Avira hat TR/Crypt-XPACK.Gen7 entdeckt.

MrXKiwix · 23.10.2012, 09:31

Wie oben beschrieben wurde Xpack 7gen gefunden von Avira
Ist leider kein Fehlalarm und ich bitte um Hilfe.

Hier ist noch OTl auswertung

OTL logfile created on: 23.10.2012 10:24:04 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Simon\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

8,00 Gb Total Physical Memory | 5,83 Gb Available Physical Memory | 72,92% Memory free
15,99 Gb Paging File | 13,44 Gb Available in Paging File | 84,03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,75 Gb Total Space | 294,60 Gb Free Space | 63,25% Space Free | Partition Type: NTFS

Computer Name: SIMON-PC | User Name: Simon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Simon\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe ()
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\program files (x86)\avira\antivir desktop\avcenter.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\libglesv2.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\libegl.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avutil-51.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avformat-54.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll ()
MOD - C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\SiteSafety.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()

========== Services (SafeList) ==========

SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (vToolbarUpdater13.0.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe ()
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (Netzmanager Service) -- C:\Programme\Netzmanager\NMInfraIS2\Netzmanager_Service.exe (Deutsche Telekom AG)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (WinRing0_1_2_0) -- C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys (OpenLibSys.org)
DRV - (TelekomNM6) -- C:\Programme\Netzmanager\NMInfraIS2\Driver\TelekomNM6.sys (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=hp
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=hp
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..keyword.URL: "https://isearch.avg.com/search?cid=%7B203b5989-58af-4c50-918d-1440b09cdfa8%7D&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&ds=tt014&v=13.0.0.7&lang=de&pr=sa&d=2012-10-01%2013%3A21%3A17&sap=ku&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Simon\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Simon\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\13.0.0.7 [2012.10.01 13:22:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.30 19:33:58 | 000,000,000 | ---D | M]

[2012.09.30 19:34:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Simon\AppData\Roaming\mozilla\Extensions
[2012.09.30 19:33:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011.09.29 09:09:51 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.09.29 03:24:37 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.10.01 13:20:31 | 000,003,743 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2011.09.29 03:16:42 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011.09.29 03:24:37 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.29 03:24:37 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.29 03:24:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.29 03:24:37 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google

riginalQueryForSuggestion}{google:assistedQueryStats}{google:se archFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.79\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\\npsitesafety.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Simon\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google-Suche = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AVG Secure Search = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.0.0.7_0\
CHR - Extension: Battlefield Play4Free = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.80.5_0\
CHR - Extension: Google Mail = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.0.0.7\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.0.0.7\AVG Secure Search_toolbar.dll ()
O3 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O3 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000..\Run: [Spotify Web Helper] C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [5JYZ1C4FVBYX7A6FRWHZXTIXHSQ] C:\gb45g2q434g\22E75E01859.exe /q File not found
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30942007-DF08-4864-84E8-1845CA2582BE}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.0.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{5d1bf1ca-0d79-11e2-9538-50e5495533fb}\Shell - "" = AutoRun
O33 - MountPoints2\{5d1bf1ca-0d79-11e2-9538-50e5495533fb}\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

File not found -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neue Funktion 1
[2012.10.21 19:12:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Sierra Entertainment
[2012.10.21 19:12:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Empire Earth III
[2012.10.20 20:44:21 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2012.10.20 20:44:21 | 000,109,080 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2012.10.20 20:44:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2012.10.20 20:04:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Labtec
[2012.10.20 00:07:26 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Sierra
[2012.10.20 00:07:26 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
[2012.10.20 00:07:19 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012.10.20 00:03:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Games Company
[2012.10.19 23:52:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Games Company
[2012.10.19 21:21:55 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Ubisoft
[2012.10.19 20:18:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2013
[2012.10.19 19:14:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012.10.19 19:14:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2012.10.14 19:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio
[2012.10.14 19:01:12 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Roaming\.#
[2012.10.13 16:29:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Ubisoft Game Launcher
[2012.10.13 16:29:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
[2012.10.13 16:22:12 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\PunkBuster
[2012.10.13 16:06:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2012.10.13 10:10:43 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\fltk.org
[2012.10.13 10:10:43 | 000,000,000 | ---D | C] -- C:\ProgramData\fltk.org
[2012.10.13 10:10:41 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Amnesia
[2012.10.12 19:05:36 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\LogMeIn Hamachi
[2012.10.12 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PunkBuster
[2012.10.12 16:49:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Battlefield Play4Free
[2012.10.12 16:39:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
[2012.10.12 16:19:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Games
[2012.10.11 15:52:20 | 019,906,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.10.11 15:52:20 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.10.11 15:52:20 | 012,501,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.10.11 15:52:20 | 007,697,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.10.11 15:52:20 | 006,127,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012.10.11 15:52:20 | 002,574,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.10.11 15:52:20 | 001,867,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.10.11 14:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft XNA
[2012.10.10 20:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2012.10.10 14:28:11 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012.10.10 14:28:10 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012.10.10 14:28:03 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012.10.10 14:28:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012.10.10 14:28:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012.10.10 14:28:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012.10.10 14:28:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012.10.10 14:28:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012.10.10 14:28:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012.10.10 14:28:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012.10.10 14:28:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012.10.10 14:27:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\Prospekte
[2012.10.09 21:39:21 | 002,428,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.10.09 21:34:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SlimWare Utilities Inc
[2012.10.09 21:34:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
[2012.10.09 21:34:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlimDrivers
[2012.10.09 21:34:09 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012.10.09 20:03:07 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\wargaming.net
[2012.10.09 20:02:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012.10.09 19:52:09 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\SCP-087-B
[2012.10.09 19:24:21 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Evernote
[2012.10.09 14:49:51 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.10.09 14:49:51 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.10.08 13:43:43 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012.10.07 21:35:24 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SniperV2
[2012.10.07 21:31:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rebellion
[2012.10.07 21:28:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rebellion
[2012.10.06 13:59:32 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\FW_DE_Installer_0.201.0
[2012.10.06 13:59:03 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PMB Files
[2012.10.06 13:59:02 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2012.10.05 20:11:39 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\German
[2012.10.05 19:02:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SKIDROW
[2012.10.05 19:02:12 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\My Games
[2012.10.05 18:51:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\2K Games
[2012.10.04 20:19:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012.10.04 18:25:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3
[2012.10.04 18:25:24 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012.10.04 18:25:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012.10.04 06:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012.10.04 06:47:02 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\DAEMON Tools Lite
[2012.10.04 06:47:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2012.10.04 06:46:37 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012.10.03 11:42:43 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Spotify
[2012.10.03 11:42:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Spotify
[2012.10.03 03:20:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\WinRAR
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.10.02 23:01:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2012.10.02 21:51:24 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2012.10.02 21:51:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2012.10.02 14:30:56 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.10.02 14:30:56 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012.10.02 14:30:56 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012.10.02 14:30:56 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012.10.02 14:30:56 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012.10.02 14:30:56 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012.10.02 14:30:56 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012.10.02 14:30:56 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012.10.02 14:30:56 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012.10.02 14:30:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012.10.02 14:30:55 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012.10.02 14:30:55 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.10.02 14:30:55 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012.10.02 14:30:55 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012.10.02 14:30:55 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.10.02 14:30:55 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012.10.02 14:30:55 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.10.02 14:30:55 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012.10.02 14:30:55 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012.10.02 14:30:55 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012.10.02 14:30:55 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.10.02 14:30:55 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012.10.02 14:30:55 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012.10.02 14:30:55 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012.10.02 14:30:55 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012.10.02 14:30:55 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012.10.02 14:30:55 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.10.02 14:30:55 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012.10.02 14:30:55 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012.10.02 14:30:55 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012.10.02 14:30:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012.10.02 14:30:55 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012.10.02 13:15:52 | 000,430,952 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012.10.01 20:55:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012.10.01 20:52:50 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2012.10.01 20:52:49 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2012.10.01 20:52:49 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2012.10.01 20:52:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012.10.01 20:52:42 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012.10.01 20:52:42 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012.10.01 20:52:42 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012.10.01 20:52:41 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012.10.01 20:52:41 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012.10.01 20:52:34 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012.10.01 20:52:24 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012.10.01 20:52:24 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012.10.01 20:52:04 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012.10.01 20:52:04 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012.10.01 20:51:56 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012.10.01 20:51:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2012.10.01 20:51:56 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012.10.01 20:51:52 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012.10.01 20:51:46 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012.10.01 20:51:46 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012.10.01 20:51:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2012.10.01 20:51:41 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012.10.01 20:51:41 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012.10.01 20:51:41 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012.10.01 20:51:41 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012.10.01 20:51:41 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012.10.01 20:51:31 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012.10.01 20:51:29 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012.10.01 20:51:29 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012.10.01 20:51:28 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2012.10.01 20:51:28 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2012.10.01 20:51:22 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012.10.01 20:51:15 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012.10.01 20:51:13 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012.10.01 20:51:11 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2012.10.01 20:51:09 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012.10.01 20:51:03 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012.10.01 20:51:03 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2012.10.01 20:51:01 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2012.10.01 20:46:48 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012.10.01 20:13:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012.10.01 19:24:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WSE
[2012.10.01 19:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Netzmanager
[2012.10.01 19:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netzmanager
[2012.10.01 19:24:19 | 000,000,000 | -H-D | C] -- C:\ProgramData\{87B61FE8-334F-4066-B7AA-68DC81782D4D}
[2012.10.01 19:24:09 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PackageAware
[2012.10.01 19:10:11 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\ElevatedDiagnostics
[2012.10.01 19:01:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\LolClient
[2012.10.01 19:01:30 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012.10.01 19:01:30 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012.10.01 19:01:28 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012.10.01 15:14:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon
[2012.10.01 15:10:02 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.10.01 15:09:32 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Google
[2012.10.01 15:06:20 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Dragonica
[2012.10.01 15:01:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012.10.01 15:01:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012.10.01 15:01:07 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012.10.01 14:57:07 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\NVIDIA
[2012.10.01 14:55:59 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\.minecraft
[2012.10.01 14:44:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Etron Technology
[2012.10.01 14:36:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2012.10.01 14:36:11 | 000,753,280 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2012.10.01 14:36:09 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2012.10.01 14:36:08 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2012.10.01 14:36:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2012.10.01 14:35:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012.10.01 14:33:46 | 000,000,000 | ---D | C] -- C:\temp
[2012.10.01 14:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012.10.01 14:33:03 | 015,309,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.10.01 14:26:33 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius
[2012.10.01 14:25:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2012.10.01 14:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2012.10.01 14:23:24 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\uTorrent
[2012.10.01 14:07:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\DragonicaSCB
[2012.10.01 13:57:28 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2012.10.01 13:56:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Avira
[2012.10.01 13:54:10 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Skype
[2012.10.01 13:53:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012.10.01 13:50:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2012.10.01 13:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2012.10.01 13:50:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2012.10.01 13:34:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2012.10.01 13:24:21 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\AVG Secure Search
[2012.10.01 13:23:24 | 000,021,344 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2012.10.01 13:23:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
[2012.10.01 13:22:57 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012.10.01 13:20:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search
[2012.10.01 13:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG Secure Search
[2012.10.01 13:18:20 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\TuneUp Software
[2012.10.01 13:16:03 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\League of Legends
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\MFAData
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Avg2013
[2012.10.01 13:13:06 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2012.10.01 13:12:27 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.10.01 13:12:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012.10.01 13:09:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Macromedia
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Macromedia
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Adobe
[2012.10.01 12:54:54 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2012.10.01 12:54:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2012.10.01 12:54:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
[2012.10.01 12:54:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DriverTuner
[2012.10.01 12:51:59 | 000,076,392 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.10.01 12:50:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2012.10.01 12:39:14 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2012.10.01 12:39:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2012.10.01 03:30:27 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012.10.01 03:28:20 | 000,000,000 | ---D | C] -- C:\Windows\de-DE
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\de-DE
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0407
[2012.10.01 03:25:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui
[2012.10.01 03:25:53 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui
[2012.10.01 03:25:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui
[2012.10.01 03:25:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui
[2012.10.01 03:25:46 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui
[2012.10.01 03:25:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui
[2012.10.01 03:14:28 | 000,000,000 | ---D | C] -- C:\Windows\Windows.old
[2012.09.30 19:57:22 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\DriverGenius
[2012.09.30 19:36:07 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012.09.30 19:36:07 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012.09.30 19:36:06 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012.09.30 19:36:06 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012.09.30 19:36:04 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012.09.30 19:36:04 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012.09.30 19:36:04 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012.09.30 19:36:04 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012.09.30 19:36:04 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012.09.30 19:36:04 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012.09.30 19:36:03 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012.09.30 19:36:03 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012.09.30 19:36:02 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012.09.30 19:36:02 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2012.09.30 19:36:02 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012.09.30 19:36:01 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012.09.30 19:36:01 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012.09.30 19:36:01 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2012.09.30 19:36:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2012.09.30 19:36:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2012.09.30 19:36:01 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012.09.30 19:36:00 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2012.09.30 19:36:00 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012.09.30 19:36:00 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2012.09.30 19:35:59 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012.09.30 19:35:58 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012.09.30 19:35:58 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012.09.30 19:35:57 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012.09.30 19:35:56 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012.09.30 19:35:56 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012.09.30 19:35:56 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012.09.30 19:35:56 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012.09.30 19:35:56 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012.09.30 19:35:55 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012.09.30 19:35:55 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012.09.30 19:35:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012.09.30 19:35:49 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012.09.30 19:35:49 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012.09.30 19:35:46 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012.09.30 19:35:46 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012.09.30 19:35:45 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012.09.30 19:35:45 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012.09.30 19:35:44 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012.09.30 19:35:44 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012.09.30 19:35:44 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012.09.30 19:35:44 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012.09.30 19:35:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012.09.30 19:35:44 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012.09.30 19:35:43 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012.09.30 19:35:43 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012.09.30 19:35:42 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012.09.30 19:35:42 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012.09.30 19:35:42 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012.09.30 19:35:40 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012.09.30 19:35:40 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012.09.30 19:35:40 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012.09.30 19:35:40 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012.09.30 19:35:39 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012.09.30 19:35:39 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012.09.30 19:35:39 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012.09.30 19:35:39 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012.09.30 19:35:39 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012.09.30 19:35:38 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012.09.30 19:35:38 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012.09.30 19:35:38 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012.09.30 19:35:38 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012.09.30 19:35:38 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012.09.30 19:35:37 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2012.09.30 19:35:37 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012.09.30 19:35:37 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012.09.30 19:35:37 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012.09.30 19:35:36 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012.09.30 19:35:36 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012.09.30 19:35:36 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012.09.30 19:35:35 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012.09.30 19:35:35 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012.09.30 19:35:34 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012.09.30 19:35:34 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012.09.30 19:35:33 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012.09.30 19:35:28 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012.09.30 19:35:28 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012.09.30 19:35:28 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012.09.30 19:35:27 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012.09.30 19:35:27 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012.09.30 19:35:27 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012.09.30 19:35:27 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012.09.30 19:35:26 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012.09.30 19:35:26 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012.09.30 19:34:05 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Mozilla
[2012.09.30 19:34:05 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Mozilla
[2012.09.30 19:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.09.30 18:59:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition
[2012.09.30 18:59:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012.09.30 18:59:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012.09.30 18:59:09 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012.09.30 18:58:32 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012.09.30 18:55:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Programme
[2012.09.30 18:49:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2012.09.30 18:07:10 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Toribash
[2012.09.30 18:02:54 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Diagnostics
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\Searches
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012.09.30 17:59:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Identities
[2012.09.30 17:59:10 | 000,000,000 | R--D | C] -- C:\Users\Simon\Contacts
[2012.09.30 17:59:08 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\VirtualStore
[2012.09.30 17:58:50 | 000,000,000 | --SD | C] -- C:\Users\Simon\AppData\Roaming\Microsoft
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Videos
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Saved Games
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Pictures
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Music
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Links
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Favorites
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Downloads
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Documents
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Desktop
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Vorlagen
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Verlauf
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Temporary Internet Files
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Startmenü
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\SendTo
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Recent
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Netzwerkumgebung
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Lokale Einstellungen
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Videos
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Musik
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Eigene Dateien
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Bilder
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Druckumgebung
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Cookies
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Anwendungsdaten
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Anwendungsdaten
[2012.09.30 17:58:50 | 000,000,000 | -H-D | C] -- C:\Users\Simon\AppData
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Temp
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Microsoft
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Media Center Programs
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2012.09.30 17:35:06 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012.09.30 17:32:47 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012.09.26 22:34:44 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\Lavalon Dragonica
[2010.06.02 05:22:02 | 000,089,944 | ---- | C] (Microsoft Corporation) -- C:\Users\Simon\DSETUP.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.10.23 10:19:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000UA.job
[2012.10.23 10:01:36 | 000,000,410 | ---- | M] () -- C:\Windows\tasks\SlimDrivers Startup.job
[2012.10.23 10:01:01 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\RtlDashSrvStart.job
[2012.10.23 10:00:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.10.23 10:00:53 | 501,833,722 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012.10.23 09:31:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.22 15:19:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000Core.job
[2012.10.21 10:36:18 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012.10.21 10:36:18 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.10.20 21:41:35 | 001,160,505 | ---- | M] () -- C:\Users\Simon\Desktop\auge2.jpg
[2012.10.20 21:11:36 | 008,051,905 | ---- | M] () -- C:\Users\Simon\Desktop\ich liebe dich simon.jpg
[2012.10.20 20:44:21 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2012.10.20 20:44:21 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2012.10.20 20:30:10 | 009,172,364 | ---- | M] () -- C:\Users\Simon\Desktop\le prince charmant.jpg
[2012.10.20 20:03:32 | 003,085,702 | ---- | M] () -- C:\Users\Simon\Desktop\Ich liebe dich.jpg
[2012.10.20 01:09:33 | 000,281,288 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012.10.19 23:31:14 | 000,000,025 | ---- | M] () -- C:\Windows\SIERRA.INI
[2012.10.19 20:18:26 | 000,002,209 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2012.10.19 20:18:26 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
[2012.10.19 19:58:44 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.10.12 18:35:47 | 000,000,222 | ---- | M] () -- C:\Users\Simon\Desktop\APB Reloaded.url
[2012.10.12 14:52:31 | 000,305,016 | ---- | M] () -- C:\Users\Simon\Desktop\Video call snapshot 2.png
[2012.10.12 14:31:00 | 000,115,664 | ---- | M] () -- C:\Users\Simon\Desktop\lächeln.png
[2012.10.11 21:34:54 | 000,152,564 | ---- | M] () -- C:\Users\Simon\Desktop\schurr2.png
[2012.10.11 21:13:39 | 000,177,013 | ---- | M] () -- C:\Users\Simon\Desktop\mein verrückter schadz.png
[2012.10.11 14:45:35 | 000,000,222 | ---- | M] () -- C:\Users\Simon\Desktop\Terraria.url
[2012.10.11 14:20:37 | 000,002,445 | ---- | M] () -- C:\Users\Simon\Desktop\Google Chrome.lnk
[2012.10.10 20:35:05 | 000,000,769 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2012.10.10 15:05:15 | 000,033,041 | ---- | M] () -- C:\Users\Simon\Desktop\Prospekte.rar
[2012.10.09 21:34:10 | 000,002,467 | ---- | M] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2012.10.09 15:31:10 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.10.09 15:31:10 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.10.07 22:45:02 | 000,187,856 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft Modinstaller 1.3.2.jar
[2012.10.07 22:36:55 | 000,063,990 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft Mods.exe
[2012.10.07 21:31:46 | 000,002,221 | ---- | M] () -- C:\Users\Simon\Desktop\Sniper Elite V2.lnk
[2012.10.07 19:19:40 | 000,287,765 | ---- | M] () -- C:\Users\Simon\Desktop\thihihihi.jpg
[2012.10.05 19:39:47 | 000,116,873 | ---- | M] () -- C:\Users\Simon\Desktop\Video call snapshot 12.png
[2012.10.04 21:15:31 | 001,616,854 | ---- | M] () -- C:\Users\Simon\Desktop\schhaddddzzz.png
[2012.10.04 20:19:52 | 000,050,633 | ---- | M] () -- C:\Users\Simon\Desktop\ich liebe dich mein ein und alles.jpg
[2012.10.04 19:43:23 | 000,084,343 | ---- | M] () -- C:\Users\Simon\Desktop\IMG_1358.JPG
[2012.10.04 18:42:25 | 000,000,068 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft.bat
[2012.10.04 18:25:25 | 000,001,182 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2012.10.04 18:25:25 | 000,001,170 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
[2012.10.04 06:47:10 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012.10.03 21:03:31 | 000,093,905 | ---- | M] () -- C:\Users\Simon\Documents\schadzii2.png
[2012.10.03 20:57:56 | 011,595,503 | ---- | M] () -- C:\Users\Simon\Documents\scchhaddzz1234.png
[2012.10.03 11:42:43 | 000,001,805 | ---- | M] () -- C:\Users\Simon\Desktop\Spotify.lnk
[2012.10.03 00:21:00 | 019,906,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.10.03 00:21:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.10.03 00:21:00 | 015,309,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.10.03 00:21:00 | 012,501,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.10.03 00:21:00 | 007,697,768 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.10.03 00:21:00 | 006,127,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012.10.03 00:21:00 | 002,574,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.10.03 00:21:00 | 002,428,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.10.03 00:21:00 | 001,867,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.10.02 14:46:26 | 001,588,762 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.02 14:30:56 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.10.02 14:30:56 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012.10.02 14:30:56 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012.10.02 14:30:56 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012.10.02 14:30:56 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012.10.02 14:30:56 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012.10.02 14:30:56 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012.10.02 14:30:56 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012.10.02 14:30:56 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012.10.02 14:30:56 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012.10.02 14:30:55 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012.10.02 14:30:55 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.10.02 14:30:55 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012.10.02 14:30:55 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012.10.02 14:30:55 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.10.02 14:30:55 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012.10.02 14:30:55 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.10.02 14:30:55 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012.10.02 14:30:55 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012.10.02 14:30:55 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012.10.02 14:30:55 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.10.02 14:30:55 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012.10.02 14:30:55 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012.10.02 14:30:55 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012.10.02 14:30:55 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012.10.02 14:30:55 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012.10.02 14:30:55 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.10.02 14:30:55 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012.10.02 14:30:55 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012.10.02 14:30:55 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012.10.02 14:30:55 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012.10.02 14:30:55 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012.10.02 14:30:55 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012.10.02 13:15:52 | 000,430,952 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012.10.01 19:24:30 | 000,001,003 | ---- | M] () -- C:\Users\Public\Desktop\Netzmanager.lnk
[2012.10.01 19:01:35 | 000,001,722 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends spielen .lnk
[2012.10.01 15:01:08 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012.10.01 14:54:12 | 000,263,186 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft.exe
[2012.10.01 14:25:14 | 000,001,207 | ---- | M] () -- C:\Users\Simon\Desktop\Driver Genius Professional Edition.lnk
[2012.10.01 14:23:46 | 000,000,943 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012.10.01 13:50:57 | 000,002,066 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012.10.01 12:54:08 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\DriverTuner.lnk
[2012.10.01 12:21:18 | 060,004,288 | ---- | M] () -- C:\Users\Simon\Desktop\PROWinx64.exe
[2012.10.01 03:30:15 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2012.09.30 20:01:01 | 000,000,000 | -H-- | M] () -- C:\Users\Simon\Documents\Default.rdp
[2012.09.30 19:34:00 | 000,001,138 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.30 19:31:48 | 000,001,842 | ---- | M] () -- C:\Users\Simon\Desktop\cnc3ep1 - Verknüpfung.lnk
[2012.09.30 18:59:01 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012.09.30 17:36:56 | 000,055,513 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.10.20 21:41:10 | 001,160,505 | ---- | C] () -- C:\Users\Simon\Desktop\auge2.jpg
[2012.10.20 21:10:59 | 008,051,905 | ---- | C] () -- C:\Users\Simon\Desktop\ich liebe dich simon.jpg
[2012.10.20 20:29:31 | 009,172,364 | ---- | C] () -- C:\Users\Simon\Desktop\le prince charmant.jpg
[2012.10.20 20:02:56 | 003,085,702 | ---- | C] () -- C:\Users\Simon\Desktop\Ich liebe dich.jpg
[2012.10.19 23:26:05 | 000,000,025 | ---- | C] () -- C:\Windows\SIERRA.INI
[2012.10.12 18:35:47 | 000,000,222 | ---- | C] () -- C:\Users\Simon\Desktop\APB Reloaded.url
[2012.10.12 17:00:42 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012.10.12 16:39:36 | 000,281,288 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012.10.12 16:39:36 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.10.12 16:39:35 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.10.12 14:52:09 | 000,305,016 | ---- | C] () -- C:\Users\Simon\Desktop\Video call snapshot 2.png
[2012.10.12 14:30:58 | 000,115,664 | ---- | C] () -- C:\Users\Simon\Desktop\lächeln.png
[2012.10.11 21:34:51 | 000,152,564 | ---- | C] () -- C:\Users\Simon\Desktop\schurr2.png
[2012.10.11 21:13:36 | 000,177,013 | ---- | C] () -- C:\Users\Simon\Desktop\mein verrückter schadz.png
[2012.10.11 14:45:35 | 000,000,222 | ---- | C] () -- C:\Users\Simon\Desktop\Terraria.url
[2012.10.10 20:35:05 | 000,000,769 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2012.10.10 15:05:15 | 000,033,041 | ---- | C] () -- C:\Users\Simon\Desktop\Prospekte.rar
[2012.10.09 21:34:17 | 000,000,410 | ---- | C] () -- C:\Windows\tasks\SlimDrivers Startup.job
[2012.10.09 21:34:10 | 000,002,467 | ---- | C] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2012.10.09 14:49:52 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.08 13:43:41 | 501,833,722 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012.10.07 22:46:37 | 000,187,856 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft Modinstaller 1.3.2.jar
[2012.10.07 22:37:02 | 000,063,990 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft Mods.exe
[2012.10.07 21:31:46 | 000,002,221 | ---- | C] () -- C:\Users\Simon\Desktop\Sniper Elite V2.lnk
[2012.10.07 19:19:18 | 000,287,765 | ---- | C] () -- C:\Users\Simon\Desktop\thihihihi.jpg
[2012.10.05 19:39:29 | 000,116,873 | ---- | C] () -- C:\Users\Simon\Desktop\Video call snapshot 12.png
[2012.10.04 21:15:03 | 001,616,854 | ---- | C] () -- C:\Users\Simon\Desktop\schhaddddzzz.png
[2012.10.04 20:19:39 | 000,050,633 | ---- | C] () -- C:\Users\Simon\Desktop\ich liebe dich mein ein und alles.jpg
[2012.10.04 19:43:21 | 000,084,343 | ---- | C] () -- C:\Users\Simon\Desktop\IMG_1358.JPG
[2012.10.04 18:42:25 | 000,000,068 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft.bat
[2012.10.04 18:25:25 | 000,001,182 | ---- | C] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2012.10.04 18:25:25 | 000,001,170 | ---- | C] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
[2012.10.04 06:47:10 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012.10.03 21:03:15 | 000,093,905 | ---- | C] () -- C:\Users\Simon\Documents\schadzii2.png
[2012.10.03 20:57:13 | 011,595,503 | ---- | C] () -- C:\Users\Simon\Documents\scchhaddzz1234.png
[2012.10.03 11:42:43 | 000,001,805 | ---- | C] () -- C:\Users\Simon\Desktop\Spotify.lnk
[2012.10.03 11:42:43 | 000,001,791 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2012.10.02 21:57:55 | 000,000,308 | ---- | C] () -- C:\Windows\tasks\RtlDashSrvStart.job
[2012.10.02 14:30:55 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012.10.01 19:24:30 | 000,001,003 | ---- | C] () -- C:\Users\Public\Desktop\Netzmanager.lnk
[2012.10.01 19:01:35 | 000,001,722 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends spielen .lnk
[2012.10.01 15:10:03 | 000,002,445 | ---- | C] () -- C:\Users\Simon\Desktop\Google Chrome.lnk
[2012.10.01 15:09:34 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000UA.job
[2012.10.01 15:09:33 | 000,001,068 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000Core.job
[2012.10.01 15:01:08 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012.10.01 14:54:12 | 000,263,186 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft.exe
[2012.10.01 14:23:46 | 000,000,943 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012.10.01 13:50:57 | 000,002,066 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012.10.01 13:40:16 | 001,588,762 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.01 13:23:23 | 000,002,209 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2012.10.01 13:23:23 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
[2012.10.01 13:23:20 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk
[2012.10.01 12:54:08 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\DriverTuner.lnk
[2012.10.01 12:24:54 | 060,004,288 | ---- | C] () -- C:\Users\Simon\Desktop\PROWinx64.exe
[2012.10.01 03:29:52 | 000,000,029 | RH-- | C] () -- C:\Windows\version
[2012.09.30 20:01:01 | 000,000,000 | -H-- | C] () -- C:\Users\Simon\Documents\Default.rdp
[2012.09.30 19:34:00 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.09.30 19:34:00 | 000,001,138 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.30 19:31:48 | 000,001,842 | ---- | C] () -- C:\Users\Simon\Desktop\cnc3ep1 - Verknüpfung.lnk
[2012.09.30 18:59:36 | 000,001,207 | ---- | C] () -- C:\Users\Simon\Desktop\Driver Genius Professional Edition.lnk
[2012.09.30 17:59:30 | 000,001,405 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012.09.30 17:59:25 | 000,001,439 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012.09.30 17:36:43 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012.09.30 17:36:29 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012.01.18 06:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012.01.18 06:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012.01.18 06:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2010.06.02 05:22:54 | 001,412,902 | ---- | C] () -- C:\Users\Simon\OCT2006_d3dx9_31_x64.cab
[2010.06.02 05:22:54 | 001,127,217 | ---- | C] () -- C:\Users\Simon\OCT2006_d3dx9_31_x86.cab
[2010.06.02 05:22:54 | 000,273,960 | ---- | C] () -- C:\Users\Simon\Nov2008_XAudio_x64.cab
[2010.06.02 05:22:54 | 000,272,611 | ---- | C] () -- C:\Users\Simon\Nov2008_XAudio_x86.cab
[2010.06.02 05:22:54 | 000,182,361 | ---- | C] () -- C:\Users\Simon\OCT2006_XACT_x64.cab
[2010.06.02 05:22:54 | 000,138,017 | ---- | C] () -- C:\Users\Simon\OCT2006_XACT_x86.cab
[2010.06.02 05:22:54 | 000,086,037 | ---- | C] () -- C:\Users\Simon\Oct2005_xinput_x64.cab
[2010.06.02 05:22:54 | 000,045,359 | ---- | C] () -- C:\Users\Simon\Oct2005_xinput_x86.cab
[2010.06.02 05:22:52 | 001,906,878 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx9_40_x64.cab
[2010.06.02 05:22:52 | 001,550,796 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx9_40_x86.cab
[2010.06.02 05:22:52 | 000,965,421 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx10_40_x86.cab
[2010.06.02 05:22:52 | 000,121,794 | ---- | C] () -- C:\Users\Simon\Nov2008_XACT_x64.cab
[2010.06.02 05:22:52 | 000,092,684 | ---- | C] () -- C:\Users\Simon\Nov2008_XACT_x86.cab
[2010.06.02 05:22:52 | 000,054,522 | ---- | C] () -- C:\Users\Simon\Nov2008_X3DAudio_x64.cab
[2010.06.02 05:22:52 | 000,021,851 | ---- | C] () -- C:\Users\Simon\Nov2008_X3DAudio_x86.cab
[2010.06.02 05:22:50 | 000,994,154 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx10_40_x64.cab
[2010.06.02 05:22:50 | 000,196,762 | ---- | C] () -- C:\Users\Simon\NOV2007_XACT_x64.cab
[2010.06.02 05:22:50 | 000,148,264 | ---- | C] () -- C:\Users\Simon\NOV2007_XACT_x86.cab
[2010.06.02 05:22:50 | 000,046,144 | ---- | C] () -- C:\Users\Simon\NOV2007_X3DAudio_x64.cab
[2010.06.02 05:22:50 | 000,018,496 | ---- | C] () -- C:\Users\Simon\NOV2007_X3DAudio_x86.cab
[2010.06.02 05:22:48 | 001,802,058 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx9_36_x64.cab
[2010.06.02 05:22:48 | 001,709,360 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx9_36_x86.cab
[2010.06.02 05:22:48 | 000,864,600 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx10_36_x64.cab
[2010.06.02 05:22:48 | 000,803,884 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx10_36_x86.cab
[2010.06.02 05:22:48 | 000,273,018 | ---- | C] () -- C:\Users\Simon\Mar2009_XAudio_x86.cab
[2010.06.02 05:22:46 | 000,275,044 | ---- | C] () -- C:\Users\Simon\Mar2009_XAudio_x64.cab
[2010.06.02 05:22:46 | 000,121,506 | ---- | C] () -- C:\Users\Simon\Mar2009_XACT_x64.cab
[2010.06.02 05:22:46 | 000,092,740 | ---- | C] () -- C:\Users\Simon\Mar2009_XACT_x86.cab
[2010.06.02 05:22:38 | 000,054,600 | ---- | C] () -- C:\Users\Simon\Mar2009_X3DAudio_x64.cab
[2010.06.02 05:22:38 | 000,021,298 | ---- | C] () -- C:\Users\Simon\Mar2009_X3DAudio_x86.cab
[2010.06.02 05:22:36 | 001,973,702 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx9_41_x64.cab
[2010.06.02 05:22:36 | 001,612,446 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx9_41_x86.cab
[2010.06.02 05:22:36 | 001,067,160 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx10_41_x64.cab
[2010.06.02 05:22:36 | 001,040,745 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx10_41_x86.cab
[2010.06.02 05:22:36 | 000,251,194 | ---- | C] () -- C:\Users\Simon\Mar2008_XAudio_x64.cab
[2010.06.02 05:22:36 | 000,226,250 | ---- | C] () -- C:\Users\Simon\Mar2008_XAudio_x86.cab
[2010.06.02 05:22:36 | 000,122,336 | ---- | C] () -- C:\Users\Simon\Mar2008_XACT_x64.cab
[2010.06.02 05:22:36 | 000,093,734 | ---- | C] () -- C:\Users\Simon\Mar2008_XACT_x86.cab
[2010.06.02 05:22:34 | 001,769,862 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx9_37_x64.cab
[2010.06.02 05:22:34 | 001,443,282 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx9_37_x86.cab
[2010.06.02 05:22:34 | 000,818,260 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx10_37_x86.cab
[2010.06.02 05:22:34 | 000,055,058 | ---- | C] () -- C:\Users\Simon\Mar2008_X3DAudio_x64.cab
[2010.06.02 05:22:34 | 000,021,867 | ---- | C] () -- C:\Users\Simon\Mar2008_X3DAudio_x86.cab
[2010.06.02 05:22:32 | 000,937,246 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx9_43_x64.cab
[2010.06.02 05:22:32 | 000,844,884 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx10_37_x64.cab
[2010.06.02 05:22:32 | 000,768,036 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx9_43_x86.cab
[2010.06.02 05:22:32 | 000,278,060 | ---- | C] () -- C:\Users\Simon\Jun2010_XAudio_x86.cab
[2010.06.02 05:22:32 | 000,277,338 | ---- | C] () -- C:\Users\Simon\Jun2010_XAudio_x64.cab
[2010.06.02 05:22:32 | 000,124,596 | ---- | C] () -- C:\Users\Simon\Jun2010_XACT_x64.cab
[2010.06.02 05:22:32 | 000,093,686 | ---- | C] () -- C:\Users\Simon\Jun2010_XACT_x86.cab
[2010.06.02 05:22:30 | 000,762,188 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dcsx_43_x86.cab
[2010.06.02 05:22:30 | 000,235,955 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx10_43_x64.cab
[2010.06.02 05:22:30 | 000,197,283 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx10_43_x86.cab
[2010.06.02 05:22:30 | 000,138,205 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx11_43_x64.cab
[2010.06.02 05:22:30 | 000,109,445 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx11_43_x86.cab
[2010.06.02 05:22:28 | 000,944,460 | ---- | C] () -- C:\Users\Simon\Jun2010_D3DCompiler_43_x64.cab
[2010.06.02 05:22:28 | 000,931,471 | ---- | C] () -- C:\Users\Simon\Jun2010_D3DCompiler_43_x86.cab
[2010.06.02 05:22:28 | 000,752,783 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dcsx_43_x64.cab
[2010.06.02 05:22:20 | 000,269,024 | ---- | C] () -- C:\Users\Simon\JUN2008_XAudio_x86.cab
[2010.06.02 05:22:18 | 001,792,608 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx9_38_x64.cab
[2010.06.02 05:22:18 | 001,463,878 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx9_38_x86.cab
[2010.06.02 05:22:18 | 000,867,828 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx10_38_x64.cab
[2010.06.02 05:22:18 | 000,849,919 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx10_38_x86.cab
[2010.06.02 05:22:18 | 000,269,628 | ---- | C] () -- C:\Users\Simon\JUN2008_XAudio_x64.cab
[2010.06.02 05:22:18 | 000,152,909 | ---- | C] () -- C:\Users\Simon\JUN2007_XACT_x86.cab
[2010.06.02 05:22:18 | 000,121,054 | ---- | C] () -- C:\Users\Simon\JUN2008_XACT_x64.cab
[2010.06.02 05:22:18 | 000,093,128 | ---- | C] () -- C:\Users\Simon\JUN2008_XACT_x86.cab
[2010.06.02 05:22:18 | 000,055,154 | ---- | C] () -- C:\Users\Simon\JUN2008_X3DAudio_x64.cab
[2010.06.02 05:22:18 | 000,021,905 | ---- | C] () -- C:\Users\Simon\JUN2008_X3DAudio_x86.cab
[2010.06.02 05:22:16 | 001,607,774 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx9_34_x64.cab
[2010.06.02 05:22:16 | 001,607,286 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx9_34_x86.cab
[2010.06.02 05:22:16 | 001,064,925 | ---- | C] () -- C:\Users\Simon\Jun2005_d3dx9_26_x86.cab
[2010.06.02 05:22:16 | 000,699,044 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx10_34_x64.cab
[2010.06.02 05:22:16 | 000,698,472 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx10_34_x86.cab
[2010.06.02 05:22:16 | 000,197,122 | ---- | C] () -- C:\Users\Simon\JUN2007_XACT_x64.cab
[2010.06.02 05:22:16 | 000,180,785 | ---- | C] () -- C:\Users\Simon\JUN2006_XACT_x64.cab
[2010.06.02 05:22:16 | 000,133,671 | ---- | C] () -- C:\Users\Simon\JUN2006_XACT_x86.cab
[2010.06.02 05:22:14 | 001,336,002 | ---- | C] () -- C:\Users\Simon\Jun2005_d3dx9_26_x64.cab
[2010.06.02 05:22:14 | 000,277,191 | ---- | C] () -- C:\Users\Simon\Feb2010_XAudio_x86.cab
[2010.06.02 05:22:14 | 000,276,960 | ---- | C] () -- C:\Users\Simon\Feb2010_XAudio_x64.cab
[2010.06.02 05:22:14 | 000,122,446 | ---- | C] () -- C:\Users\Simon\Feb2010_XACT_x64.cab
[2010.06.02 05:22:14 | 000,093,180 | ---- | C] () -- C:\Users\Simon\Feb2010_XACT_x86.cab
[2010.06.02 05:22:12 | 000,194,675 | ---- | C] () -- C:\Users\Simon\FEB2007_XACT_x64.cab
[2010.06.02 05:22:12 | 000,147,983 | ---- | C] () -- C:\Users\Simon\FEB2007_XACT_x86.cab
[2010.06.02 05:22:12 | 000,054,678 | ---- | C] () -- C:\Users\Simon\Feb2010_X3DAudio_x64.cab
[2010.06.02 05:22:12 | 000,020,713 | ---- | C] () -- C:\Users\Simon\Feb2010_X3DAudio_x86.cab
[2010.06.02 05:22:10 | 000,178,359 | ---- | C] () -- C:\Users\Simon\Feb2006_XACT_x64.cab
[2010.06.02 05:22:10 | 000,132,409 | ---- | C] () -- C:\Users\Simon\Feb2006_XACT_x86.cab
[2010.06.02 05:22:04 | 001,084,720 | ---- | C] () -- C:\Users\Simon\Feb2006_d3dx9_29_x86.cab
[2010.06.02 05:22:02 | 001,801,048 | ---- | C] () -- C:\Users\Simon\dsetup32.dll
[2010.06.02 05:22:02 | 001,574,376 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx9_32_x86.cab
[2010.06.02 05:22:02 | 001,362,796 | ---- | C] () -- C:\Users\Simon\Feb2006_d3dx9_29_x64.cab
[2010.06.02 05:22:02 | 001,247,499 | ---- | C] () -- C:\Users\Simon\Feb2005_d3dx9_24_x64.cab
[2010.06.02 05:22:02 | 001,013,225 | ---- | C] () -- C:\Users\Simon\Feb2005_d3dx9_24_x86.cab
[2010.06.02 05:22:02 | 000,537,432 | ---- | C] () -- C:\Users\Simon\DXSETUP.exe
[2010.06.02 05:22:02 | 000,192,475 | ---- | C] () -- C:\Users\Simon\DEC2006_XACT_x64.cab
[2010.06.02 05:22:02 | 000,145,599 | ---- | C] () -- C:\Users\Simon\DEC2006_XACT_x86.cab
[2010.06.02 05:22:02 | 000,094,011 | ---- | C] () -- C:\Users\Simon\dxupdate.cab
[2010.06.02 05:22:02 | 000,042,410 | ---- | C] () -- C:\Users\Simon\dxdllreg_x86.cab
[2010.06.02 05:22:00 | 001,571,154 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx9_32_x64.cab
[2010.06.02 05:22:00 | 001,357,976 | ---- | C] () -- C:\Users\Simon\Dec2005_d3dx9_28_x64.cab
[2010.06.02 05:22:00 | 001,079,456 | ---- | C] () -- C:\Users\Simon\Dec2005_d3dx9_28_x86.cab
[2010.06.02 05:22:00 | 000,273,264 | ---- | C] () -- C:\Users\Simon\Aug2009_XAudio_x64.cab
[2010.06.02 05:22:00 | 000,272,642 | ---- | C] () -- C:\Users\Simon\Aug2009_XAudio_x86.cab
[2010.06.02 05:22:00 | 000,212,807 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx10_00_x64.cab
[2010.06.02 05:22:00 | 000,191,720 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx10_00_x86.cab
[2010.06.02 05:22:00 | 000,122,408 | ---- | C] () -- C:\Users\Simon\Aug2009_XACT_x64.cab
[2010.06.02 05:22:00 | 000,093,106 | ---- | C] () -- C:\Users\Simon\Aug2009_XACT_x86.cab
[2010.06.02 05:21:58 | 000,930,116 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx9_42_x64.cab
[2010.06.02 05:21:58 | 000,728,456 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx9_42_x86.cab
[2010.06.02 05:21:58 | 000,232,635 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx10_42_x64.cab
[2010.06.02 05:21:58 | 000,192,131 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx10_42_x86.cab
[2010.06.02 05:21:58 | 000,136,301 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx11_42_x64.cab
[2010.06.02 05:21:58 | 000,105,044 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx11_42_x86.cab
[2010.06.02 05:21:56 | 003,319,740 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dcsx_42_x86.cab
[2010.06.02 05:21:56 | 003,112,111 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dcsx_42_x64.cab
[2010.06.02 05:21:56 | 000,900,598 | ---- | C] () -- C:\Users\Simon\Aug2009_D3DCompiler_42_x86.cab
[2010.06.02 05:21:46 | 000,919,044 | ---- | C] () -- C:\Users\Simon\Aug2009_D3DCompiler_42_x64.cab
[2010.06.02 05:21:46 | 000,271,412 | ---- | C] () -- C:\Users\Simon\Aug2008_XAudio_x64.cab
[2010.06.02 05:21:46 | 000,271,038 | ---- | C] () -- C:\Users\Simon\Aug2008_XAudio_x86.cab
[2010.06.02 05:21:44 | 001,794,084 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx9_39_x64.cab
[2010.06.02 05:21:44 | 001,464,672 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx9_39_x86.cab
[2010.06.02 05:21:44 | 000,849,167 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx10_39_x86.cab
[2010.06.02 05:21:44 | 000,198,096 | ---- | C] () -- C:\Users\Simon\AUG2007_XACT_x64.cab
[2010.06.02 05:21:44 | 000,153,012 | ---- | C] () -- C:\Users\Simon\AUG2007_XACT_x86.cab
[2010.06.02 05:21:44 | 000,121,772 | ---- | C] () -- C:\Users\Simon\Aug2008_XACT_x64.cab
[2010.06.02 05:21:44 | 000,092,996 | ---- | C] () -- C:\Users\Simon\Aug2008_XACT_x86.cab
[2010.06.02 05:21:42 | 001,800,160 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx9_35_x64.cab
[2010.06.02 05:21:42 | 001,708,152 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx9_35_x86.cab
[2010.06.02 05:21:42 | 000,867,612 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx10_39_x64.cab
[2010.06.02 05:21:42 | 000,852,286 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx10_35_x64.cab
[2010.06.02 05:21:42 | 000,796,867 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx10_35_x86.cab
[2010.06.02 05:21:40 | 001,350,542 | ---- | C] () -- C:\Users\Simon\Aug2005_d3dx9_27_x64.cab
[2010.06.02 05:21:40 | 001,077,644 | ---- | C] () -- C:\Users\Simon\Aug2005_d3dx9_27_x86.cab
[2010.06.02 05:21:40 | 000,182,903 | ---- | C] () -- C:\Users\Simon\AUG2006_XACT_x64.cab
[2010.06.02 05:21:40 | 000,137,235 | ---- | C] () -- C:\Users\Simon\AUG2006_XACT_x86.cab
[2010.06.02 05:21:40 | 000,087,142 | ---- | C] () -- C:\Users\Simon\AUG2006_xinput_x64.cab
[2010.06.02 05:21:40 | 000,053,302 | ---- | C] () -- C:\Users\Simon\APR2007_xinput_x86.cab
[2010.06.02 05:21:40 | 000,046,058 | ---- | C] () -- C:\Users\Simon\AUG2006_xinput_x86.cab
[2010.06.02 05:21:38 | 001,606,039 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx9_33_x86.cab
[2010.06.02 05:21:38 | 000,195,766 | ---- | C] () -- C:\Users\Simon\APR2007_XACT_x64.cab
[2010.06.02 05:21:38 | 000,151,225 | ---- | C] () -- C:\Users\Simon\APR2007_XACT_x86.cab
[2010.06.02 05:21:38 | 000,096,817 | ---- | C] () -- C:\Users\Simon\APR2007_xinput_x64.cab
[2010.06.02 05:21:36 | 001,607,358 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx9_33_x64.cab
[2010.06.02 05:21:36 | 000,698,612 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx10_33_x64.cab
[2010.06.02 05:21:36 | 000,695,865 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx10_33_x86.cab
[2010.06.02 05:21:34 | 000,046,010 | ---- | C] () -- C:\Users\Simon\Apr2006_xinput_x86.cab
[2010.06.02 05:21:20 | 000,087,101 | ---- | C] () -- C:\Users\Simon\Apr2006_xinput_x64.cab
[2010.06.02 05:21:18 | 004,162,630 | ---- | C] () -- C:\Users\Simon\Apr2006_MDX1_x86_Archive.cab
[2010.06.02 05:21:18 | 000,916,430 | ---- | C] () -- C:\Users\Simon\Apr2006_MDX1_x86.cab
[2010.06.02 05:21:18 | 000,179,133 | ---- | C] () -- C:\Users\Simon\Apr2006_XACT_x64.cab
[2010.06.02 05:21:18 | 000,133,103 | ---- | C] () -- C:\Users\Simon\Apr2006_XACT_x86.cab
[2010.06.02 05:21:16 | 001,397,830 | ---- | C] () -- C:\Users\Simon\Apr2006_d3dx9_30_x64.cab
[2010.06.02 05:21:16 | 001,347,354 | ---- | C] () -- C:\Users\Simon\Apr2005_d3dx9_25_x64.cab
[2010.06.02 05:21:16 | 001,115,221 | ---- | C] () -- C:\Users\Simon\Apr2006_d3dx9_30_x86.cab
[2010.06.02 05:21:16 | 001,078,962 | ---- | C] () -- C:\Users\Simon\Apr2005_d3dx9_25_x86.cab

========== ZeroAccess Check ==========

[2012.10.08 13:20:03 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\l.class
[2012.10.08 13:20:03 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\n.class
[2012.10.08 13:20:03 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\u.class
[2012.10.07 22:38:00 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\l.class
[2012.10.07 22:38:00 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\n.class
[2012.10.07 22:38:00 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\u.class
[2012.10.08 13:27:10 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\l.class
[2012.10.08 13:27:10 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\n.class
[2012.10.08 13:27:10 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\u.class
[2012.10.08 13:09:56 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\l.class
[2012.10.08 13:09:56 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\n.class
[2012.10.08 13:09:56 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\u.class
[2012.10.07 22:42:07 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\l.class
[2012.10.07 22:42:07 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\n.class
[2012.10.07 22:42:07 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\u.class
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

Psychotic · 23.10.2012, 11:04

Downloade dir bitte CKScanner Wichtig: Speichere die Datei am Desktop.

Doppelklick auf die CKScanner.exe und klicke auf Search For Files.
Danach klick auf Save List To File.
Es wird eine Box aufpoppen was dir mitteilt das die Datei gespeichert wurde (file saved)
Öffne die CKFiles.txt auf deinem Desktop und poste den Inhalt hier.

MrXKiwix · 23.10.2012, 18:04

Entschuldigung das ich erst so spät Antworten konnte.Hatte noch zutuhen.

CKScanner 2.1 - Additional Security Risks - These are not necessarily bad
c:\games\toribash-3.99\replay\head and nut cracker.rpl
c:\users\simon\desktop\osu!\songs\8455 capcom sound team - last stage\capcom sound team - last stage (crack) [hard].osu
c:\users\simon\desktop\osu!\songs\8455 capcom sound team - last stage\capcom sound team - last stage (crack) [insane].osu
c:\users\simon\desktop\osu!\songs\8455 capcom sound team - last stage\capcom sound team - last stage (crack) [normal].osu
c:\users\simon\desktop\osu!\songs\8455 capcom sound team - last stage\capcom sound team - last stage (crack) [sadkangaroo's flower].osu
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\sounds\11\11_glass_crack.snt
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\sounds\11\11_glass_crack01.ogg
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\sounds\11\11_glass_crack02.ogg
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\sounds\11\11_glass_crack03.ogg
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\castlebase\ceiling\corridor_crack.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\castlebase\ceiling\corridor_crack.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\cellarbase\special\cracked_ceiling.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\cellarbase\special\cracked_ceiling.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue.mat
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue01.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue01.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue02.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue02.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue03.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue03.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue04.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue04.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue_back.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_blue_back.mat
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown.mat
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown01.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown01.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown02.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown02.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown03.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown03.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown04.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown04.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown_back.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_brown_back.mat
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_nrm.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\decals\cracks_spec.dds
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\dungeonbase\ceiling\default_cracked.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\dungeonbase\ceiling\default_cracked.msh
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.dae
c:\users\simon\desktop\r.g. element arts\amnesia. the dark descent\redist\static_objects\dungeonbase\wall\corridor_graves_cracked.msh
c:\users\simon\desktop\steam\steamapps\909067\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vmt
c:\users\simon\desktop\steam\steamapps\909067\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vtf
c:\users\simon\desktop\steam\steamapps\common\apb reloaded\apbgame\content\release\packages\symboleditor\primitives_splatscracks.upk
c:\users\simon\desktop\steam\steamapps\jackpotxd\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vmt
c:\users\simon\desktop\steam\steamapps\jackpotxd\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vtf
c:\users\simon\desktop\steam\steamapps\xxshurikonxx\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vmt
c:\users\simon\desktop\steam\steamapps\xxshurikonxx\counter-strike source\cstrike\materials\sprites\trails\crackedbeam.vtf
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrack.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncracklightmap.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetailcrackndetailncrackshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrack.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
c:\users\simon\documents\battlefield play4free\mods\main\cache\{d7b71e3e-42d3-11cf-d771-2d241fc2c435}_241612_4\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
c:\users\simon\downloads\tuu2012v120350014crackfix (1).rar
c:\users\simon\downloads\tuu2012v120350014crackfix.rar
scanner sequence 3.ZZ.11.HNAPXD
----- EOF -----

Psychotic · 24.10.2012, 13:08

Mein Name ist Marius und ich werde dir bei deinem Problem helfen.

Eines vorneweg:

Hinweis: Wir können hier nie dafür garantieren, dass wir sämtliche Reste von Schadsoftware gefunden haben. Eine Formatierung ist meist der schnellste und immer der sicherste Weg.

Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass dein Rechner clean ist.

Eine Bereinigung ist mitunter mit viel Arbeit für dich verbunden.

Bitte arbeite alle Schritte der Reihe nach ab.
Lese die Anleitungen sorgfältig. Solltest du irgendwo nicht weiterkommen, stoppe an diesem Punkt und beschreibe dein Problem hier!
Nur Scans durchführen, zu denen du von einem Helfer aufgefordert wirst.
Bitte kein Crossposting (posten in mehreren Foren) - wenn du die Anweisungen mehrere Helfer ausführst, kann das schwere Probleme nach sich ziehen!.
Installiere oder Deinstalliere während der Bereinigung keine Software (ausser, du wurdest dazu aufgefordert).
Wenn etwas unklar ist: Frage, bevor du etwas "blind" machst!

...und ganz wichtig:
Poste die Logfiles mit code-tags (das #-Symbol oben im Antwortfenster) in deinen Thread! Nicht anhängen, außer, ich fordere dich dazu auf. (Erschwert mir nämlich das Auswerten).

Vista und Win7 User
Alle Tools mit Rechtsklick --> "als Administrator ausführen" starten.

Schritt 1: defogger

Downloade Dir bitte defogger von jpshortstuff auf Deinem Desktop.

Starte das Tool mit Doppelklick.
Vista und Win7 User mit Rechtsklick "als Administrator starten".
Klicke nun auf den Disable Button um die Treiber gewisser Emulatoren zu deaktivieren.
Wenn der Scan beendet wurde ( Finished ), klicke auf OK.
Defogger fordert gegebenfalls zum Neustart auf. Bestätige dies mit OK.

Sollte Defogger eine Fehlermeldung ausgeben, poste bitte die defogger_disable Log von deinem Desktop.
Klicke den Re-enable Button nicht ohne Anweisung.

Schritt 2: aswMBR

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe - (aswMBR.exe Anleitung) Vista und Win7 User mit Rechtsklick "als Admininstartor starten"
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. ( Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen ) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

Schritt 3: Scan mit TDSS-Killer

Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen. Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und speichere das Logfile. TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern ( Meistens C:\ ) Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt

Poste den Inhalt bitte hier in deinen Thread.

Psychotic · 26.10.2012, 09:04

Hallo, benötigst Du noch weiterhin Hilfe ? Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten. Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist

Psychotic · 30.10.2012, 10:44

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten.
PM an mich falls Du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen

Avira hat TR/Crypt-XPACK.Gen7 entdeckt.

Plagegeister aller Art und deren Bekämpfung: Avira hat TR/Crypt-XPACK.Gen7 entdeckt.