-07-21 12:51 - 2015-06-15 22:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-21 12:51 - 2015-06-15 22:30 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-21 12:51 - 2015-06-15 22:30 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-21 12:51 - 2015-06-15 22:17 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-07-21 12:51 - 2015-06-15 22:07 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-21 12:51 - 2015-06-15 22:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-21 12:48 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-21 12:48 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-21 12:48 - 2015-06-11 05:49 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-21 12:48 - 2015-06-10 18:13 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-21 12:47 - 2015-07-14 16:14 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-21 12:47 - 2015-07-14 16:14 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-21 12:47 - 2015-07-14 16:14 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-21 12:47 - 2015-07-14 16:13 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-21 12:22 - 2015-07-21 12:45 - 00000000 ____D C:\Users\hendr_000\AppData\Local\ftblauncher
2015-07-21 12:22 - 2015-07-21 12:37 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\ftblauncher
2015-07-21 12:20 - 2015-07-21 12:21 - 06628862 _____ () C:\Users\hendr_000\Downloads\FTB_Launcher.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-11 20:47 - 2015-06-07 17:02 - 00000000 ____D C:\FRST
2015-08-11 20:46 - 2015-05-30 06:36 - 01591694 _____ C:\Windows\WindowsUpdate.log
2015-08-11 20:46 - 2015-04-08 14:50 - 00005188 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for ARBEITSRECHNER-hendrik_2002 Arbeitsrechner
2015-08-11 20:46 - 2014-01-25 17:44 - 00000000 ___DO C:\Users\hendr_000\SkyDrive
2015-08-11 20:39 - 2014-01-27 17:50 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-11 20:30 - 2014-01-25 17:33 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-532561150-3242956754-1626305917-1001
2015-08-11 20:25 - 2015-01-29 19:14 - 00000000 ____D C:\ProgramData\VMware
2015-08-11 20:24 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-11 20:23 - 2014-02-23 22:06 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-08-11 20:22 - 2014-04-02 09:03 - 00000000 ____D C:\AdwCleaner
2015-08-11 20:13 - 2014-09-06 11:25 - 00000000 ____D C:\Users\Administrator
2015-08-11 20:13 - 2014-08-24 11:19 - 00000000 ____D C:\Users\Niklas Steinmetz.HendriksPodpal
2015-08-11 20:13 - 2014-02-23 22:13 - 00000000 ____D C:\Users\Dirk
2015-08-11 20:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Resources
2015-08-11 20:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-08-11 18:26 - 2015-06-06 13:31 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-11 18:25 - 2015-06-06 13:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-10 18:36 - 2014-06-21 18:57 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\.minecraft
2015-08-10 18:36 - 2014-02-23 22:13 - 00000000 ____D C:\Users\hendr_000
2015-08-10 18:05 - 2015-06-24 19:06 - 00057216 _____ C:\Users\hendr_000\Desktop\loaded_drivers.txt
2015-08-10 16:11 - 2015-01-29 19:22 - 00000000 ____D C:\Users\hendr_000\AppData\Local\VMware
2015-08-10 16:05 - 2015-01-29 19:22 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\VMware
2015-08-09 22:14 - 2013-08-22 16:44 - 00396520 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-09 22:10 - 2015-06-30 10:08 - 00000286 _____ C:\Windows\Tasks\ASC8_SkipUac_hendrik_2002.job
2015-08-09 21:54 - 2014-02-23 21:45 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 21:52 - 2015-01-21 12:40 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-09 21:43 - 2014-12-06 13:11 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-08-09 21:22 - 2014-03-07 20:13 - 00000000 ____D C:\Users\hendr_000\.android
2015-08-09 19:40 - 2015-05-12 17:39 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-08-09 19:40 - 2014-12-06 13:23 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-08-09 19:38 - 2015-05-12 17:44 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-08-09 19:05 - 2012-07-26 09:59 - 00000000 ____D C:\Windows\CbsTemp
2015-08-09 18:53 - 2015-05-12 17:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-08-09 18:47 - 2015-05-12 17:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2015-08-09 18:27 - 2015-05-12 17:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2015-08-09 18:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-09 18:03 - 2015-03-09 20:30 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Eclipse
2015-08-09 17:53 - 2015-02-04 18:04 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\IObit
2015-08-09 17:53 - 2015-02-04 18:03 - 00000000 ____D C:\Program Files (x86)\IObit
2015-08-09 17:50 - 2015-01-30 12:12 - 00000000 ____D C:\Users\hendr_000\VirtualBox VMs
2015-08-09 17:50 - 2015-01-30 12:11 - 00000000 ____D C:\Users\hendr_000\.VirtualBox
2015-08-09 17:47 - 2014-02-06 21:33 - 00246272 ___SH C:\Users\hendr_000\Desktop\Thumbs.db
2015-08-09 17:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-08-08 20:08 - 2015-04-07 08:46 - 00000000 ____D C:\Users\hendr_000\workspace_projects
2015-08-08 19:58 - 2014-12-10 21:15 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-08 19:58 - 2014-07-31 18:06 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-08 19:55 - 2014-02-09 10:06 - 00000000 ____D C:\Users\hendr_000\AppData\Local\CrashDumps
2015-08-07 18:28 - 2015-05-12 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2013
2015-08-06 18:29 - 2014-02-23 22:13 - 00012102 _____ C:\Windows\diagerr.xml
2015-08-06 18:29 - 2014-02-23 22:13 - 00011231 _____ C:\Windows\diagwrn.xml
2015-08-05 20:13 - 2015-06-07 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-08-05 16:05 - 2015-06-06 13:56 - 00000000 ____D C:\ProgramData\HitmanPro
2015-08-02 19:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-08-01 11:02 - 2013-10-08 16:45 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-07-31 18:02 - 2014-02-23 22:06 - 00000000 ____D C:\AMD
2015-07-31 14:12 - 2014-07-27 17:04 - 00000000 ____D C:\Users\hendr_000\.eclipse
2015-07-31 10:28 - 2015-01-29 19:28 - 00000000 ____D C:\Users\hendr_000\Documents\Virtual Machines
2015-07-31 10:20 - 2014-03-22 10:15 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Deployment
2015-07-30 21:48 - 2013-08-22 15:25 - 00786432 ___SH C:\Windows\system32\config\BBI
2015-07-30 16:49 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\FxsTmp
2015-07-29 18:34 - 2014-01-25 17:39 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Apps\2.0
2015-07-26 16:34 - 2014-08-23 12:55 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\Notepad++
2015-07-26 16:33 - 2014-08-23 12:55 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-07-25 21:05 - 2015-04-09 11:57 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-25 17:32 - 2014-01-25 17:00 - 00000000 ____D C:\Users\hendr_000\AppData\Local\Packages
2015-07-24 16:28 - 2014-12-24 19:48 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-07-24 16:27 - 2015-01-14 12:48 - 00000000 ____D C:\Users\hendr_000\.gimp-2.8
2015-07-24 14:10 - 2015-02-04 18:03 - 00000000 ____D C:\ProgramData\IObit
2015-07-23 21:37 - 2015-04-09 11:57 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-23 20:17 - 2014-02-06 20:36 - 00000000 ____D C:\Windows\system32\MRT
2015-07-23 19:20 - 2014-02-11 19:35 - 00000000 ____D C:\Users\hendr_000\AppData\Roaming\FileZilla
2015-07-23 18:12 - 2015-06-09 16:53 - 00000000 ____D C:\Users\hendr_000\Downloads\forge
2015-07-23 18:11 - 2015-06-09 16:57 - 00000000 ____D C:\Users\hendr_000\Downloads\setups
2015-07-21 14:09 - 2014-01-25 17:21 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-07-21 14:08 - 2014-12-23 17:32 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-07-21 12:50 - 2014-03-29 20:01 - 00004120 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-21 12:50 - 2014-03-29 20:01 - 00003884 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-21 12:50 - 2014-03-29 20:01 - 00001148 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-21 12:50 - 2014-03-29 20:01 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-21 12:36 - 2014-01-25 17:34 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-07-21 12:28 - 2014-03-07 21:33 - 00000000 ____D C:\ProgramData\Oracle
2015-07-21 12:25 - 2014-12-24 21:28 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-21 12:25 - 2014-12-24 21:27 - 00000000 ____D C:\Program Files\Java
2015-07-13 23:10 - 2015-03-14 09:02 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-13 23:10 - 2015-03-14 09:02 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-02-26 20:51 - 2015-02-26 20:51 - 0000000 ___RH () C:\Users\hendr_000\AppData\Roaming\b4d6e8f4ed70928182ebe608f6b39bab2
2015-05-15 12:12 - 2015-05-15 12:12 - 0000046 _____ () C:\Users\hendr_000\AppData\Roaming\Camdata.ini
2015-05-15 12:12 - 2015-05-15 12:12 - 0000408 _____ () C:\Users\hendr_000\AppData\Roaming\CamLayout.ini
2015-05-15 12:12 - 2015-05-15 12:12 - 0000408 _____ () C:\Users\hendr_000\AppData\Roaming\CamShapes.ini
2015-05-15 12:12 - 2015-05-15 12:12 - 0004536 _____ () C:\Users\hendr_000\AppData\Roaming\CamStudio.cfg
2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\hendr_000\AppData\Roaming\UIZJU
2015-05-15 12:11 - 2015-05-15 12:11 - 0000096 _____ () C:\Users\hendr_000\AppData\Roaming\version2.xml
2014-03-07 21:43 - 2014-12-23 16:55 - 0000113 _____ () C:\Users\hendr_000\AppData\Roaming\WB.CFG
2014-12-08 18:03 - 2014-12-08 18:03 - 0202370 _____ () C:\Users\hendr_000\AppData\Local\debuggee.mdmp
2015-01-29 21:01 - 2015-07-01 11:23 - 0000600 _____ () C:\Users\hendr_000\AppData\Local\PUTTY.RND
2015-06-22 17:08 - 2015-06-22 17:08 - 0002836 _____ () C:\Users\hendr_000\AppData\Local\recently-used.xbel
2014-12-26 12:55 - 2015-04-18 07:59 - 0007595 _____ () C:\Users\hendr_000\AppData\Local\Resmon.ResmonCfg
2015-01-27 09:36 - 2015-01-27 09:36 - 0000000 _____ () C:\Users\hendr_000\AppData\Local\{A9E8EC64-9A12-4DF0-8909-6F0BE58BB854}
2015-03-22 17:22 - 2015-03-22 17:22 - 0740775 _____ () C:\ProgramData\AndyDrivers.zip
2015-06-06 14:28 - 2015-06-06 14:28 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\borlndlm.dll
C:\Users\Dirk\AppData\Local\Temp\{9AB2D6BA-D314-4579-92EB-5166BD3BD792}-35.0.1916.153_chrome_installer.exe
C:\Users\hendr_000\AppData\Local\Temp\Quarantine.exe
C:\Users\hendr_000\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-06 17:13
==================== Ende von Ergebnis ============================ |