Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.10.2013, 16:34   #1
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Servus Leute,

ich hab mir heute den Bundespolizei-Trojaner eingefangen. Ich wollte ihn mit Hilfe des Abgesicherten Modus selbst löschen, aber der funktioniert auch nicht mehr. Hab mir schon FRST64.exe runtergeladen und dem Stick eine txt-Datei erstellt.

Hoffe mir kann jemand weiter helfen, denn ab jetzt weiß ich nicht weiter. Wenn es einen anderen, leichteren Weg gibt den Trojaner wieder loszuwerden. Bitte sagt mir diesen Weg.

MFG Crunk3r

Alt 11.10.2013, 16:48   #2
aharonov
/// TB-Ausbilder
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Hallo,

da liegt noch mehr im Argen als nur der Sperrbildschirm..
Startet der Rechner nach diesem Fix wieder normal?


Drücke bitte die + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Startup: C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fofra8zb.lnk
ShortcutTarget: fofra8zb.lnk -> C:\PROGRA~3\bz8arfof.plz ()
S2 Winmgmt; C:\PROGRA~3\fofra8zb.pzz [60512 2013-10-11] (Microsoft Corporation)
S2 Winmgmt; C:\PROGRA~3\fofra8zb.pzz [60512 2013-10-11] (Microsoft Corporation)
S0 f916af8653778635; C:\Windows\System32\Drivers\f916af8653778635.sys [74696 2013-09-26] () <===== ATTENTION
C:\Windows\System32\Drivers\f916af8653778635.sys
2013-10-11 15:15 - 2013-10-11 15:15 - 01593856 ____T C:\ProgramData\fofra8zb.fki
2013-10-11 14:57 - 2013-10-11 14:57 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-10-11 14:57 - 2013-10-11 14:57 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-10-11 14:46 - 2013-10-11 16:01 - 95025368 ____T C:\ProgramData\fofra8zb.pff
2013-10-11 14:46 - 2013-10-11 16:01 - 00000000 _____ C:\ProgramData\fofra8zb.ctrl
2013-10-11 14:46 - 2013-10-11 14:46 - 00115200 _____ C:\ProgramData\bz8arfof.plz
2013-10-11 14:46 - 2013-10-11 14:46 - 00060512 ____T (Microsoft Corporation) C:\ProgramData\fofra8zb.pzz
C:\Users\gamer\AppData\Local\Temp\*.exe
C:\Users\gamer\AppData\Local\Temp\*.dll
C:\Users\gamer\AppData\Roaming\settings.ini
C:\Users\gamer\AppData\Roaming\i.ini
testsigning: ==> Check for possible unsigned malware driver <===== ATTENTION!
         
Speichere diese bitte als Fixlist.txt auf deinem USB Stick.
  • Starte deinen Rechner erneut in die Reparaturoptionen
  • Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.
__________________

__________________

Alt 11.10.2013, 17:27   #3
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Danke für die schnelle Antwort. Und ja er startet wieder fehlerfrei.

Zitat:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2013
Ran by SYSTEM at 2013-10-11 18:23:24 Run:1
Running from G:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
Startup: C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fofra8zb.lnk
ShortcutTarget: fofra8zb.lnk -> C:\PROGRA~3\bz8arfof.plz ()
S2 Winmgmt; C:\PROGRA~3\fofra8zb.pzz [60512 2013-10-11] (Microsoft Corporation)
S2 Winmgmt; C:\PROGRA~3\fofra8zb.pzz [60512 2013-10-11] (Microsoft Corporation)
S0 f916af8653778635; C:\Windows\System32\Drivers\f916af8653778635.sys [74696 2013-09-26] () <===== ATTENTION
C:\Windows\System32\Drivers\f916af8653778635.sys
2013-10-11 15:15 - 2013-10-11 15:15 - 01593856 ____T C:\ProgramData\fofra8zb.fki
2013-10-11 14:57 - 2013-10-11 14:57 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-10-11 14:57 - 2013-10-11 14:57 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-10-11 14:46 - 2013-10-11 16:01 - 95025368 ____T C:\ProgramData\fofra8zb.pff
2013-10-11 14:46 - 2013-10-11 16:01 - 00000000 _____ C:\ProgramData\fofra8zb.ctrl
2013-10-11 14:46 - 2013-10-11 14:46 - 00115200 _____ C:\ProgramData\bz8arfof.plz
2013-10-11 14:46 - 2013-10-11 14:46 - 00060512 ____T (Microsoft Corporation) C:\ProgramData\fofra8zb.pzz
C:\Users\gamer\AppData\Local\Temp\*.exe
C:\Users\gamer\AppData\Local\Temp\*.dll
C:\Users\gamer\AppData\Roaming\settings.ini
C:\Users\gamer\AppData\Roaming\i.ini
testsigning: ==> Check for possible unsigned malware driver <===== ATTENTION!
*****************

C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fofra8zb.lnk => Moved successfully.
C:\PROGRA~3\bz8arfof.plz => Moved successfully.
Winmgmt => Service restored successfully.
Winmgmt => Service restored successfully.
f916af8653778635 => Service deleted successfully.
C:\Windows\System32\Drivers\f916af8653778635.sys => Moved successfully.
C:\ProgramData\fofra8zb.fki => Moved successfully.
C:\Windows\SysWOW64\searchplugins => Moved successfully.
C:\Windows\SysWOW64\Extensions => Moved successfully.
C:\ProgramData\fofra8zb.pff => Moved successfully.
C:\ProgramData\fofra8zb.ctrl => Moved successfully.
"C:\ProgramData\bz8arfof.plz" => File/Directory not found.
C:\ProgramData\fofra8zb.pzz => Moved successfully.
C:\Users\gamer\AppData\Local\Temp\*.exe => Moved successfully.
C:\Users\gamer\AppData\Local\Temp\*.dll => Moved successfully.
C:\Users\gamer\AppData\Roaming\settings.ini => Moved successfully.
"C:\Users\gamer\AppData\Roaming\i.ini" => File/Directory not found.

Die angegebene Eintrags-ID ist nicht gltig.
Falscher Parameter.

==== End of Fixlog ====
MFG Crunk3r
__________________

Alt 11.10.2013, 17:27   #4
aharonov
/// TB-Ausbilder
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Ok. Verschiebe die frst64.exe vom USB-Stick auf den Desktop.
  • Starte dann FRST.
  • Setze bei Optional Scan den Haken bei Addition.txt und drücke Scan.
  • Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und Addition.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieser beiden Logfiles bitte hier in deinen Thread.
__________________
cheers,
Leo

Alt 11.10.2013, 17:42   #5
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Seit wann steht rechts unten Windows Test Version?

1.Addition
2.FRST
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013
Ran by gamer at 2013-10-11 18:32:35
Running from F:\
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32)
3DMark 11 (x32 Version: 1.0.3)
Act of War: Direct Action (x32)
Act of War: High Treason (x32)
Adobe Acrobat 5.0 (x32 Version: 5.0)
Adobe AIR (x32 Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader 9.5.1 - Deutsch (x32 Version: 9.5.1)
Age of Empires III (x32 Version: 1.00.0000)
Alien Swarm (x32)
Allied Intent Xtended 2.0 (x32 Version: 2.0)
Apple Application Support (x32 Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
applicationupdater (HKCU)
Ask Toolbar (x32 Version: 1.15.24.0)
Assassin's Creed II (x32)
ASUSUpdate (x32 Version: 7.18.03)
Audacity 2.0.2 (x32 Version: 2.0.2)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Avira SearchFree Toolbar plus Web Protection Updater (HKCU Version: 1.2.5.42066)
BabylonObjectInstaller (x32 Version: 2.0.0.3)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 2(TM) (x32)
Battlefield 3™ (x32 Version: 1.5.0.0)
Battlefield 4™ Beta (x32 Version: 1.0.0.0)
Battlefield: Bad Company 2 (x32)
Battlelog Web Plugins (x32 Version: 2.3.0)
BF2ALL64 (x32)
BitGuard (x32)
Call of Duty 4: Modern Warfare (x32)
Call of Duty: Modern Warfare 2 - Multiplayer (x32)
Call of Duty: Modern Warfare 2 (x32)
Camtasia Studio 7 (x32 Version: 7.0.1)
CCleaner (Version: 3.17)
CDDRV_Installer (Version: 4.60)
Company of Heroes (New Steam Version) (x32)
Company of Heroes (x32)
Company of Heroes: Opposing Fronts (x32)
Company of Heroes: Tales of Valor (x32)
Counter-Strike (x32)
Counter-Strike: Global Offensive (x32)
Counter-Strike: Source (x32 Version: 1.0.0.0)
Counter-Strike: Source (x32)
CPU-Control (x32)
Crysis (x32 Version: 1.1.1.6115)
Crysis WARHEAD(R) (x32 Version: 1.0)
Crysis WARHEAD(R) (x32)
Crysis® 2 (x32 Version: 1.0.0.0)
Crysis®3 (x32 Version: 1.1.0.0)
D3DX10 (x32 Version: 15.4.2368.0902)
Dead Space (x32)
Delta Chrome Toolbar (x32)
Delta toolbar   (x32 Version: 1.8.24.6)
Die Schlacht um Mittelerde(tm) (x32)
dLAN Cockpit (x32 Version: 3 (23.12.2010))
dLAN Cockpit (x32 Version: 3.23.12)
Duke Nukem Forever (x32)
Dxtory 2.0.104 (x32 Version: 2.0.104)
Empire: Total War (x32)
erLT (x32 Version: 1.20.0137)
ESL Wire 1.17.2
F.E.A.R. Ultimate Shooter Edition (x32 Version: 1.00.0000)
Fable III (x32 Version: 1.0.0001.131)
Far Cry 2 (x32)
FEAR_Installer_Fix (x32 Version: 1.0)
Fotogalerie (x32 Version: 16.4.3505.0912)
Fraps (remove only) (x32)
Free YouTube Download version 3.1.37.918 (x32 Version: 3.1.37.918)
Free YouTube to MP3 Converter version 3.11.33.1005 (x32 Version: 3.11.33.1005)
FreeMind (x32 Version: 0.9.0)
gamelauncher-ps2-live (HKCU)
GIGABYTE OC_GURU II (x32 Version: 1.30.0000)
GIMP 2.6.8
Google Chrome (x32 Version: 30.0.1599.69)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.153)
Grand Theft Auto IV (x32)
Grand Theft Auto San Andreas (x32 Version: 1.00.00001)
Grand Theft Auto: Episodes from Liberty City (x32)
GTA2 (x32 Version: 1.00.001)
Half-Life Dedicated Server Update Tool (x32)
iTunes (Version: 11.0.4.4)
Java 7 Update 7 (64-bit) (Version: 7.0.70)
Java Auto Updater (x32 Version: 2.1.6.0)
Java(TM) 7 Update 5 (x32 Version: 7.0.50)
JMicron JMB36X Driver (x32 Version: 1.17.65.11)
KhalInstallWrapper (Version: 2.00.0000)
League of Legends (x32 Version: 1.02.0000)
Left 4 Dead (x32)
Left 4 Dead 2 (x32)
LemurLeap 1.0.0 (Version: 1.0.0)
Logitech SetPoint (x32 Version: 4.80)
LogMeIn Hamachi (x32 Version: 2.2.0.58)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Age of Empires II (x32)
Microsoft Age of Empires II: The Conquerors Expansion (x32)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server 2008 (x32)
Microsoft SQL Server 2008 Browser (x32 Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (x32 Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (x32 Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (x32 Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.1.2531.0)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Movie Maker (x32 Version: 16.4.3505.0912)
Mp3tag v2.51 (x32 Version: v2.51)
MSI Afterburner 2.2.3 (x32 Version: 2.2.3)
MSU Screen Capture Lossless Codec v1.2 (Remove Only) (x32)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT Redists (x32 Version: 1.0)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MTA:SA v1.3.1 (x32 Version: v1.3.1)
Need for Speed™ Carbon (x32)
Need for Speed™ The Run (x32 Version: 1.1.0.0)
Need For Speed™ World (x32 Version: 1.0.0.722)
NVIDIA Install Application (Version: 2.1002.124.810)
NVIDIA Systemsteuerung 320.49 (Version: 320.49)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Origin (x32 Version: 8.6.0.357)
Photo Gallery (x32 Version: 16.4.3505.0912)
PlanetSide 2 (x32)
Platform (x32 Version: 1.34)
PunkBuster Services (x32 Version: 0.993)
Realtek Ethernet Controller Driver (x32 Version: 7.53.216.2012)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0)
Roll (x32)
RollerCoaster Tycoon 2 (x32)
S.T.A.L.K.E.R. - Call Of Pripyat [v1.6.01] (x32 Version: 1.6.01)
Service Pack 1 für SQL Server 2008 (KB 968369) (x32 Version: 10.1.2531.0)
Skype™ 6.0 (x32 Version: 6.0.126)
SlimDrivers (x32 Version: 2.2.29035)
Software Version Updater (x32 Version: 1.1.3.8)
Solid Edge ST3 (x32 Version: 103.00.00114)
Sound Blaster Tactic(3D) (x32 Version: 1.0)
Source SDK Base 2007 (x32)
Split/Second (x32 Version: 1.00.0000)
Sql Server Customer Experience Improvement Program (x32 Version: 10.1.2531.0)
Star Wars Battlefront II (x32 Version: 1.0)
Steam(TM) (x32 Version: 1.0.0.0)
System Requirements Lab (x32)
System Requirements Lab for Intel (x32 Version: 4.5.5.0)
T4E Player (x32)
T4E.Live Player 1.1.4 (x32 Version: 1.1.4)
Team Fortress 2 (x32)
TeamSpeak 3 Client (HKCU Version: 3.0.13)
TeamViewer 7 (x32 Version: 7.0.15723)
TmNationsForever (x32)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.3600.73)
TurboV EVO (x32 Version: 1.02.31)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup  (x32 Version: 10.1.2531.0)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825641) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
Vegas Pro 12.0 (64-bit) (Version: 12.0.563)
VIA Plattform-Geräte-Manager (x32 Version: 1.34)
VirtualDJ Home FREE (x32 Version: 7.3)
War Thunder Launcher 1.0.1.252 (x32)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
WinRAR
WORLD IN CONFLICT (x32 Version: 1.0.1.0)
Zombie Panic Source (x32)

==================== Restore Points  =========================

09-10-2013 17:40:17 SlimDrivers Installing Drivers
11-10-2013 13:02:51 Removed dLAN Cockpit

==================== Hosts content: ==========================

2009-07-14 04:34 - 2012-12-03 16:43 - 00000952 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	toybox.garrysmod.com
127.0.0.1	toyboxapi.garrysmod.com
127.0.0.1       www.xnxx.com
127.0.0.1       www.xnxx.de


==================== Scheduled Tasks (whitelisted) =============

Task: {2B505EBB-ED65-49EA-8757-0DF548966822} - System32\Tasks\{6B3A1E09-F7B8-4453-974F-EA77F71C4F42} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.114/de/go/help.faq.installer?LastError=1603
Task: {2DF60CA3-271F-4538-AC24-ADA51973114F} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {50244373-B123-460A-97D0-747A845B43B9} - System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {51AECB53-BA42-47C0-8C15-35F362684812} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-04-24] (SlimWare Utilities, Inc.)
Task: {51CB4F05-6131-49F5-AD9D-0F13C0955118} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe
Task: {591AE46F-70E0-4377-BAD7-CBF82A7E0CF8} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe [2010-07-07] (ASUSTeK Computer Inc.)
Task: {5D8679AE-32CA-4D1A-B30D-7E55B481ADAB} - System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F} => D:\Games\Origin\Origin.exe [2013-10-01] (Electronic Arts)
Task: {806B13F0-1419-4C60-9EA6-E6917E9809F0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {93D33FF8-2DB4-4219-B4DC-F0731CFAC870} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-04-01] ()
Task: {95B132FF-F528-480F-AE30-BD4BA5FA9D7F} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
Task: {9A281EA2-A748-4B70-8F23-123B3DBFEDEB} - System32\Tasks\Game_Booster_Startup => D:\Games\Game Booster 3\gbtray.exe
Task: {AD0D9041-1FA9-4178-B9E4-729BDDD10F3B} - System32\Tasks\Game_Booster_AutoUpdate => D:\Games\Game Booster 3\AutoUpdate.exe
Task: {BC4EA1AC-EF85-4DCD-B771-EF3040B32959} - System32\Tasks\Express Files Updater => C:\Program Files (x86)\ExpressFiles\EFupdater.exe
Task: {D885E508-EC01-4F3C-91D4-FA5576D16820} - System32\Tasks\EPUpdater => C:\Users\gamer\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] ()
Task: {E069D60B-C574-4246-8094-DDE46F67651C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30] (Google Inc.)
Task: {E3ED988C-4033-49B4-8FE8-F9D6D5006EDB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-30] (Google Inc.)
Task: {E804AE94-28F5-492A-A3F7-883D13D61E17} - System32\Tasks\Escolade => C:\Users\gamer\AppData\Roaming\iPumper\Updater.exe
Task: {EB5F4595-11BC-4E51-A3F5-72D72CD2C7D5} - System32\Tasks\AmiUpdXp => C:\Users\gamer\AppData\Local\SwvUpdater\Updater.exe [2013-10-07] (Amonetizé Ltd)
Task: {F3E56FAC-399D-452E-80B9-A437125A2A67} - System32\Tasks\RunAsStdUser Task => C:\Users\gamer\AppData\Local\Oxy\Application\oxy.exe
Task: {F7982840-AFA1-4839-9186-B2E0371CB158} - System32\Tasks\{99EA31B1-1583-4BFA-B03D-05192F186CCC} => C:\Users\gamer\Desktop\MinecraftSP.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\gamer\AppData\Local\SwvUpdater\Updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2011-10-28 15:48 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2013-05-19 14:43 - 2000-01-01 02:00 - 00078456 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2013-05-19 14:43 - 2000-01-01 02:00 - 00386168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2013-10-07 14:58 - 2013-09-23 13:55 - 02704352 _____ () C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll
2013-04-26 21:24 - 2013-10-02 16:23 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-10-27 22:07 - 2010-02-08 17:19 - 00053248 _____ () C:\Program Files\ASUS\TurboV EVO\HookKey32.dll
2011-10-27 22:07 - 2010-06-01 10:38 - 00253952 _____ () C:\Program Files\ASUS\TurboV EVO\pngio.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\gamer\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\gamer\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: sptd
Description: sptd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: sptd
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/11/2013 06:26:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/11/2013 04:15:42 PM) (Source: Application Hang) (User: )
Description: Programm rundll32.exe, Version 6.1.7600.16385 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: dc8

Startzeit: 01cec68c47030d15

Endzeit: 2

Anwendungspfad: C:\Windows\SysWOW64\rundll32.exe

Berichts-ID: 96f0ed1d-327f-11e3-a725-bcaec55dd29f

Error: (10/11/2013 03:47:39 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: regedit.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc072
Name des fehlerhaften Moduls: bitguard.dll, Version: 2.6.1694.246, Zeitstempel: 0x52402c3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017966f
ID des fehlerhaften Prozesses: 0x29fc
Startzeit der fehlerhaften Anwendung: 0xregedit.exe0
Pfad der fehlerhaften Anwendung: regedit.exe1
Pfad des fehlerhaften Moduls: regedit.exe2
Berichtskennung: regedit.exe3

Error: (10/11/2013 01:27:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/10/2013 05:21:44 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/10/2013 00:01:45 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Unerwarteter Fehler "CreateFileW(\\?\Volume{b4f56ae1-00d2-11e1-a6ce-806e6f6e6963},0x80000000,0x00000003,...)". hr = 0x80070005, Zugriff verweigert
.


Vorgang:
   Automatisch freigegebene Schattenkopien werden entfernt
   Anbieter wird geladen

Kontext:
   Ausführungskontext: System Provider

Error: (10/10/2013 11:26:49 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/09/2013 09:53:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/09/2013 04:15:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/09/2013 03:13:13 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 30.0.1599.69, Zeitstempel: 0x524cdedb
Name des fehlerhaften Moduls: bitguard.dll, Version: 2.6.1694.246, Zeitstempel: 0x52402c3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0017966f
ID des fehlerhaften Prozesses: 0x1708
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3


System errors:
=============
Error: (10/11/2013 06:29:11 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/11/2013 06:29:10 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/11/2013 06:29:10 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (10/11/2013 06:25:37 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
mv91xx
mvs91xx
sptd

Error: (10/11/2013 06:25:33 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update LemurLeap" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/11/2013 06:25:33 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update LemurLeap erreicht.

Error: (10/11/2013 06:24:34 PM) (Source: sptd) (User: )
Description: Der Treiber hat einen internen Fehler in seinen Datenstrukturen für  festgestellt.

Error: (10/11/2013 05:49:19 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/11/2013 05:49:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Verwaltungsinstrumentation" wurde mit folgendem Fehler beendet: 
%%127

Error: (10/11/2013 05:49:09 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
mv91xx
mvs91xx
sptd


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 26%
Total physical RAM: 7339.05 MB
Available physical RAM: 5389.64 MB
Total Pagefile: 52337.24 MB
Available Pagefile: 50205.24 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:488.18 GB) (Free:351.53 GB) NTFS
Drive d: (Games) (Fixed) (Total:1374.73 GB) (Free:884.21 GB) NTFS
Drive f: () (Removable) (Total:0.94 GB) (Free:0.94 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 88C66BEA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=-722913460224) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 968 MB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=967 MB) - (Type=06)

==================== End Of Log ============================
         

MFG


Alt 11.10.2013, 17:43   #6
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by gamer (administrator) on GAMERPC on 11-10-2013 18:30:09
Running from F:\
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
() C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKCU\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
MountPoints2: {916f4ef4-00ef-11e1-b6b9-bcaec55dd29f} - "G:\WD SmartWare.exe" autoplay=true
MountPoints2: {916f51b2-00ef-11e1-b6b9-bcaec55dd29f} - G:\unlock.exe autoplay=true
MountPoints2: {b4f56ae5-00d2-11e1-a6ce-806e6f6e6963} - E:\.\Bin\ASSETUP.exe
MountPoints2: {c5c9903a-00d6-11e1-ae28-806e6f6e6963} - E:\Autorun.exe
MountPoints2: {d04cc7cf-dd45-11e1-8490-806e6f6e6963} - E:\autorun.exe
MountPoints2: {d504954f-7147-11e2-9507-806e6f6e6963} - E:\SETUP.EXE -autorun
MountPoints2: {ed2c2bf0-9753-11e1-b34f-bcaec55dd29f} - F:\setup.exe
MountPoints2: {f20574ec-49d9-11e1-b4dd-bcaec55dd29f} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)
AppInit_DLLs-x32: c:\progra~3\bitguard\261694~1.246\{c16c1~1\bitguard.dll  [2704352 2013-09-23] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3451FE17C294CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = hxxp://search.babylon.com/?affID=110819&babsrc=HP_ss&mntrId=66e82cee000000000000bcaec55dd29f
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.brothersoft.com?f=undefined
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
URLSearchHook: (No Name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} -  No File
URLSearchHook: (No Name) - {40c3cc16-7269-4b32-9531-17f2950fb06f} -  No File
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=bndlr&chnl=bndlr&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FtB0C0E0EtN0D0TzutBtDtCtBtDyCtByE&cr=1069731072
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0D7562AE-8EF6-416d-A838-AB665251703A} URL = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://isearch.avg.com/search?cid={F401C052-85EA-43ED-860E-90EC11B34B3B}&mid=5f07896a533047d191f66de783b93b6c-912624b100a92f13ab5a1c784a727d31b76a3a6f&lang=en&ds=qw011&pr=sa&d=2012-08-02 11:19:46&v=12.1.0.21&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - {B52A983B-8D6A-40F9-9D77-0DC2F0233211} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb119/?search={searchTerms}&loc=IB_DS&a=6PQnGN3UCJ&i=26
SearchScopes: HKCU - {F87C7CF5-AB46-4B0A-AAFB-BBB8019EC3AA} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deDE456
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll (Delta-search.com)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM-x32 - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll (Delta-search.com)
Toolbar: HKCU -  No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU -  No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU -  No Name - {BA14329E-9550-4989-B3F2-9732E92D17CC} -  No File
Toolbar: HKCU -  No Name - {40C3CC16-7269-4B32-9531-17F2950FB06F} -  No File
Toolbar: HKCU -  No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Toolbar: HKCU -  No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default
FF user.js: detected! => C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\user.js
FF NewTab: hxxp://search.babylon.com/?affID=114347&tt=3212_8&babsrc=NT_ss&mntrId=66e82cee000000000000bcaec55dd29f
FF DefaultSearchEngine: Ask.com
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: hxxp://isearch.brothersoft.com?f=undefined
FF Homepage: hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\dvdvideosofttb-customized-web-search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\funmoods.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\Search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\searchya.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
FF Extension: General Crawler - C:\Users\gamer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
FF Extension: Delta Toolbar - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\ffxtlbr@delta.com
FF Extension: Better Battlelog (BBLog) - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\toolbar@ask.com
FF Extension: No Name - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

Chrome: 
=======
CHR Extension: (GFACE Experience Plugin) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol\0.37.0_0
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.0_0
CHR Extension: (AdBlock) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\gamer\AppData\Local\funmoods-speeddial.crx
CHR HKLM\...\Chrome\Extension: [fdloijijlkoblmigdofommgnheckmaki] - C:\Users\gamer\AppData\Local\funmoods.crx
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.24.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aaaangaohdajkgeopjhpbnlpkehbhmbj] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaangaohdajkgeopjhpbnlpkehbhmbj_7.15.11.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Users\gamer\AppData\Roaming\BabylonToolbar\CR\BabylonChrome1.crx
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\gamer\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
R2 BitGuard; C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2845664 2013-09-23] ()
S3 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2013-06-11] ()
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-30] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-29] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-30] (Microsoft Corporation)
S2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-26] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-10-28] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-09] ()
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2012-09-28] (Creative Technology Ltd.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
S0 mv91xx; system32\DRIVERS\mv91xx.sys [x]
S0 mvs91xx; system32\DRIVERS\mvs91xx.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WinRing0_1_2_0; \??\D:\Games\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-11 18:29 - 2013-10-11 16:50 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-09 21:54 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-09 16:21 - 2013-10-09 16:22 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 17:25 - 2013-10-08 17:26 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:23 - 2013-10-07 15:23 - 00000000 ____D C:\Users\gamer\AppData\Roaming\YourFileDownloader
2013-10-07 15:10 - 2013-10-10 11:25 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 15:06 - 1998-01-23 12:22 - 00304128 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-07 14:59 - 2013-10-11 18:26 - 00000356 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00003376 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\SwvUpdater
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 14:58 - 2013-10-07 15:23 - 00003386 _____ C:\Windows\System32\Tasks\EPUpdater
2013-10-07 14:58 - 2013-10-07 15:23 - 00000000 ____D C:\ProgramData\DSearchLink
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Delta
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Babylon
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\BabSolution
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Program Files (x86)\Delta
2013-10-02 19:37 - 2013-06-21 12:23 - 06496544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 03514656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00884512 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-02 19:37 - 2013-06-20 06:17 - 03253909 _____ C:\Windows\system32\nvcoproc.bin
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:07 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Systweak
2013-10-02 19:07 - 2013-05-27 16:01 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:34 - 2013-10-02 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 17:01 - 2013-10-02 17:07 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 17:01 - 2011-11-04 20:11 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Microsoft Help
2013-10-02 17:01 - 2011-10-28 15:37 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Macromedia
2013-10-02 17:01 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-02 17:01 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 15:56 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-10-02 15:56 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 01059560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 00021578 _____ C:\Windows\system32\nvinfo.pb
2013-10-01 17:17 - 2013-10-01 17:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-19 18:54 - 2013-09-19 18:56 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:49 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:27 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-19 18:27 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG
2013-09-19 18:14 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-19 18:14 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-19 18:14 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-19 18:14 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-19 18:14 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-09-19 18:14 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-09-19 18:13 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-19 18:13 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-19 18:13 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-19 18:13 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-09-19 18:13 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-09-19 18:13 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-09-19 18:13 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-09-19 18:13 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-09-19 18:12 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-19 18:12 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-19 18:12 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-19 18:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-19 18:12 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-19 18:12 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-09-19 18:12 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-09-19 18:12 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-19 18:12 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-09-19 18:12 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-09-19 18:12 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-09-19 18:12 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-09-19 18:12 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-19 18:12 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-09-19 18:12 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-19 18:11 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-19 18:11 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-19 18:11 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-19 18:11 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-19 18:11 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-19 18:11 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-19 18:11 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-09-19 18:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-19 18:11 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-09-19 18:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-19 18:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-09-19 18:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-09-19 18:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-19 18:11 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-09-19 18:11 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-09-19 18:11 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-09-19 18:11 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-09-19 18:11 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-09-19 18:11 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

==================== One Month Modified Files and Folders =======

2013-10-11 19:23 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-11 18:29 - 2012-08-20 18:46 - 00093588 _____ C:\Windows\setupact.log
2013-10-11 18:29 - 2012-07-13 16:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-11 18:29 - 2011-04-12 09:43 - 00766530 _____ C:\Windows\system32\perfh007.dat
2013-10-11 18:29 - 2011-04-12 09:43 - 00174416 _____ C:\Windows\system32\perfc007.dat
2013-10-11 18:29 - 2009-07-14 07:13 - 01808802 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 18:26 - 2013-10-07 14:59 - 00000356 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-10-11 18:25 - 2012-01-19 16:37 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn Hamachi
2013-10-11 18:25 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 16:50 - 2013-10-11 18:29 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 16:18 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-11 16:18 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-11 15:50 - 2012-08-22 16:57 - 00324102 _____ C:\Windows\PFRO.log
2013-10-11 15:40 - 2013-05-17 17:46 - 00000000 ____D C:\Users\gamer\AppData\Local\DoNotTrackPlus
2013-10-11 15:01 - 2013-10-09 21:54 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-11 15:01 - 2013-10-02 19:07 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Systweak
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 21:03 - 2011-11-07 15:50 - 00000000 ___RD C:\Users\gamer\Desktop\Playlist
2013-10-10 21:03 - 2011-11-07 15:36 - 00000000 ___RD C:\Users\gamer\Desktop\Musik
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 20:06 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Spiele
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-10 11:25 - 2013-10-07 15:10 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-09 21:55 - 2012-01-08 15:58 - 00003526 _____ C:\Windows\System32\Tasks\RunAsStdUser Task
2013-10-09 21:54 - 2011-10-27 21:54 - 00000000 ____D C:\Users\gamer
2013-10-09 21:52 - 2012-02-10 17:11 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-09 19:39 - 2012-02-10 17:11 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-09 19:39 - 2012-02-10 17:11 - 00002838 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-09 17:33 - 2012-07-13 16:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 17:33 - 2012-04-10 14:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 17:33 - 2011-11-03 22:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:35 - 2012-04-11 13:02 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-09 16:35 - 2011-10-28 17:16 - 00215416 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-09 16:22 - 2013-10-09 16:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 22:45 - 2011-12-02 18:06 - 00000000 ____D C:\Users\gamer\Documents\Camtasia Studio
2013-10-08 22:30 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\TS3Client
2013-10-08 20:59 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Local\TeamSpeak 3 Client
2013-10-08 17:26 - 2013-10-08 17:25 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-08 12:29 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:23 - 2013-10-07 15:23 - 00000000 ____D C:\Users\gamer\AppData\Roaming\YourFileDownloader
2013-10-07 15:23 - 2013-10-07 14:58 - 00003386 _____ C:\Windows\System32\Tasks\EPUpdater
2013-10-07 15:23 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\DSearchLink
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00003376 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\SwvUpdater
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Delta
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Babylon
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\BabSolution
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Program Files (x86)\Delta
2013-10-02 19:49 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Patches
2013-10-02 19:47 - 2011-10-27 16:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-02 19:45 - 2011-10-27 21:37 - 01781017 _____ C:\Windows\WindowsUpdate.log
2013-10-02 19:44 - 2012-09-17 17:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-02 19:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:36 - 2013-10-02 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 19:22 - 2012-06-20 18:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Tobit
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:27 - 2013-05-22 14:04 - 00000000 ____D C:\Users\gamer\AppData\Local\ESL Wire Game Client
2013-10-02 17:24 - 2012-11-30 15:18 - 00003818 _____ C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
2013-10-02 17:24 - 2012-10-08 18:35 - 00003096 _____ C:\Windows\System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72}
2013-10-02 17:24 - 2012-05-24 19:59 - 00002918 _____ C:\Windows\System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F}
2013-10-02 17:07 - 2013-10-02 17:01 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 16:35 - 2012-02-07 16:00 - 00000000 ____D C:\Users\gamer\AppData\Roaming\InstallDir
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:24 - 2013-04-26 21:25 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 14:50 - 2011-10-28 17:55 - 00000000 ____D C:\Users\gamer\AppData\Local\PunkBuster
2013-10-02 14:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-02 14:35 - 2011-10-28 16:38 - 00000000 ____D C:\ProgramData\Origin
2013-10-01 17:40 - 2012-12-07 15:00 - 00000000 ____D C:\Users\gamer\AppData\Local\NVIDIA
2013-10-01 17:21 - 2013-10-01 17:17 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-30 19:21 - 2011-10-28 17:55 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-29 21:43 - 2012-04-11 13:02 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-29 21:43 - 2011-10-28 17:55 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-09-29 21:42 - 2012-08-26 14:32 - 00448312 _____ C:\Windows\DirectX.log
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-27 10:57 - 2013-10-02 15:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-02 15:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-09-21 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-19 19:09 - 2011-10-27 21:55 - 00001427 _____ C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-19 19:09 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-19 19:08 - 2011-10-27 22:34 - 00000000 ____D C:\Windows\Panther
2013-09-19 19:07 - 2009-07-14 06:45 - 02378272 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-19 19:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-19 19:01 - 2011-11-30 20:37 - 01785760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-19 18:56 - 2013-09-19 18:54 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:56 - 2011-10-28 15:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-19 18:49 - 2013-09-19 18:41 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:17 - 2009-07-14 04:34 - 00000659 _____ C:\Windows\win.ini
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-01 18:16

==================== End Of Log ============================
         
--- --- ---

Alt 11.10.2013, 17:48   #7
aharonov
/// TB-Ausbilder
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Zitat:
Seit wann steht rechts unten Windows Test Version?
Seit ein unsignierter Rootkittreiber bei dir den testsigning Modus eingeschaltet hat. Wird dann noch korrigiert.


Schritt 1
  • Gehe zu Start --> Systemsteuerung und öffne Programme und Funktionen.
  • Suche und deinstalliere dort der Reihe nach folgende Einträge:
    BitGuard
    Delta Chrome Toolbar
    Delta toolbar
  • Schliesse das Fenster wieder und führe einen Neustart durch, wenn das gefordert wurde.



Schritt 2

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



Schritt 3

Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.



Bitte poste in deiner nächsten Antwort:
  • Log von AdwCleaner
  • Log von FRST
__________________
cheers,
Leo

Alt 11.10.2013, 17:53   #8
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Code:
ATTFilter
# AdwCleaner v3.007 - Bericht erstellt am 11/10/2013 um 18:51:15
# Updated 09/10/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : gamer - GAMERPC
# Gestartet von : C:\Users\gamer\Desktop\Musik\music bitch\Downloads\adwcleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gefunden : C:\END
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml
Datei Gefunden : C:\Users\gamer\AppData\Local\funmoods-speeddial.crx
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\Askcom.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\avg-secure-search.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\dvdvideosofttb-customized-web-search.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\funmoods.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\search.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\searchya.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\SweetIm.xml
Datei Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\user.js
Datei Gefunden : C:\Windows\System32\roboot64.exe
Datei Gefunden : C:\Windows\System32\Tasks\AmiUpdXp
Datei Gefunden : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
Datei Gefunden : C:\Windows\Tasks\AmiUpdXp.job
Ordner Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Ordner Gefunden : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\toolbar@ask.com
Ordner Gefunden C:\Program Files (x86)\Ask.com
Ordner Gefunden C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gefunden C:\Program Files (x86)\Conduit
Ordner Gefunden C:\ProgramData\Ask
Ordner Gefunden C:\ProgramData\Babylon
Ordner Gefunden C:\ProgramData\BitGuard
Ordner Gefunden C:\ProgramData\DSearchLink
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gefunden C:\ProgramData\Premium
Ordner Gefunden C:\Users\gamer\AppData\Local\AskToolbar
Ordner Gefunden C:\Users\gamer\AppData\Local\Conduit
Ordner Gefunden C:\Users\gamer\AppData\Local\eSupport.com
Ordner Gefunden C:\Users\gamer\AppData\Local\Mail.Ru
Ordner Gefunden C:\Users\gamer\AppData\Local\SwvUpdater
Ordner Gefunden C:\Users\gamer\AppData\Local\Temp\AskSearch
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\AskToolbar
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\BabylonToolbar
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\Conduit
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\Delta
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\incredibar.com
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\Ironsource
Ordner Gefunden C:\Users\gamer\AppData\LocalLow\PriceGong
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Babylon
Ordner Gefunden C:\Users\gamer\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Media Finder
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.Ru
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\jetpack
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Smartbar
Ordner Gefunden C:\Users\gamer\AppData\Roaming\Systweak
Ordner Gefunden C:\Users\gamer\AppData\Roaming\yourfiledownloader

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\APN PIP
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\smartbar
Schlüssel Gefunden : HKCU\Software\Ask.com
Schlüssel Gefunden : HKCU\Software\AskToolbar
Schlüssel Gefunden : HKCU\Software\BabSolution
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\DataMngr
Schlüssel Gefunden : HKCU\Software\DataMngr_Toolbar
Schlüssel Gefunden : HKCU\Software\Delta
Schlüssel Gefunden : HKCU\Software\ExpressFiles
Schlüssel Gefunden : HKCU\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Schlüssel Gefunden : HKCU\Software\IM
Schlüssel Gefunden : HKCU\Software\ImInstaller
Schlüssel Gefunden : HKCU\Software\MediaFinder
Schlüssel Gefunden : HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden : HKCU\Software\PIP
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : HKCU\Software\YourFileDownloader
Schlüssel Gefunden : [x64] HKCU\Software\APN PIP
Schlüssel Gefunden : [x64] HKCU\Software\Ask.com
Schlüssel Gefunden : [x64] HKCU\Software\AskToolbar
Schlüssel Gefunden : [x64] HKCU\Software\BabSolution
Schlüssel Gefunden : [x64] HKCU\Software\Conduit
Schlüssel Gefunden : [x64] HKCU\Software\DataMngr
Schlüssel Gefunden : [x64] HKCU\Software\DataMngr_Toolbar
Schlüssel Gefunden : [x64] HKCU\Software\Delta
Schlüssel Gefunden : [x64] HKCU\Software\ExpressFiles
Schlüssel Gefunden : [x64] HKCU\Software\IM
Schlüssel Gefunden : [x64] HKCU\Software\ImInstaller
Schlüssel Gefunden : [x64] HKCU\Software\MediaFinder
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Babylon
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gefunden : [x64] HKCU\Software\PIP
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\YourFileDownloader
Schlüssel Gefunden : HKLM\SOFTWARE\5d08bd1b66fb914
Schlüssel Gefunden : HKLM\Software\AskToolbar
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{1973277F-87B0-4EA3-9ED2-470A91D284CF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{05366194-3126-4601-AC1A-DDE573E093DC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{061F450C-37B9-4330-9235-0F25D9F75B33}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{26249267-15F4-4DA3-8247-C5A78E4FA918}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{39B217B4-8C69-4E45-A8DC-8CC4DAD3CF0A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3CB4CE45-8849-4638-9226-D6B615A15827}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{43AB7B5D-4C40-4103-A549-7002A116A7D5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{996ED20F-A740-47A2-A7EF-9620D422BB4E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{061F450C-37B9-4330-9235-0F25D9F75B33}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{1D55DAA5-04AC-4036-B0BE-DA81EE9676CD}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{58CBF821-A0C7-4AE8-9430-77DD1AF38E99}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{72BCBFF7-2837-4CA0-B3B5-3DAED7F54601}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{824125FD-7732-4DA2-9277-3A7D0A0A0813}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DataMngr
Schlüssel Gefunden : HKLM\Software\Delta
Schlüssel Gefunden : HKLM\Software\ExpressFiles
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaangaohdajkgeopjhpbnlpkehbhmbj
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ClickPotatoLiteSA_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ClickPotatoLiteSA_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_freemind_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_freemind_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{83AA2913-C123-4146-85BD-AD8F93971D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Schlüssel Gefunden : HKLM\Software\PIP
Schlüssel Gefunden : HKLM\Software\systweak
Schlüssel Gefunden : HKLM\Software\YourFileDownloader
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{542FA950-C57A-4E17-B3E1-D935DFE15DEE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5B035F86-41B5-40F1-AAAD-3D219F30244E}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{6365AC7B-9920-4D8B-AF5D-3BDFEAC340A8}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{6427058B-217C-4C7F-A6CE-C7934C0BDCEB}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{6A934270-717F-4BC3-BA59-BC9BED47A8D2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{74C012C4-00FB-4F04-9AFB-4AD5449D2018}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{79B13431-CCAC-4097-8889-D0289E5E924F}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8C8D5C57-3CAD-4CF9-BCAD-F873678DA883}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C1C2FC43-F042-4F17-AEDB-C5ABF3B42E4B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F0356CB6-4AB7-425B-A31C-0369E0CB5E81}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F7EC6286-297C-4981-9DCC-FD7F57BC24C9}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16686

Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.Old.Start Page] - hxxp://search.babylon.com/?affID=110819&babsrc=HP_ss&mntrId=66e82cee000000000000bcaec55dd29f
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://isearch.brothersoft.com?f=undefined
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4

-\\ Mozilla Firefox v

[ Datei : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\prefs.js ]

Zeile gefunden : user_pref("backup.old.browser.startup.homepage", "hxxp://isearch.avg.com?cid=%7B4d7859c7-74ab-453d-8f2f-b20654fe802c%7D&mid=5f07896a533047d191f66de783b93b6c-912624b100a92f13ab5a1c784a727d31b76a3a6f&ds[...]
Zeile gefunden : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Zeile gefunden : user_pref("CT2269050.1000082.isDisplayHidden", "true");
Zeile gefunden : user_pref("CT2269050.1000082.state", "{\"state\":\"stopped\",\"text\":\"Hotmix 108\",\"description\":\"Hotmix 108\",\"url\":\"hxxp://67.202.67.18:8082\"}");
Zeile gefunden : user_pref("CT2269050.1000234.TWC_TMP_city", "BERLIN");
Zeile gefunden : user_pref("CT2269050.1000234.TWC_TMP_country", "DE");
Zeile gefunden : user_pref("CT2269050.addressBarTakeOverEnabledInHidden", "true");
Zeile gefunden : user_pref("CT2269050.autoDisableScopes", -1);
Zeile gefunden : user_pref("CT2269050.browser.search.defaultthis.engineName", true);
Zeile gefunden : user_pref("CT2269050.embeddedsData", "[{\"appId\":\"128834881989343895\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Zeile gefunden : user_pref("CT2269050.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.enableAlerts", "always");
Zeile gefunden : user_pref("CT2269050.FirstTime", "true");
Zeile gefunden : user_pref("CT2269050.firstTimeDialogOpened", "true");
Zeile gefunden : user_pref("CT2269050.FirstTimeFF3", "true");
Zeile gefunden : user_pref("CT2269050.fixPageNotFoundErrorInHidden", "true");
Zeile gefunden : user_pref("CT2269050.fixUrls", true);
Zeile gefunden : user_pref("CT2269050.installType", "Unknown");
Zeile gefunden : user_pref("CT2269050.isCheckedStartAsHidden", true);
Zeile gefunden : user_pref("CT2269050.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.isFirstTimeToolbarLoading", "false");
Zeile gefunden : user_pref("CT2269050.isNewTabEnabled", true);
Zeile gefunden : user_pref("CT2269050.isPerformedSmartBarTransition", "true");
Zeile gefunden : user_pref("CT2269050.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gefunden : user_pref("CT2269050.keyword", true);
Zeile gefunden : user_pref("CT2269050.migrateAppsAndComponents", true);
Zeile gefunden : user_pref("CT2269050.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"Spielaktivität\\r\\n\\r\\n    Du\\r\\n\\r\\n    ALLES\\r\\n\\r\\n    DarthVader181 hat neue Auszeichnungen erhalten\\r\\n\\r\\n    v[...]
Zeile gefunden : user_pref("CT2269050.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.openThankYouPage", "FALSE");
Zeile gefunden : user_pref("CT2269050.openUninstallPage", "FALSE");
Zeile gefunden : user_pref("CT2269050.search.searchAppId", "128834881989343895");
Zeile gefunden : user_pref("CT2269050.search.searchCount", "0");
Zeile gefunden : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gefunden : user_pref("CT2269050.searchInNewTabEnabledInHidden", "true");
Zeile gefunden : user_pref("CT2269050.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2269050\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://DVDVideoSoftTB.OurToolbar.com//xpi\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"DVDVideoSoftTB\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_appsMetadata_lastUpdate", "1349353047789");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348661537970");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348661537902");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_login_10.13.1.89_lastUpdate", "1349353047869");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_optimizer_lastUpdate", "1348661538837");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348661537939");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_searchAPI_lastUpdate", "1349353047896");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_serviceMap_lastUpdate", "1349353047681");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348661537645");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_toolbarSettings_lastUpdate", "1349353047800");
Zeile gefunden : user_pref("CT2269050.serviceLayer_services_translation_lastUpdate", "1349353047752");
Zeile gefunden : user_pref("CT2269050.settingsINI", true);
Zeile gefunden : user_pref("CT2269050.shouldFirstTimeDialog", "FALSE");
Zeile gefunden : user_pref("CT2269050.smartbar.CTID", "CT2269050");
Zeile gefunden : user_pref("CT2269050.smartbar.homepage", true);
Zeile gefunden : user_pref("CT2269050.smartbar.toolbarName", "DVDVideoSoftTB ");
Zeile gefunden : user_pref("CT2269050.smartbar.Uninstall", "0");
Zeile gefunden : user_pref("CT2269050.toolbarBornServerTime", "26-9-2012");
Zeile gefunden : user_pref("CT2269050.toolbarCurrentServerTime", "4-10-2012");
Zeile gefunden : user_pref("CT2269050.UserID", "UN15437021403321027");
Zeile gefunden : user_pref("CT2269050_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1349352926238,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gefunden : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gefunden : user_pref("extensions.BabylonToolbar.admin", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Zeile gefunden : user_pref("extensions.BabylonToolbar.babExt", "");
Zeile gefunden : user_pref("extensions.BabylonToolbar.babTrack", "affID=114347&tt=3212_8");
Zeile gefunden : user_pref("extensions.BabylonToolbar.bbDpng", 30);
Zeile gefunden : user_pref("extensions.BabylonToolbar.cntry", "DE");
Zeile gefunden : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Zeile gefunden : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.envrmnt", "production");
Zeile gefunden : user_pref("extensions.BabylonToolbar.excTlbr", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.hdrMd5", "E7E36FA565F480BEEC1E520D80FA073C");
Zeile gefunden : user_pref("extensions.BabylonToolbar.hmpg", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.BabylonToolbar.instlDay", "15558");
Zeile gefunden : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Zeile gefunden : user_pref("extensions.BabylonToolbar.lastDP", 30);
Zeile gefunden : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.6.4.623:33:02");
Zeile gefunden : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "13.0");
Zeile gefunden : user_pref("extensions.BabylonToolbar.mntrvrsn", "1.3.0");
Zeile gefunden : user_pref("extensions.BabylonToolbar.newTab", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
Zeile gefunden : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Zeile gefunden : user_pref("extensions.BabylonToolbar.propectorlck", 79639093);
Zeile gefunden : user_pref("extensions.BabylonToolbar.prtkDS", 1);
Zeile gefunden : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Zeile gefunden : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Zeile gefunden : user_pref("extensions.BabylonToolbar.sg", "azb");
Zeile gefunden : user_pref("extensions.BabylonToolbar.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gefunden : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Zeile gefunden : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Zeile gefunden : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Zeile gefunden : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Zeile gefunden : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Zeile gefunden : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Zeile gefunden : user_pref("extensions.BabylonToolbar.vrsnTs", "1.6.4.623:33:02");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.babExt", "");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=114347&tt=3212_8");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.hardId", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.instlDay", "15487");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.newTab", false);
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=114347&tt=3212_8&babsrc=NT_ss&mntrId=66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Zeile gefunden : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.623:33:02");
Zeile gefunden : user_pref("extensions.funmoods.admin", false);
Zeile gefunden : user_pref("extensions.funmoods.aflt", "bndlr");
Zeile gefunden : user_pref("extensions.funmoods.autoRvrt", false);
Zeile gefunden : user_pref("extensions.funmoods.brwsrsrc", "ietlbr");
Zeile gefunden : user_pref("extensions.funmoods.cntry", "DE");
Zeile gefunden : user_pref("extensions.funmoods.cv", "cv5");
Zeile gefunden : user_pref("extensions.funmoods.dfltlng", "en");
Zeile gefunden : user_pref("extensions.funmoods.dfltsrch", true);
Zeile gefunden : user_pref("extensions.funmoods.dnsErr", true);
Zeile gefunden : user_pref("extensions.funmoods.envrmnt", "production");
Zeile gefunden : user_pref("extensions.funmoods.excTlbr", false);
Zeile gefunden : user_pref("extensions.funmoods.hdrMd5", "2BE565D86A35FA51E3CCD2E15ACD4F47");
Zeile gefunden : user_pref("extensions.funmoods.hmpg", true);
Zeile gefunden : user_pref("extensions.funmoods.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=bndlr&chnl=bndlr&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FtB0C0E0EtN0D0TzutBtDtCtBtDyCtByE&cr=1069731072");
Zeile gefunden : user_pref("extensions.funmoods.hrdid", "0");
Zeile gefunden : user_pref("extensions.funmoods.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.funmoods.instlday", "15365");
Zeile gefunden : user_pref("extensions.funmoods.instlref", "");
Zeile gefunden : user_pref("extensions.funmoods.isdcmntcmplt", true);
Zeile gefunden : user_pref("extensions.funmoods.keywordurl", "");
Zeile gefunden : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2221:49:40");
Zeile gefunden : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Zeile gefunden : user_pref("extensions.funmoods.newtab", true);
Zeile gefunden : user_pref("extensions.funmoods.newtaburl", "hxxp://start.funmoods.com/?f=2&a=ironto");
Zeile gefunden : user_pref("extensions.funmoods.noFFXTlbr", false);
Zeile gefunden : user_pref("extensions.funmoods.prdct", "funmoods");
Zeile gefunden : user_pref("extensions.funmoods.prtnrid", "funmoods");
Zeile gefunden : user_pref("extensions.funmoods.sg", "none");
Zeile gefunden : user_pref("extensions.funmoods.SimilarSitesStorage-pid2", "a2bfa7dab78ccad");
Zeile gefunden : user_pref("extensions.funmoods.smplgrp", "none");
Zeile gefunden : user_pref("extensions.funmoods.srch", "");
Zeile gefunden : user_pref("extensions.funmoods.srchprvdr", "Search");
Zeile gefunden : user_pref("extensions.funmoods.tlbrid", "base");
Zeile gefunden : user_pref("extensions.funmoods.tlbrsrchurl", "hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=");
Zeile gefunden : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Zeile gefunden : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Zeile gefunden : user_pref("extensions.funmoods.vrsnts", "1.5.23.2221:49:40");
Zeile gefunden : user_pref("extensions.funmoods_i.aflt", "ironto");
Zeile gefunden : user_pref("extensions.funmoods_i.dfltLng", "");
Zeile gefunden : user_pref("extensions.funmoods_i.dfltSrch", true);
Zeile gefunden : user_pref("extensions.funmoods_i.dnsErr", true);
Zeile gefunden : user_pref("extensions.funmoods_i.excTlbr", false);
Zeile gefunden : user_pref("extensions.funmoods_i.hmpg", true);
Zeile gefunden : user_pref("extensions.funmoods_i.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=ironto");
Zeile gefunden : user_pref("extensions.funmoods_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.funmoods_i.instlDay", "15365");
Zeile gefunden : user_pref("extensions.funmoods_i.instlRef", "");
Zeile gefunden : user_pref("extensions.funmoods_i.newTab", true);
Zeile gefunden : user_pref("extensions.funmoods_i.newTabUrl", "hxxp://start.funmoods.com/?f=2&a=ironto");
Zeile gefunden : user_pref("extensions.funmoods_i.prdct", "funmoods");
Zeile gefunden : user_pref("extensions.funmoods_i.prtnrId", "funmoods");
Zeile gefunden : user_pref("extensions.funmoods_i.smplGrp", "none");
Zeile gefunden : user_pref("extensions.funmoods_i.srchPrvdr", "Search");
Zeile gefunden : user_pref("extensions.funmoods_i.tlbrId", "base");
Zeile gefunden : user_pref("extensions.funmoods_i.tlbrSrchUrl", "hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=");
Zeile gefunden : user_pref("extensions.funmoods_i.vrsn", "1.5.11.1");
Zeile gefunden : user_pref("extensions.funmoods_i.vrsni", "1.5.11.1");
Zeile gefunden : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2221:49:40");
Zeile gefunden : user_pref("extensions.incredibar.actvtyRptTime", "1347624718337");
Zeile gefunden : user_pref("extensions.incredibar.admin", false);
Zeile gefunden : user_pref("extensions.incredibar.aflt", "orgnl");
Zeile gefunden : user_pref("extensions.incredibar.cntry", "DE");
Zeile gefunden : user_pref("extensions.incredibar.dfltLng", "");
Zeile gefunden : user_pref("extensions.incredibar.dfltSrch", false);
Zeile gefunden : user_pref("extensions.incredibar.did", "10606");
Zeile gefunden : user_pref("extensions.incredibar.excTlbr", "false");
Zeile gefunden : user_pref("extensions.incredibar.hdrMd5", "B0A2AAD848E359E08B7A16BA8F60B9F8");
Zeile gefunden : user_pref("extensions.incredibar.hmpg", false);
Zeile gefunden : user_pref("extensions.incredibar.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.incredibar.installerproductid", "26");
Zeile gefunden : user_pref("extensions.incredibar.instlDay", "15377");
Zeile gefunden : user_pref("extensions.incredibar.instlRef", "");
Zeile gefunden : user_pref("extensions.incredibar.lastVrsnTs", "1.5.3.2714:47:07");
Zeile gefunden : user_pref("extensions.incredibar.newTab", false);
Zeile gefunden : user_pref("extensions.incredibar.noFFXTlbr", false);
Zeile gefunden : user_pref("extensions.incredibar.ppd", "27");
Zeile gefunden : user_pref("extensions.incredibar.prdct", "incredibar");
Zeile gefunden : user_pref("extensions.incredibar.productid", "26");
Zeile gefunden : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Zeile gefunden : user_pref("extensions.incredibar.sg", "none");
Zeile gefunden : user_pref("extensions.incredibar.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gefunden : user_pref("extensions.incredibar.smplGrp", "none");
Zeile gefunden : user_pref("extensions.incredibar.tlbrId", "base");
Zeile gefunden : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQnGN3UCJ&loc=IB_TB&i=26&search=");
Zeile gefunden : user_pref("extensions.incredibar.upn2", "6PQnGN3UCJ");
Zeile gefunden : user_pref("extensions.incredibar.upn2n", "92542334229904313");
Zeile gefunden : user_pref("extensions.incredibar.vrsn", "1.5.3.27");
Zeile gefunden : user_pref("extensions.incredibar.vrsni", "1.5.3.27");
Zeile gefunden : user_pref("extensions.incredibar.vrsnTs", "1.5.3.2714:47:07");
Zeile gefunden : user_pref("extensions.incredibar_i.aflt", "orgnl");
Zeile gefunden : user_pref("extensions.incredibar_i.dfltLng", "");
Zeile gefunden : user_pref("extensions.incredibar_i.did", "10606");
Zeile gefunden : user_pref("extensions.incredibar_i.excTlbr", "false");
Zeile gefunden : user_pref("extensions.incredibar_i.hardId", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.incredibar_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.incredibar_i.installerproductid", "26");
Zeile gefunden : user_pref("extensions.incredibar_i.instlDay", "15377");
Zeile gefunden : user_pref("extensions.incredibar_i.instlRef", "");
Zeile gefunden : user_pref("extensions.incredibar_i.ms_url_id", "");
Zeile gefunden : user_pref("extensions.incredibar_i.newTab", false);
Zeile gefunden : user_pref("extensions.incredibar_i.ppd", "27");
Zeile gefunden : user_pref("extensions.incredibar_i.prdct", "incredibar");
Zeile gefunden : user_pref("extensions.incredibar_i.productid", "26");
Zeile gefunden : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Zeile gefunden : user_pref("extensions.incredibar_i.smplGrp", "none");
Zeile gefunden : user_pref("extensions.incredibar_i.tlbrId", "base");
Zeile gefunden : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQnGN3UCJ&loc=IB_TB&i=26&search=");
Zeile gefunden : user_pref("extensions.incredibar_i.upn2", "6PQnGN3UCJ");
Zeile gefunden : user_pref("extensions.incredibar_i.upn2n", "92542334229904313");
Zeile gefunden : user_pref("extensions.incredibar_i.vrsn", "1.5.3.27");
Zeile gefunden : user_pref("extensions.incredibar_i.vrsni", "1.5.3.27");
Zeile gefunden : user_pref("extensions.incredibar_i.vrsnTs", "1.5.3.2714:47:07");
Zeile gefunden : user_pref("extensions.searchya.admin", false);
Zeile gefunden : user_pref("extensions.searchya.aflt", "foxtab");
Zeile gefunden : user_pref("extensions.searchya.cntry", "DE");
Zeile gefunden : user_pref("extensions.searchya.dfltlng", "EN");
Zeile gefunden : user_pref("extensions.searchya.dfltsrch", true);
Zeile gefunden : user_pref("extensions.searchya.excTlbr", false);
Zeile gefunden : user_pref("extensions.searchya.hdrMd5", "FF53CEE4262535C3133A57FC6952871A");
Zeile gefunden : user_pref("extensions.searchya.hmpg", true);
Zeile gefunden : user_pref("extensions.searchya.hrdid", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.searchya.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.searchya.instlday", "15378");
Zeile gefunden : user_pref("extensions.searchya.instlref", "fap");
Zeile gefunden : user_pref("extensions.searchya.isDcmntCmplt", false);
Zeile gefunden : user_pref("extensions.searchya.keywordurl", "");
Zeile gefunden : user_pref("extensions.searchya.lastVrsnTs", "1.5.11.1317:43:12");
Zeile gefunden : user_pref("extensions.searchya.mntrvrsn", "1.2.0");
Zeile gefunden : user_pref("extensions.searchya.newtab", true);
Zeile gefunden : user_pref("extensions.searchya.newtaburl", "hxxp://searchya.com/?chnl=fap&s=2&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gefunden : user_pref("extensions.searchya.noFFXTlbr", false);
Zeile gefunden : user_pref("extensions.searchya.prdct", "searchya");
Zeile gefunden : user_pref("extensions.searchya.propectorlck", 83864020);
Zeile gefunden : user_pref("extensions.searchya.prtnrid", "ironsrc");
Zeile gefunden : user_pref("extensions.searchya.sg", "none");
Zeile gefunden : user_pref("extensions.searchya.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gefunden : user_pref("extensions.searchya.smplgrp", "none");
Zeile gefunden : user_pref("extensions.searchya.srch", "");
Zeile gefunden : user_pref("extensions.searchya.srchprvdr", "SearchYa!");
Zeile gefunden : user_pref("extensions.searchya.tlbrid", "base");
Zeile gefunden : user_pref("extensions.searchya.tlbrsrchurl", "hxxp://searchya.com/?chnl=fap&s=3&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q=");
Zeile gefunden : user_pref("extensions.searchya.vrsn", "1.5.11.13");
Zeile gefunden : user_pref("extensions.searchya.vrsni", "1.5.11.13");
Zeile gefunden : user_pref("extensions.searchya.vrsnts", "1.5.11.1317:43:12");
Zeile gefunden : user_pref("extensions.searchya_i.aflt", "foxtab");
Zeile gefunden : user_pref("extensions.searchya_i.dfltLng", "");
Zeile gefunden : user_pref("extensions.searchya_i.dfltSrch", true);
Zeile gefunden : user_pref("extensions.searchya_i.dnsErr", true);
Zeile gefunden : user_pref("extensions.searchya_i.excTlbr", false);
Zeile gefunden : user_pref("extensions.searchya_i.hmpg", true);
Zeile gefunden : user_pref("extensions.searchya_i.hmpgUrl", "hxxp://searchya.com/?chnl=fap&s=0&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gefunden : user_pref("extensions.searchya_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gefunden : user_pref("extensions.searchya_i.instlDay", "15378");
Zeile gefunden : user_pref("extensions.searchya_i.instlRef", "fap");
Zeile gefunden : user_pref("extensions.searchya_i.newTab", true);
Zeile gefunden : user_pref("extensions.searchya_i.newTabUrl", "hxxp://searchya.com/?chnl=fap&s=2&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gefunden : user_pref("extensions.searchya_i.prdct", "searchya");
Zeile gefunden : user_pref("extensions.searchya_i.prtnrId", "ironsrc");
Zeile gefunden : user_pref("extensions.searchya_i.smplGrp", "none");
Zeile gefunden : user_pref("extensions.searchya_i.srchPrvdr", "SearchYa!");
Zeile gefunden : user_pref("extensions.searchya_i.tlbrId", "base");
Zeile gefunden : user_pref("extensions.searchya_i.tlbrSrchUrl", "hxxp://searchya.com/?chnl=fap&s=3&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q=");
Zeile gefunden : user_pref("extensions.searchya_i.vrsn", "1.5.11.13");
Zeile gefunden : user_pref("extensions.searchya_i.vrsni", "1.5.11.13");
Zeile gefunden : user_pref("extensions.searchya_i.vrsnTs", "1.5.11.1317:43:12");
Zeile gefunden : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Zeile gefunden : user_pref("Smartbar.ConduitSearchEngineList", "DVDVideoSoftTB Customized Web Search");
Zeile gefunden : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gefunden : user_pref("Smartbar.keywordURLSelectedCTID", "CT2269050");
Zeile gefunden : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.babylon.com/?affID=114347&tt=3212_8&babsrc=KW_ss&mntrId=66e82cee000000000000bcaec55dd29f&q=");

-\\ Google Chrome v30.0.1599.69

[ Datei : C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gefunden : homepage
Gefunden : icon_url
Gefunden : search_url
Gefunden : keyword
Gefunden : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [53144 octets] - [11/10/2013 18:51:15]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [53205 octets] ##########
         

Alt 11.10.2013, 17:57   #9
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by gamer (administrator) on GAMERPC on 11-10-2013 18:55:36
Running from C:\Users\gamer\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\gamer\Desktop\Musik\music bitch\Downloads\adwcleaner.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKCU\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
MountPoints2: {916f4ef4-00ef-11e1-b6b9-bcaec55dd29f} - "G:\WD SmartWare.exe" autoplay=true
MountPoints2: {916f51b2-00ef-11e1-b6b9-bcaec55dd29f} - G:\unlock.exe autoplay=true
MountPoints2: {b4f56ae5-00d2-11e1-a6ce-806e6f6e6963} - E:\.\Bin\ASSETUP.exe
MountPoints2: {c5c9903a-00d6-11e1-ae28-806e6f6e6963} - E:\Autorun.exe
MountPoints2: {d04cc7cf-dd45-11e1-8490-806e6f6e6963} - E:\autorun.exe
MountPoints2: {d504954f-7147-11e2-9507-806e6f6e6963} - E:\SETUP.EXE -autorun
MountPoints2: {ed2c2bf0-9753-11e1-b34f-bcaec55dd29f} - F:\setup.exe
MountPoints2: {f20574ec-49d9-11e1-b4dd-bcaec55dd29f} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3451FE17C294CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = hxxp://search.babylon.com/?affID=110819&babsrc=HP_ss&mntrId=66e82cee000000000000bcaec55dd29f
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.brothersoft.com?f=undefined
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
URLSearchHook: (No Name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} -  No File
URLSearchHook: (No Name) - {40c3cc16-7269-4b32-9531-17f2950fb06f} -  No File
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=bndlr&chnl=bndlr&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FtB0C0E0EtN0D0TzutBtDtCtBtDyCtByE&cr=1069731072
SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0D7562AE-8EF6-416d-A838-AB665251703A} URL = hxxp://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://isearch.avg.com/search?cid={F401C052-85EA-43ED-860E-90EC11B34B3B}&mid=5f07896a533047d191f66de783b93b6c-912624b100a92f13ab5a1c784a727d31b76a3a6f&lang=en&ds=qw011&pr=sa&d=2012-08-02 11:19:46&v=12.1.0.21&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - {B52A983B-8D6A-40F9-9D77-0DC2F0233211} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb119/?search={searchTerms}&loc=IB_DS&a=6PQnGN3UCJ&i=26
SearchScopes: HKCU - {F87C7CF5-AB46-4B0A-AAFB-BBB8019EC3AA} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deDE456
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: LemurLeap - {415419c3-dad0-4df1-ac37-22c72ad81878} - C:\Program Files (x86)\LemurLeap\LemurLeapbho.dll (LemurLeap)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU -  No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU -  No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKCU -  No Name - {BA14329E-9550-4989-B3F2-9732E92D17CC} -  No File
Toolbar: HKCU -  No Name - {40C3CC16-7269-4B32-9531-17F2950FB06F} -  No File
Toolbar: HKCU -  No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
Toolbar: HKCU -  No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 83.169.184.225 83.169.184.161

FireFox:
========
FF ProfilePath: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default
FF user.js: detected! => C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\user.js
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\dvdvideosofttb-customized-web-search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\funmoods.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\Search.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\searchya.xml
FF SearchPlugin: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
FF Extension: General Crawler - C:\Users\gamer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
FF Extension: Better Battlelog (BBLog) - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\toolbar@ask.com
FF Extension: No Name - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

Chrome: 
=======
CHR HomePage: hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR RestoreOnStartup: "hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028"
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll No File
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Extension: (GFACE Experience Plugin) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol\0.37.0_0
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.0_0
CHR Extension: (AdBlock) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\gamer\AppData\Local\funmoods-speeddial.crx
CHR HKLM\...\Chrome\Extension: [fdloijijlkoblmigdofommgnheckmaki] - C:\Users\gamer\AppData\Local\funmoods.crx
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.24.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aaaangaohdajkgeopjhpbnlpkehbhmbj] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaangaohdajkgeopjhpbnlpkehbhmbj_7.15.11.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Users\gamer\AppData\Roaming\BabylonToolbar\CR\BabylonChrome1.crx
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
S3 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2013-06-11] ()
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-30] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-29] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-30] (Microsoft Corporation)
S2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-26] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-10-28] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-09] ()
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2012-09-28] (Creative Technology Ltd.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
S0 mv91xx; system32\DRIVERS\mv91xx.sys [x]
S0 mvs91xx; system32\DRIVERS\mvs91xx.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WinRing0_1_2_0; \??\D:\Games\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-11 18:51 - 2013-10-11 18:51 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:29 - 2013-10-11 16:50 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-09 21:54 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-09 16:21 - 2013-10-09 16:22 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 17:25 - 2013-10-08 17:26 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:23 - 2013-10-07 15:23 - 00000000 ____D C:\Users\gamer\AppData\Roaming\YourFileDownloader
2013-10-07 15:10 - 2013-10-10 11:25 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 15:06 - 1998-01-23 12:22 - 00304128 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-07 14:59 - 2013-10-11 18:26 - 00000356 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00003376 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\SwvUpdater
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 14:58 - 2013-10-07 15:23 - 00000000 ____D C:\ProgramData\DSearchLink
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Babylon
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-02 19:37 - 2013-06-21 12:23 - 06496544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 03514656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00884512 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-02 19:37 - 2013-06-20 06:17 - 03253909 _____ C:\Windows\system32\nvcoproc.bin
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:07 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Systweak
2013-10-02 19:07 - 2013-05-27 16:01 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:34 - 2013-10-02 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 17:01 - 2013-10-02 17:07 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 17:01 - 2011-11-04 20:11 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Microsoft Help
2013-10-02 17:01 - 2011-10-28 15:37 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Macromedia
2013-10-02 17:01 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-02 17:01 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 15:56 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-10-02 15:56 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 01059560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 00021578 _____ C:\Windows\system32\nvinfo.pb
2013-10-01 17:17 - 2013-10-01 17:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-19 18:54 - 2013-09-19 18:56 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:49 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:27 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-19 18:27 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG
2013-09-19 18:14 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-19 18:14 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-19 18:14 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-19 18:14 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-19 18:14 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-09-19 18:14 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-09-19 18:13 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-19 18:13 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-19 18:13 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-19 18:13 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-09-19 18:13 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-09-19 18:13 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-09-19 18:13 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-09-19 18:13 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-09-19 18:12 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-19 18:12 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-19 18:12 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-19 18:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-19 18:12 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-19 18:12 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-09-19 18:12 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-09-19 18:12 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-19 18:12 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-09-19 18:12 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-09-19 18:12 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-09-19 18:12 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-09-19 18:12 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-19 18:12 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-09-19 18:12 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-19 18:11 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-19 18:11 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-19 18:11 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-19 18:11 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-19 18:11 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-19 18:11 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-19 18:11 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-09-19 18:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-19 18:11 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-09-19 18:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-19 18:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-09-19 18:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-09-19 18:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-19 18:11 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-09-19 18:11 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-09-19 18:11 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-09-19 18:11 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-09-19 18:11 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-09-19 18:11 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

==================== One Month Modified Files and Folders =======

2013-10-11 19:23 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-11 18:51 - 2013-10-11 18:51 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:34 - 2012-01-19 16:37 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn Hamachi
2013-10-11 18:32 - 2011-04-12 09:43 - 00766530 _____ C:\Windows\system32\perfh007.dat
2013-10-11 18:32 - 2011-04-12 09:43 - 00174416 _____ C:\Windows\system32\perfc007.dat
2013-10-11 18:32 - 2009-07-14 07:13 - 01808802 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:29 - 2012-08-20 18:46 - 00093588 _____ C:\Windows\setupact.log
2013-10-11 18:29 - 2012-07-13 16:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-11 18:26 - 2013-10-07 14:59 - 00000356 _____ C:\Windows\Tasks\AmiUpdXp.job
2013-10-11 18:25 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 16:50 - 2013-10-11 18:29 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 15:50 - 2012-08-22 16:57 - 00324102 _____ C:\Windows\PFRO.log
2013-10-11 15:40 - 2013-05-17 17:46 - 00000000 ____D C:\Users\gamer\AppData\Local\DoNotTrackPlus
2013-10-11 15:01 - 2013-10-09 21:54 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-11 15:01 - 2013-10-02 19:07 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Systweak
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 21:03 - 2011-11-07 15:50 - 00000000 ___RD C:\Users\gamer\Desktop\Playlist
2013-10-10 21:03 - 2011-11-07 15:36 - 00000000 ___RD C:\Users\gamer\Desktop\Musik
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 20:06 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Spiele
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-10 11:25 - 2013-10-07 15:10 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-09 21:55 - 2012-01-08 15:58 - 00003526 _____ C:\Windows\System32\Tasks\RunAsStdUser Task
2013-10-09 21:54 - 2011-10-27 21:54 - 00000000 ____D C:\Users\gamer
2013-10-09 21:52 - 2012-02-10 17:11 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-09 19:39 - 2012-02-10 17:11 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-09 19:39 - 2012-02-10 17:11 - 00002838 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-09 17:33 - 2012-07-13 16:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 17:33 - 2012-04-10 14:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 17:33 - 2011-11-03 22:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:35 - 2012-04-11 13:02 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-09 16:35 - 2011-10-28 17:16 - 00215416 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-09 16:22 - 2013-10-09 16:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 22:45 - 2011-12-02 18:06 - 00000000 ____D C:\Users\gamer\Documents\Camtasia Studio
2013-10-08 22:30 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\TS3Client
2013-10-08 20:59 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Local\TeamSpeak 3 Client
2013-10-08 17:26 - 2013-10-08 17:25 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-08 12:29 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:23 - 2013-10-07 15:23 - 00000000 ____D C:\Users\gamer\AppData\Roaming\YourFileDownloader
2013-10-07 15:23 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\DSearchLink
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00003376 _____ C:\Windows\System32\Tasks\AmiUpdXp
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\SwvUpdater
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Babylon
2013-10-07 14:58 - 2013-10-07 14:58 - 00000000 ____D C:\ProgramData\BitGuard
2013-10-02 19:49 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Patches
2013-10-02 19:47 - 2011-10-27 16:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-02 19:45 - 2011-10-27 21:37 - 01781017 _____ C:\Windows\WindowsUpdate.log
2013-10-02 19:44 - 2012-09-17 17:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-02 19:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:36 - 2013-10-02 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 19:22 - 2012-06-20 18:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Tobit
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:27 - 2013-05-22 14:04 - 00000000 ____D C:\Users\gamer\AppData\Local\ESL Wire Game Client
2013-10-02 17:24 - 2012-11-30 15:18 - 00003818 _____ C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
2013-10-02 17:24 - 2012-10-08 18:35 - 00003096 _____ C:\Windows\System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72}
2013-10-02 17:24 - 2012-05-24 19:59 - 00002918 _____ C:\Windows\System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F}
2013-10-02 17:07 - 2013-10-02 17:01 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 16:35 - 2012-02-07 16:00 - 00000000 ____D C:\Users\gamer\AppData\Roaming\InstallDir
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:24 - 2013-04-26 21:25 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 14:50 - 2011-10-28 17:55 - 00000000 ____D C:\Users\gamer\AppData\Local\PunkBuster
2013-10-02 14:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-02 14:35 - 2011-10-28 16:38 - 00000000 ____D C:\ProgramData\Origin
2013-10-01 17:40 - 2012-12-07 15:00 - 00000000 ____D C:\Users\gamer\AppData\Local\NVIDIA
2013-10-01 17:21 - 2013-10-01 17:17 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-30 19:21 - 2011-10-28 17:55 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-29 21:43 - 2012-04-11 13:02 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-29 21:43 - 2011-10-28 17:55 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-09-29 21:42 - 2012-08-26 14:32 - 00448312 _____ C:\Windows\DirectX.log
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-27 10:57 - 2013-10-02 15:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-02 15:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-09-21 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-19 19:09 - 2011-10-27 21:55 - 00001427 _____ C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-19 19:09 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-19 19:08 - 2011-10-27 22:34 - 00000000 ____D C:\Windows\Panther
2013-09-19 19:07 - 2009-07-14 06:45 - 02378272 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-19 19:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-19 19:01 - 2011-11-30 20:37 - 01785760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-19 18:56 - 2013-09-19 18:54 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:56 - 2011-10-28 15:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-19 18:49 - 2013-09-19 18:41 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:17 - 2009-07-14 04:34 - 00000659 _____ C:\Windows\win.ini
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG

Some content of TEMP:
====================
C:\Users\gamer\AppData\Local\Temp\Quarantine.exe
C:\Users\gamer\AppData\Local\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-01 18:16

==================== End Of Log ============================
         
--- --- ---

Alt 11.10.2013, 18:03   #10
aharonov
/// TB-Ausbilder
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Du hast beim AdwCleaner nur die "Suchen"-Funktion verwendet und nicht anschliessend noch die "Löschen"-Funktion wie in der Anleitung beschrieben..
Bitte wiederhole beide Schritte.
__________________
cheers,
Leo

Alt 11.10.2013, 18:13   #11
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Code:
ATTFilter
# AdwCleaner v3.007 - Bericht erstellt am 11/10/2013 um 19:04:53
# Updated 09/10/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : gamer - GAMERPC
# Gestartet von : C:\Users\gamer\Desktop\Musik\music bitch\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\Babylon
[!] Ordner Gelöscht : C:\ProgramData\BitGuard
Ordner Gelöscht : C:\ProgramData\DSearchLink
Ordner Gelöscht : C:\ProgramData\Premium
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gelöscht : C:\Program Files (x86)\Ask.com
Ordner Gelöscht : C:\Program Files (x86)\Conduit
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\gamer\AppData\Local\AskToolbar
Ordner Gelöscht : C:\Users\gamer\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\gamer\AppData\Local\eSupport.com
Ordner Gelöscht : C:\Users\gamer\AppData\Local\Mail.Ru
Ordner Gelöscht : C:\Users\gamer\AppData\Local\SwvUpdater
Ordner Gelöscht : C:\Users\gamer\AppData\Local\Temp\AskSearch
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\AskToolbar
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\Delta
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\incredibar.com
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\Ironsource
Ordner Gelöscht : C:\Users\gamer\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Media Finder
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\yourfiledownloader
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.Ru
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\jetpack
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Smartbar
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Ordner Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\toolbar@ask.com
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\gamer\AppData\Local\funmoods-speeddial.crx
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\Askcom.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\avg-secure-search.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\dvdvideosofttb-customized-web-search.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\funmoods.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\search.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\searchya.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\searchplugins\SweetIm.xml
Datei Gelöscht : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\user.js
Datei Gelöscht : C:\Windows\Tasks\AmiUpdXp.job
Datei Gelöscht : C:\Windows\System32\Tasks\AmiUpdXp
Datei Gelöscht : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaangaohdajkgeopjhpbnlpkehbhmbj
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ClickPotatoLiteSA_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ClickPotatoLiteSA_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\5d08bd1b66fb914
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2269050
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_freemind_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_freemind_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1973277F-87B0-4EA3-9ED2-470A91D284CF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{05366194-3126-4601-AC1A-DDE573E093DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{061F450C-37B9-4330-9235-0F25D9F75B33}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{26249267-15F4-4DA3-8247-C5A78E4FA918}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{39B217B4-8C69-4E45-A8DC-8CC4DAD3CF0A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CB4CE45-8849-4638-9226-D6B615A15827}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{43AB7B5D-4C40-4103-A549-7002A116A7D5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{996ED20F-A740-47A2-A7EF-9620D422BB4E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{061F450C-37B9-4330-9235-0F25D9F75B33}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{1D55DAA5-04AC-4036-B0BE-DA81EE9676CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{58CBF821-A0C7-4AE8-9430-77DD1AF38E99}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{72BCBFF7-2837-4CA0-B3B5-3DAED7F54601}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{824125FD-7732-4DA2-9277-3A7D0A0A0813}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3F69D07-0AEE-47AF-87D0-1A67D4F70C68}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{542FA950-C57A-4E17-B3E1-D935DFE15DEE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5B035F86-41B5-40F1-AAAD-3D219F30244E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6365AC7B-9920-4D8B-AF5D-3BDFEAC340A8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6427058B-217C-4C7F-A6CE-C7934C0BDCEB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6A934270-717F-4BC3-BA59-BC9BED47A8D2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{74C012C4-00FB-4F04-9AFB-4AD5449D2018}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79B13431-CCAC-4097-8889-D0289E5E924F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C8D5C57-3CAD-4CF9-BCAD-F873678DA883}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C1C2FC43-F042-4F17-AEDB-C5ABF3B42E4B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F0356CB6-4AB7-425B-A31C-0369E0CB5E81}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F7EC6286-297C-4981-9DCC-FD7F57BC24C9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\Ask.com
Schlüssel Gelöscht : HKCU\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\DataMngr
[#] Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\ExpressFiles
Schlüssel Gelöscht : HKCU\Software\IM
Schlüssel Gelöscht : HKCU\Software\ImInstaller
Schlüssel Gelöscht : HKCU\Software\MediaFinder
Schlüssel Gelöscht : HKCU\Software\Microsoft\Babylon
Schlüssel Gelöscht : HKCU\Software\PIP
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\YourFileDownloader
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\smartbar
Schlüssel Gelöscht : HKLM\Software\AskToolbar
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\ExpressFiles
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\Software\YourFileDownloader
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{83AA2913-C123-4146-85BD-AD8F93971D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16686

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.Old.Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]

-\\ Mozilla Firefox v

[ Datei : C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\prefs.js ]

Zeile gelöscht : user_pref("backup.old.browser.startup.homepage", "hxxp://isearch.avg.com?cid=%7B4d7859c7-74ab-453d-8f2f-b20654fe802c%7D&mid=5f07896a533047d191f66de783b93b6c-912624b100a92f13ab5a1c784a727d31b76a3a6f&ds[...]
Zeile gelöscht : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Zeile gelöscht : user_pref("CT2269050.1000082.isDisplayHidden", "true");
Zeile gelöscht : user_pref("CT2269050.1000082.state", "{\"state\":\"stopped\",\"text\":\"Hotmix 108\",\"description\":\"Hotmix 108\",\"url\":\"hxxp://67.202.67.18:8082\"}");
Zeile gelöscht : user_pref("CT2269050.1000234.TWC_TMP_city", "BERLIN");
Zeile gelöscht : user_pref("CT2269050.1000234.TWC_TMP_country", "DE");
Zeile gelöscht : user_pref("CT2269050.addressBarTakeOverEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT2269050.autoDisableScopes", -1);
Zeile gelöscht : user_pref("CT2269050.browser.search.defaultthis.engineName", true);
Zeile gelöscht : user_pref("CT2269050.embeddedsData", "[{\"appId\":\"128834881989343895\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
Zeile gelöscht : user_pref("CT2269050.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.enableAlerts", "always");
Zeile gelöscht : user_pref("CT2269050.FirstTime", "true");
Zeile gelöscht : user_pref("CT2269050.firstTimeDialogOpened", "true");
Zeile gelöscht : user_pref("CT2269050.FirstTimeFF3", "true");
Zeile gelöscht : user_pref("CT2269050.fixPageNotFoundErrorInHidden", "true");
Zeile gelöscht : user_pref("CT2269050.fixUrls", true);
Zeile gelöscht : user_pref("CT2269050.installType", "Unknown");
Zeile gelöscht : user_pref("CT2269050.isCheckedStartAsHidden", true);
Zeile gelöscht : user_pref("CT2269050.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.isFirstTimeToolbarLoading", "false");
Zeile gelöscht : user_pref("CT2269050.isNewTabEnabled", true);
Zeile gelöscht : user_pref("CT2269050.isPerformedSmartBarTransition", "true");
Zeile gelöscht : user_pref("CT2269050.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gelöscht : user_pref("CT2269050.keyword", true);
Zeile gelöscht : user_pref("CT2269050.migrateAppsAndComponents", true);
Zeile gelöscht : user_pref("CT2269050.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"Spielaktivität\\r\\n\\r\\n    Du\\r\\n\\r\\n    ALLES\\r\\n\\r\\n    DarthVader181 hat neue Auszeichnungen erhalten\\r\\n\\r\\n    v[...]
Zeile gelöscht : user_pref("CT2269050.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.openThankYouPage", "FALSE");
Zeile gelöscht : user_pref("CT2269050.openUninstallPage", "FALSE");
Zeile gelöscht : user_pref("CT2269050.search.searchAppId", "128834881989343895");
Zeile gelöscht : user_pref("CT2269050.search.searchCount", "0");
Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gelöscht : user_pref("CT2269050.searchInNewTabEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT2269050.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2269050\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://DVDVideoSoftTB.OurToolbar.com//xpi\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"DVDVideoSoftTB\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_appsMetadata_lastUpdate", "1349353047789");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1348661537970");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1348661537902");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_login_10.13.1.89_lastUpdate", "1349353047869");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_optimizer_lastUpdate", "1348661538837");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1348661537939");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_searchAPI_lastUpdate", "1349353047896");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_serviceMap_lastUpdate", "1349353047681");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_toolbarContextMenu_lastUpdate", "1348661537645");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_toolbarSettings_lastUpdate", "1349353047800");
Zeile gelöscht : user_pref("CT2269050.serviceLayer_services_translation_lastUpdate", "1349353047752");
Zeile gelöscht : user_pref("CT2269050.settingsINI", true);
Zeile gelöscht : user_pref("CT2269050.shouldFirstTimeDialog", "FALSE");
Zeile gelöscht : user_pref("CT2269050.smartbar.CTID", "CT2269050");
Zeile gelöscht : user_pref("CT2269050.smartbar.homepage", true);
Zeile gelöscht : user_pref("CT2269050.smartbar.toolbarName", "DVDVideoSoftTB ");
Zeile gelöscht : user_pref("CT2269050.smartbar.Uninstall", "0");
Zeile gelöscht : user_pref("CT2269050.toolbarBornServerTime", "26-9-2012");
Zeile gelöscht : user_pref("CT2269050.toolbarCurrentServerTime", "4-10-2012");
Zeile gelöscht : user_pref("CT2269050.UserID", "UN15437021403321027");
Zeile gelöscht : user_pref("CT2269050_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1349352926238,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gelöscht : user_pref("extensions.asktb.ff-original-keyword-url", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.admin", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.babExt", "");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.babTrack", "affID=114347&tt=3212_8");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.bbDpng", 30);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.cntry", "DE");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.dfltLng", "en");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.dfltSrch", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.envrmnt", "production");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.excTlbr", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.hdrMd5", "E7E36FA565F480BEEC1E520D80FA073C");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.hmpg", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.instlDay", "15558");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.lastDP", 30);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.6.4.623:33:02");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "13.0");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.mntrvrsn", "1.3.0");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.newTab", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_FFUP");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.propectorlck", 79639093);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prtkDS", 1);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.ptch_0717", true);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.sg", "azb");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.smplGrp", "azb");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://www.google.com/search?babsrc=TB_ggl&q=");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsn", "1.6.4.6");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsni", "1.6.4.6");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsnTs", "1.6.4.623:33:02");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.babExt", "");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=114347&tt=3212_8");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.hardId", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.instlDay", "15487");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.newTab", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=114347&tt=3212_8&babsrc=NT_ss&mntrId=66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.6.4.623:33:02");
Zeile gelöscht : user_pref("extensions.funmoods.admin", false);
Zeile gelöscht : user_pref("extensions.funmoods.aflt", "bndlr");
Zeile gelöscht : user_pref("extensions.funmoods.autoRvrt", false);
Zeile gelöscht : user_pref("extensions.funmoods.brwsrsrc", "ietlbr");
Zeile gelöscht : user_pref("extensions.funmoods.cntry", "DE");
Zeile gelöscht : user_pref("extensions.funmoods.cv", "cv5");
Zeile gelöscht : user_pref("extensions.funmoods.dfltlng", "en");
Zeile gelöscht : user_pref("extensions.funmoods.dfltsrch", true);
Zeile gelöscht : user_pref("extensions.funmoods.dnsErr", true);
Zeile gelöscht : user_pref("extensions.funmoods.envrmnt", "production");
Zeile gelöscht : user_pref("extensions.funmoods.excTlbr", false);
Zeile gelöscht : user_pref("extensions.funmoods.hdrMd5", "2BE565D86A35FA51E3CCD2E15ACD4F47");
Zeile gelöscht : user_pref("extensions.funmoods.hmpg", true);
Zeile gelöscht : user_pref("extensions.funmoods.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=bndlr&chnl=bndlr&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FtB0C0E0EtN0D0TzutBtDtCtBtDyCtByE&cr=1069731072");
Zeile gelöscht : user_pref("extensions.funmoods.hrdid", "0");
Zeile gelöscht : user_pref("extensions.funmoods.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.funmoods.instlday", "15365");
Zeile gelöscht : user_pref("extensions.funmoods.instlref", "");
Zeile gelöscht : user_pref("extensions.funmoods.isdcmntcmplt", true);
Zeile gelöscht : user_pref("extensions.funmoods.keywordurl", "");
Zeile gelöscht : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2221:49:40");
Zeile gelöscht : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Zeile gelöscht : user_pref("extensions.funmoods.newtab", true);
Zeile gelöscht : user_pref("extensions.funmoods.newtaburl", "hxxp://start.funmoods.com/?f=2&a=ironto");
Zeile gelöscht : user_pref("extensions.funmoods.noFFXTlbr", false);
Zeile gelöscht : user_pref("extensions.funmoods.prdct", "funmoods");
Zeile gelöscht : user_pref("extensions.funmoods.prtnrid", "funmoods");
Zeile gelöscht : user_pref("extensions.funmoods.sg", "none");
Zeile gelöscht : user_pref("extensions.funmoods.SimilarSitesStorage-pid2", "a2bfa7dab78ccad");
Zeile gelöscht : user_pref("extensions.funmoods.smplgrp", "none");
Zeile gelöscht : user_pref("extensions.funmoods.srch", "");
Zeile gelöscht : user_pref("extensions.funmoods.srchprvdr", "Search");
Zeile gelöscht : user_pref("extensions.funmoods.tlbrid", "base");
Zeile gelöscht : user_pref("extensions.funmoods.tlbrsrchurl", "hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=");
Zeile gelöscht : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Zeile gelöscht : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Zeile gelöscht : user_pref("extensions.funmoods.vrsnts", "1.5.23.2221:49:40");
Zeile gelöscht : user_pref("extensions.funmoods_i.aflt", "ironto");
Zeile gelöscht : user_pref("extensions.funmoods_i.dfltLng", "");
Zeile gelöscht : user_pref("extensions.funmoods_i.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.funmoods_i.dnsErr", true);
Zeile gelöscht : user_pref("extensions.funmoods_i.excTlbr", false);
Zeile gelöscht : user_pref("extensions.funmoods_i.hmpg", true);
Zeile gelöscht : user_pref("extensions.funmoods_i.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=ironto");
Zeile gelöscht : user_pref("extensions.funmoods_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.funmoods_i.instlDay", "15365");
Zeile gelöscht : user_pref("extensions.funmoods_i.instlRef", "");
Zeile gelöscht : user_pref("extensions.funmoods_i.newTab", true);
Zeile gelöscht : user_pref("extensions.funmoods_i.newTabUrl", "hxxp://start.funmoods.com/?f=2&a=ironto");
Zeile gelöscht : user_pref("extensions.funmoods_i.prdct", "funmoods");
Zeile gelöscht : user_pref("extensions.funmoods_i.prtnrId", "funmoods");
Zeile gelöscht : user_pref("extensions.funmoods_i.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.funmoods_i.srchPrvdr", "Search");
Zeile gelöscht : user_pref("extensions.funmoods_i.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.funmoods_i.tlbrSrchUrl", "hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=");
Zeile gelöscht : user_pref("extensions.funmoods_i.vrsn", "1.5.11.1");
Zeile gelöscht : user_pref("extensions.funmoods_i.vrsni", "1.5.11.1");
Zeile gelöscht : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2221:49:40");
Zeile gelöscht : user_pref("extensions.incredibar.actvtyRptTime", "1347624718337");
Zeile gelöscht : user_pref("extensions.incredibar.admin", false);
Zeile gelöscht : user_pref("extensions.incredibar.aflt", "orgnl");
Zeile gelöscht : user_pref("extensions.incredibar.cntry", "DE");
Zeile gelöscht : user_pref("extensions.incredibar.dfltLng", "");
Zeile gelöscht : user_pref("extensions.incredibar.dfltSrch", false);
Zeile gelöscht : user_pref("extensions.incredibar.did", "10606");
Zeile gelöscht : user_pref("extensions.incredibar.excTlbr", "false");
Zeile gelöscht : user_pref("extensions.incredibar.hdrMd5", "B0A2AAD848E359E08B7A16BA8F60B9F8");
Zeile gelöscht : user_pref("extensions.incredibar.hmpg", false);
Zeile gelöscht : user_pref("extensions.incredibar.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.incredibar.installerproductid", "26");
Zeile gelöscht : user_pref("extensions.incredibar.instlDay", "15377");
Zeile gelöscht : user_pref("extensions.incredibar.instlRef", "");
Zeile gelöscht : user_pref("extensions.incredibar.lastVrsnTs", "1.5.3.2714:47:07");
Zeile gelöscht : user_pref("extensions.incredibar.newTab", false);
Zeile gelöscht : user_pref("extensions.incredibar.noFFXTlbr", false);
Zeile gelöscht : user_pref("extensions.incredibar.ppd", "27");
Zeile gelöscht : user_pref("extensions.incredibar.prdct", "incredibar");
Zeile gelöscht : user_pref("extensions.incredibar.productid", "26");
Zeile gelöscht : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Zeile gelöscht : user_pref("extensions.incredibar.sg", "none");
Zeile gelöscht : user_pref("extensions.incredibar.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gelöscht : user_pref("extensions.incredibar.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.incredibar.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQnGN3UCJ&loc=IB_TB&i=26&search=");
Zeile gelöscht : user_pref("extensions.incredibar.upn2", "6PQnGN3UCJ");
Zeile gelöscht : user_pref("extensions.incredibar.upn2n", "92542334229904313");
Zeile gelöscht : user_pref("extensions.incredibar.vrsn", "1.5.3.27");
Zeile gelöscht : user_pref("extensions.incredibar.vrsni", "1.5.3.27");
Zeile gelöscht : user_pref("extensions.incredibar.vrsnTs", "1.5.3.2714:47:07");
Zeile gelöscht : user_pref("extensions.incredibar_i.aflt", "orgnl");
Zeile gelöscht : user_pref("extensions.incredibar_i.dfltLng", "");
Zeile gelöscht : user_pref("extensions.incredibar_i.did", "10606");
Zeile gelöscht : user_pref("extensions.incredibar_i.excTlbr", "false");
Zeile gelöscht : user_pref("extensions.incredibar_i.hardId", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.incredibar_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.incredibar_i.installerproductid", "26");
Zeile gelöscht : user_pref("extensions.incredibar_i.instlDay", "15377");
Zeile gelöscht : user_pref("extensions.incredibar_i.instlRef", "");
Zeile gelöscht : user_pref("extensions.incredibar_i.ms_url_id", "");
Zeile gelöscht : user_pref("extensions.incredibar_i.newTab", false);
Zeile gelöscht : user_pref("extensions.incredibar_i.ppd", "27");
Zeile gelöscht : user_pref("extensions.incredibar_i.prdct", "incredibar");
Zeile gelöscht : user_pref("extensions.incredibar_i.productid", "26");
Zeile gelöscht : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Zeile gelöscht : user_pref("extensions.incredibar_i.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.incredibar_i.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQnGN3UCJ&loc=IB_TB&i=26&search=");
Zeile gelöscht : user_pref("extensions.incredibar_i.upn2", "6PQnGN3UCJ");
Zeile gelöscht : user_pref("extensions.incredibar_i.upn2n", "92542334229904313");
Zeile gelöscht : user_pref("extensions.incredibar_i.vrsn", "1.5.3.27");
Zeile gelöscht : user_pref("extensions.incredibar_i.vrsni", "1.5.3.27");
Zeile gelöscht : user_pref("extensions.incredibar_i.vrsnTs", "1.5.3.2714:47:07");
Zeile gelöscht : user_pref("extensions.searchya.admin", false);
Zeile gelöscht : user_pref("extensions.searchya.aflt", "foxtab");
Zeile gelöscht : user_pref("extensions.searchya.cntry", "DE");
Zeile gelöscht : user_pref("extensions.searchya.dfltlng", "EN");
Zeile gelöscht : user_pref("extensions.searchya.dfltsrch", true);
Zeile gelöscht : user_pref("extensions.searchya.excTlbr", false);
Zeile gelöscht : user_pref("extensions.searchya.hdrMd5", "FF53CEE4262535C3133A57FC6952871A");
Zeile gelöscht : user_pref("extensions.searchya.hmpg", true);
Zeile gelöscht : user_pref("extensions.searchya.hrdid", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.searchya.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.searchya.instlday", "15378");
Zeile gelöscht : user_pref("extensions.searchya.instlref", "fap");
Zeile gelöscht : user_pref("extensions.searchya.isDcmntCmplt", false);
Zeile gelöscht : user_pref("extensions.searchya.keywordurl", "");
Zeile gelöscht : user_pref("extensions.searchya.lastVrsnTs", "1.5.11.1317:43:12");
Zeile gelöscht : user_pref("extensions.searchya.mntrvrsn", "1.2.0");
Zeile gelöscht : user_pref("extensions.searchya.newtab", true);
Zeile gelöscht : user_pref("extensions.searchya.newtaburl", "hxxp://searchya.com/?chnl=fap&s=2&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gelöscht : user_pref("extensions.searchya.noFFXTlbr", false);
Zeile gelöscht : user_pref("extensions.searchya.prdct", "searchya");
Zeile gelöscht : user_pref("extensions.searchya.propectorlck", 83864020);
Zeile gelöscht : user_pref("extensions.searchya.prtnrid", "ironsrc");
Zeile gelöscht : user_pref("extensions.searchya.sg", "none");
Zeile gelöscht : user_pref("extensions.searchya.SimilarSitesStorage-pid2", "36cd631a052e4098");
Zeile gelöscht : user_pref("extensions.searchya.smplgrp", "none");
Zeile gelöscht : user_pref("extensions.searchya.srch", "");
Zeile gelöscht : user_pref("extensions.searchya.srchprvdr", "SearchYa!");
Zeile gelöscht : user_pref("extensions.searchya.tlbrid", "base");
Zeile gelöscht : user_pref("extensions.searchya.tlbrsrchurl", "hxxp://searchya.com/?chnl=fap&s=3&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q=");
Zeile gelöscht : user_pref("extensions.searchya.vrsn", "1.5.11.13");
Zeile gelöscht : user_pref("extensions.searchya.vrsni", "1.5.11.13");
Zeile gelöscht : user_pref("extensions.searchya.vrsnts", "1.5.11.1317:43:12");
Zeile gelöscht : user_pref("extensions.searchya_i.aflt", "foxtab");
Zeile gelöscht : user_pref("extensions.searchya_i.dfltLng", "");
Zeile gelöscht : user_pref("extensions.searchya_i.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.searchya_i.dnsErr", true);
Zeile gelöscht : user_pref("extensions.searchya_i.excTlbr", false);
Zeile gelöscht : user_pref("extensions.searchya_i.hmpg", true);
Zeile gelöscht : user_pref("extensions.searchya_i.hmpgUrl", "hxxp://searchya.com/?chnl=fap&s=0&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gelöscht : user_pref("extensions.searchya_i.id", "66e82cee000000000000bcaec55dd29f");
Zeile gelöscht : user_pref("extensions.searchya_i.instlDay", "15378");
Zeile gelöscht : user_pref("extensions.searchya_i.instlRef", "fap");
Zeile gelöscht : user_pref("extensions.searchya_i.newTab", true);
Zeile gelöscht : user_pref("extensions.searchya_i.newTabUrl", "hxxp://searchya.com/?chnl=fap&s=2&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz");
Zeile gelöscht : user_pref("extensions.searchya_i.prdct", "searchya");
Zeile gelöscht : user_pref("extensions.searchya_i.prtnrId", "ironsrc");
Zeile gelöscht : user_pref("extensions.searchya_i.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.searchya_i.srchPrvdr", "SearchYa!");
Zeile gelöscht : user_pref("extensions.searchya_i.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.searchya_i.tlbrSrchUrl", "hxxp://searchya.com/?chnl=fap&s=3&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q=");
Zeile gelöscht : user_pref("extensions.searchya_i.vrsn", "1.5.11.13");
Zeile gelöscht : user_pref("extensions.searchya_i.vrsni", "1.5.11.13");
Zeile gelöscht : user_pref("extensions.searchya_i.vrsnTs", "1.5.11.1317:43:12");
Zeile gelöscht : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchEngineList", "DVDVideoSoftTB Customized Web Search");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q=");
Zeile gelöscht : user_pref("Smartbar.keywordURLSelectedCTID", "CT2269050");
Zeile gelöscht : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.babylon.com/?affID=114347&tt=3212_8&babsrc=KW_ss&mntrId=66e82cee000000000000bcaec55dd29f&q=");

-\\ Google Chrome v30.0.1599.69

[ Datei : C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage
Gelöscht : icon_url
Gelöscht : search_url
Gelöscht : keyword
Gelöscht : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [53670 octets] - [11/10/2013 18:51:15]
AdwCleaner[S0].txt - [51448 octets] - [11/10/2013 19:04:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [51509 octets] ##########
         

Alt 11.10.2013, 18:15   #12
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by gamer (administrator) on GAMERPC on 11-10-2013 19:13:33
Running from C:\Users\gamer\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKCU\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
MountPoints2: {916f4ef4-00ef-11e1-b6b9-bcaec55dd29f} - "G:\WD SmartWare.exe" autoplay=true
MountPoints2: {916f51b2-00ef-11e1-b6b9-bcaec55dd29f} - G:\unlock.exe autoplay=true
MountPoints2: {b4f56ae5-00d2-11e1-a6ce-806e6f6e6963} - E:\.\Bin\ASSETUP.exe
MountPoints2: {c5c9903a-00d6-11e1-ae28-806e6f6e6963} - E:\Autorun.exe
MountPoints2: {d04cc7cf-dd45-11e1-8490-806e6f6e6963} - E:\autorun.exe
MountPoints2: {d504954f-7147-11e2-9507-806e6f6e6963} - E:\SETUP.EXE -autorun
MountPoints2: {ed2c2bf0-9753-11e1-b34f-bcaec55dd29f} - F:\setup.exe
MountPoints2: {f20574ec-49d9-11e1-b4dd-bcaec55dd29f} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3451FE17C294CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKCU - {B52A983B-8D6A-40F9-9D77-0DC2F0233211} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
SearchScopes: HKCU - {F87C7CF5-AB46-4B0A-AAFB-BBB8019EC3AA} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deDE456
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU -  No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 83.169.184.225 83.169.184.161

FireFox:
========
FF ProfilePath: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Extension: Better Battlelog (BBLog) - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll No File
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Extension: (GFACE Experience Plugin) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol\0.37.0_0
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.0_0
CHR Extension: (AdBlock) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.24.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
S3 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2013-06-11] ()
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-30] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-29] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-30] (Microsoft Corporation)
S2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-26] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-10-28] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-09] ()
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2012-09-28] (Creative Technology Ltd.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
S0 mv91xx; system32\DRIVERS\mv91xx.sys [x]
S0 mvs91xx; system32\DRIVERS\mvs91xx.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WinRing0_1_2_0; \??\D:\Games\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-11 18:56 - 2013-10-11 18:57 - 00026724 _____ C:\Users\gamer\Desktop\Addition.txt
2013-10-11 18:51 - 2013-10-11 19:05 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:29 - 2013-10-11 16:50 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-09 21:54 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-09 16:21 - 2013-10-09 16:22 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 17:25 - 2013-10-08 17:26 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:10 - 2013-10-10 11:25 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 15:06 - 1998-01-23 12:22 - 00304128 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-02 19:37 - 2013-06-21 12:23 - 06496544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 03514656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00884512 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-02 19:37 - 2013-06-20 06:17 - 03253909 _____ C:\Windows\system32\nvcoproc.bin
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:34 - 2013-10-02 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 17:01 - 2013-10-02 17:07 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 17:01 - 2011-11-04 20:11 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Microsoft Help
2013-10-02 17:01 - 2011-10-28 15:37 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Macromedia
2013-10-02 17:01 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-02 17:01 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 15:56 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-10-02 15:56 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 01059560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 00021578 _____ C:\Windows\system32\nvinfo.pb
2013-10-01 17:17 - 2013-10-01 17:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-19 18:54 - 2013-09-19 18:56 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:49 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:27 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-19 18:27 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG
2013-09-19 18:14 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-19 18:14 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-19 18:14 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-19 18:14 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-19 18:14 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-09-19 18:14 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-09-19 18:13 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-19 18:13 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-19 18:13 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-19 18:13 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-09-19 18:13 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-09-19 18:13 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-09-19 18:13 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-09-19 18:13 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-09-19 18:12 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-19 18:12 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-19 18:12 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-19 18:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-19 18:12 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-19 18:12 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-09-19 18:12 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-09-19 18:12 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-19 18:12 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-09-19 18:12 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-09-19 18:12 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-09-19 18:12 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-09-19 18:12 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-19 18:12 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-09-19 18:12 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-19 18:11 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-19 18:11 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-19 18:11 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-19 18:11 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-19 18:11 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-19 18:11 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-19 18:11 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-09-19 18:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-19 18:11 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-09-19 18:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-19 18:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-09-19 18:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-09-19 18:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-19 18:11 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-09-19 18:11 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-09-19 18:11 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-09-19 18:11 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-09-19 18:11 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-09-19 18:11 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

==================== One Month Modified Files and Folders =======

2013-10-11 19:23 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-11 19:11 - 2012-01-19 16:37 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn Hamachi
2013-10-11 19:06 - 2012-08-22 16:57 - 00332922 _____ C:\Windows\PFRO.log
2013-10-11 19:06 - 2012-08-20 18:46 - 00093644 _____ C:\Windows\setupact.log
2013-10-11 19:06 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-11 19:05 - 2013-10-11 18:51 - 00000000 ____D C:\AdwCleaner
2013-10-11 19:05 - 2011-10-27 21:37 - 01784720 _____ C:\Windows\WindowsUpdate.log
2013-10-11 18:57 - 2013-10-11 18:56 - 00026724 _____ C:\Users\gamer\Desktop\Addition.txt
2013-10-11 18:32 - 2011-04-12 09:43 - 00766530 _____ C:\Windows\system32\perfh007.dat
2013-10-11 18:32 - 2011-04-12 09:43 - 00174416 _____ C:\Windows\system32\perfc007.dat
2013-10-11 18:32 - 2009-07-14 07:13 - 01808802 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:29 - 2012-07-13 16:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 16:50 - 2013-10-11 18:29 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 15:40 - 2013-05-17 17:46 - 00000000 ____D C:\Users\gamer\AppData\Local\DoNotTrackPlus
2013-10-11 15:01 - 2013-10-09 21:54 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 21:03 - 2011-11-07 15:50 - 00000000 ___RD C:\Users\gamer\Desktop\Playlist
2013-10-10 21:03 - 2011-11-07 15:36 - 00000000 ___RD C:\Users\gamer\Desktop\Musik
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 20:06 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Spiele
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-10 11:25 - 2013-10-07 15:10 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-09 21:55 - 2012-01-08 15:58 - 00003526 _____ C:\Windows\System32\Tasks\RunAsStdUser Task
2013-10-09 21:54 - 2011-10-27 21:54 - 00000000 ____D C:\Users\gamer
2013-10-09 21:52 - 2012-02-10 17:11 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-09 19:39 - 2012-02-10 17:11 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-09 19:39 - 2012-02-10 17:11 - 00002838 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-09 17:33 - 2012-07-13 16:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 17:33 - 2012-04-10 14:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 17:33 - 2011-11-03 22:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:35 - 2012-04-11 13:02 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-09 16:35 - 2011-10-28 17:16 - 00215416 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-09 16:22 - 2013-10-09 16:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 22:45 - 2011-12-02 18:06 - 00000000 ____D C:\Users\gamer\Documents\Camtasia Studio
2013-10-08 22:30 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\TS3Client
2013-10-08 20:59 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Local\TeamSpeak 3 Client
2013-10-08 17:26 - 2013-10-08 17:25 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-08 12:29 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-02 19:49 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Patches
2013-10-02 19:47 - 2011-10-27 16:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-02 19:44 - 2012-09-17 17:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-02 19:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:36 - 2013-10-02 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 19:22 - 2012-06-20 18:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Tobit
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:27 - 2013-05-22 14:04 - 00000000 ____D C:\Users\gamer\AppData\Local\ESL Wire Game Client
2013-10-02 17:24 - 2012-10-08 18:35 - 00003096 _____ C:\Windows\System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72}
2013-10-02 17:24 - 2012-05-24 19:59 - 00002918 _____ C:\Windows\System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F}
2013-10-02 17:07 - 2013-10-02 17:01 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 16:35 - 2012-02-07 16:00 - 00000000 ____D C:\Users\gamer\AppData\Roaming\InstallDir
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:24 - 2013-04-26 21:25 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 14:50 - 2011-10-28 17:55 - 00000000 ____D C:\Users\gamer\AppData\Local\PunkBuster
2013-10-02 14:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-02 14:35 - 2011-10-28 16:38 - 00000000 ____D C:\ProgramData\Origin
2013-10-01 17:40 - 2012-12-07 15:00 - 00000000 ____D C:\Users\gamer\AppData\Local\NVIDIA
2013-10-01 17:21 - 2013-10-01 17:17 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-30 19:21 - 2011-10-28 17:55 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-29 21:43 - 2012-04-11 13:02 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-29 21:43 - 2011-10-28 17:55 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-09-29 21:42 - 2012-08-26 14:32 - 00448312 _____ C:\Windows\DirectX.log
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-27 10:57 - 2013-10-02 15:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-02 15:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-09-21 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-19 19:09 - 2011-10-27 21:55 - 00001427 _____ C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-19 19:09 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-19 19:08 - 2011-10-27 22:34 - 00000000 ____D C:\Windows\Panther
2013-09-19 19:07 - 2009-07-14 06:45 - 02378272 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-19 19:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-19 19:01 - 2011-11-30 20:37 - 01785760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-19 18:56 - 2013-09-19 18:54 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:56 - 2011-10-28 15:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-19 18:49 - 2013-09-19 18:41 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:17 - 2009-07-14 04:34 - 00000659 _____ C:\Windows\win.ini
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG

Some content of TEMP:
====================
C:\Users\gamer\AppData\Local\Temp\Quarantine.exe
C:\Users\gamer\AppData\Local\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-01 18:16

==================== End Of Log ============================
         
--- --- ---



Sorry mein Fehler.
MFG Crunk3r

Alt 11.10.2013, 18:22   #13
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by gamer (administrator) on GAMERPC on 11-10-2013 19:13:33
Running from C:\Users\gamer\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKCU\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
MountPoints2: {916f4ef4-00ef-11e1-b6b9-bcaec55dd29f} - "G:\WD SmartWare.exe" autoplay=true
MountPoints2: {916f51b2-00ef-11e1-b6b9-bcaec55dd29f} - G:\unlock.exe autoplay=true
MountPoints2: {b4f56ae5-00d2-11e1-a6ce-806e6f6e6963} - E:\.\Bin\ASSETUP.exe
MountPoints2: {c5c9903a-00d6-11e1-ae28-806e6f6e6963} - E:\Autorun.exe
MountPoints2: {d04cc7cf-dd45-11e1-8490-806e6f6e6963} - E:\autorun.exe
MountPoints2: {d504954f-7147-11e2-9507-806e6f6e6963} - E:\SETUP.EXE -autorun
MountPoints2: {ed2c2bf0-9753-11e1-b34f-bcaec55dd29f} - F:\setup.exe
MountPoints2: {f20574ec-49d9-11e1-b4dd-bcaec55dd29f} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3451FE17C294CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKCU - {B52A983B-8D6A-40F9-9D77-0DC2F0233211} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
SearchScopes: HKCU - {F87C7CF5-AB46-4B0A-AAFB-BBB8019EC3AA} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deDE456
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU -  No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 83.169.184.225 83.169.184.161

FireFox:
========
FF ProfilePath: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Extension: Better Battlelog (BBLog) - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll No File
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Extension: (GFACE Experience Plugin) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol\0.37.0_0
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.0_0
CHR Extension: (AdBlock) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.24.0.crx
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
S3 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2013-06-11] ()
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-30] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-29] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-30] (Microsoft Corporation)
S2 Update LemurLeap; C:\Program Files (x86)\LemurLeap\updateLemurLeap.exe [65312 2013-10-03] (LemurLeap)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-26] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-10-28] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-09] ()
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2012-09-28] (Creative Technology Ltd.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
S0 mv91xx; system32\DRIVERS\mv91xx.sys [x]
S0 mvs91xx; system32\DRIVERS\mvs91xx.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WinRing0_1_2_0; \??\D:\Games\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-11 18:56 - 2013-10-11 18:57 - 00026724 _____ C:\Users\gamer\Desktop\Addition.txt
2013-10-11 18:51 - 2013-10-11 19:05 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:29 - 2013-10-11 16:50 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-09 21:54 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-09 16:21 - 2013-10-09 16:22 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 17:25 - 2013-10-08 17:26 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:10 - 2013-10-10 11:25 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 15:06 - 1998-01-23 12:22 - 00304128 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-02 19:37 - 2013-06-21 12:23 - 06496544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 03514656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00884512 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-02 19:37 - 2013-06-20 06:17 - 03253909 _____ C:\Windows\system32\nvcoproc.bin
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:34 - 2013-10-02 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 17:01 - 2013-10-02 17:07 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 17:01 - 2011-11-04 20:11 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Microsoft Help
2013-10-02 17:01 - 2011-10-28 15:37 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Macromedia
2013-10-02 17:01 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-02 17:01 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 15:56 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-10-02 15:56 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 01059560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 00021578 _____ C:\Windows\system32\nvinfo.pb
2013-10-01 17:17 - 2013-10-01 17:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-19 18:54 - 2013-09-19 18:56 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:49 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:27 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-19 18:27 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG
2013-09-19 18:14 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-19 18:14 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-19 18:14 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-19 18:14 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-19 18:14 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-09-19 18:14 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-09-19 18:13 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-19 18:13 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-19 18:13 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-19 18:13 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-09-19 18:13 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-09-19 18:13 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-09-19 18:13 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-09-19 18:13 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-09-19 18:12 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-19 18:12 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-19 18:12 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-19 18:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-19 18:12 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-19 18:12 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-09-19 18:12 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-09-19 18:12 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-19 18:12 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-09-19 18:12 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-09-19 18:12 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-09-19 18:12 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-09-19 18:12 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-19 18:12 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-09-19 18:12 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-19 18:11 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-19 18:11 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-19 18:11 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-19 18:11 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-19 18:11 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-19 18:11 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-19 18:11 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-09-19 18:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-19 18:11 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-09-19 18:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-19 18:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-09-19 18:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-09-19 18:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-19 18:11 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-09-19 18:11 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-09-19 18:11 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-09-19 18:11 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-09-19 18:11 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-09-19 18:11 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

==================== One Month Modified Files and Folders =======

2013-10-11 19:23 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-11 19:11 - 2012-01-19 16:37 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn Hamachi
2013-10-11 19:06 - 2012-08-22 16:57 - 00332922 _____ C:\Windows\PFRO.log
2013-10-11 19:06 - 2012-08-20 18:46 - 00093644 _____ C:\Windows\setupact.log
2013-10-11 19:06 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-11 19:05 - 2013-10-11 18:51 - 00000000 ____D C:\AdwCleaner
2013-10-11 19:05 - 2011-10-27 21:37 - 01784720 _____ C:\Windows\WindowsUpdate.log
2013-10-11 18:57 - 2013-10-11 18:56 - 00026724 _____ C:\Users\gamer\Desktop\Addition.txt
2013-10-11 18:32 - 2011-04-12 09:43 - 00766530 _____ C:\Windows\system32\perfh007.dat
2013-10-11 18:32 - 2011-04-12 09:43 - 00174416 _____ C:\Windows\system32\perfc007.dat
2013-10-11 18:32 - 2009-07-14 07:13 - 01808802 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:32 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-11 18:29 - 2012-07-13 16:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 16:50 - 2013-10-11 18:29 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 15:40 - 2013-05-17 17:46 - 00000000 ____D C:\Users\gamer\AppData\Local\DoNotTrackPlus
2013-10-11 15:01 - 2013-10-09 21:54 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 21:03 - 2011-11-07 15:50 - 00000000 ___RD C:\Users\gamer\Desktop\Playlist
2013-10-10 21:03 - 2011-11-07 15:36 - 00000000 ___RD C:\Users\gamer\Desktop\Musik
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 20:06 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Spiele
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-10 11:25 - 2013-10-07 15:10 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-09 21:55 - 2012-01-08 15:58 - 00003526 _____ C:\Windows\System32\Tasks\RunAsStdUser Task
2013-10-09 21:54 - 2011-10-27 21:54 - 00000000 ____D C:\Users\gamer
2013-10-09 21:52 - 2012-02-10 17:11 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-09 19:39 - 2012-02-10 17:11 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-09 19:39 - 2012-02-10 17:11 - 00002838 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-09 17:33 - 2012-07-13 16:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 17:33 - 2012-04-10 14:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 17:33 - 2011-11-03 22:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:35 - 2012-04-11 13:02 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-09 16:35 - 2011-10-28 17:16 - 00215416 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-09 16:22 - 2013-10-09 16:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 22:45 - 2011-12-02 18:06 - 00000000 ____D C:\Users\gamer\Documents\Camtasia Studio
2013-10-08 22:30 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\TS3Client
2013-10-08 20:59 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Local\TeamSpeak 3 Client
2013-10-08 17:26 - 2013-10-08 17:25 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-08 12:29 - 2013-10-07 14:58 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-02 19:49 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Patches
2013-10-02 19:47 - 2011-10-27 16:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-02 19:44 - 2012-09-17 17:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-02 19:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:36 - 2013-10-02 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 19:22 - 2012-06-20 18:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Tobit
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:27 - 2013-05-22 14:04 - 00000000 ____D C:\Users\gamer\AppData\Local\ESL Wire Game Client
2013-10-02 17:24 - 2012-10-08 18:35 - 00003096 _____ C:\Windows\System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72}
2013-10-02 17:24 - 2012-05-24 19:59 - 00002918 _____ C:\Windows\System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F}
2013-10-02 17:07 - 2013-10-02 17:01 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 16:35 - 2012-02-07 16:00 - 00000000 ____D C:\Users\gamer\AppData\Roaming\InstallDir
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:24 - 2013-04-26 21:25 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 14:50 - 2011-10-28 17:55 - 00000000 ____D C:\Users\gamer\AppData\Local\PunkBuster
2013-10-02 14:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-02 14:35 - 2011-10-28 16:38 - 00000000 ____D C:\ProgramData\Origin
2013-10-01 17:40 - 2012-12-07 15:00 - 00000000 ____D C:\Users\gamer\AppData\Local\NVIDIA
2013-10-01 17:21 - 2013-10-01 17:17 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-30 19:21 - 2011-10-28 17:55 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-29 21:43 - 2012-04-11 13:02 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-29 21:43 - 2011-10-28 17:55 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-09-29 21:42 - 2012-08-26 14:32 - 00448312 _____ C:\Windows\DirectX.log
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-27 10:57 - 2013-10-02 15:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-02 15:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-09-21 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-19 19:09 - 2011-10-27 21:55 - 00001427 _____ C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-19 19:09 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-19 19:08 - 2011-10-27 22:34 - 00000000 ____D C:\Windows\Panther
2013-09-19 19:07 - 2009-07-14 06:45 - 02378272 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-19 19:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-19 19:01 - 2011-11-30 20:37 - 01785760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-19 18:56 - 2013-09-19 18:54 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:56 - 2011-10-28 15:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-19 18:49 - 2013-09-19 18:41 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:17 - 2009-07-14 04:34 - 00000659 _____ C:\Windows\win.ini
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG

Some content of TEMP:
====================
C:\Users\gamer\AppData\Local\Temp\Quarantine.exe
C:\Users\gamer\AppData\Local\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-01 18:16

==================== End Of Log ============================
         
--- --- ---

Alt 11.10.2013, 18:22   #14
aharonov
/// TB-Ausbilder
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Wie läuft der Rechner nach diesen Schritten?


Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
testsigning: ==> Check for possible unsigned malware driver <===== ATTENTION!
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.




Schritt 2
  • Öffne das Programm Malwarebytes Anti-Malware.
    Vista und Win7 User mit Rechtsklick "als Administrator starten".
  • Klicke auf Aktualisierung --> Suche nach Aktualisierung.
  • Wenn das Update beendet wurde, aktiviere im Reiter Suchlauf die Option Quick-Scan durchführen und drücke auf Scannen.
  • Wenn der Scan fertig ist, klicke auf Ergebnisse anzeigen.
  • Versichere dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
  • Poste das Logfile, welches sich in Notepad öffnet, hier in den Thread.
  • Nachträglich kannst du den Bericht unter dem Reiter Logdateien finden.



Schritt 3


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset




Schritt 4

Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.



Bitte poste in deiner nächsten Antwort:
  • Fixlog von FRST
  • Log von MBAM
  • Log von ESET
  • Log von FRST
__________________
cheers,
Leo

Alt 12.10.2013, 22:31   #15
Crunk3r
 
Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Standard

Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.



Vergiss den letzten Code. Der Rechner läuft einwandfrei. Ich werde diesen einen Schritt noch machen und antworten. Danach bin ich bis morgen nicht mehr erreichbar. Ich werde mich sofort melden. Tausend Dank schon mal für deine Hilfe

MFG
Crunk3r

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2013
Ran by gamer at 2013-10-11 19:27:39 Run:2
Running from C:\Users\gamer\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
2013-10-07 14:59 - 2013-10-07 14:59 - 00003630 _____ C:\Windows\System32\Tasks\Escolade
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Users\gamer\AppData\Local\avgchrome
2013-10-07 14:59 - 2013-10-07 14:59 - 00000000 ____D C:\Program Files (x86)\LemurLeap
2013-10-07 14:58 - 2013-10-08 12:29 - 00000000 ____D C:\Users\gamer\AppData\Roaming\iPumper
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx
CHR HKLM-x32\...\Chrome\Extension: [ccbgjfdieajmokelnlapbedknchgenne] - C:\Users\gamer\AppData\Local\Temp\ccex.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
SearchScopes: HKCU - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.babylon.com/?q={searchTerms}&affID=110819&babsrc=SP_ss&mntrId=66e82cee000000000000bcaec55dd29f
SearchScopes: HKCU - {4C9D75B9-6533-4886-ADE5-7A94533FC63F} URL = hxxp://start.funmoods.com/results.php?f=4&a=ironto&q={searchTerms}
SearchScopes: HKCU - {9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10267&src=crm&q={searchTerms}&locale=&apn_ptnrs=^AGY&apn_dtid=^YYYYYY^YY^NL&apn_uid=8b587dd7-5659-426b-8972-44324d429fe0&apn_sauid=66D480BE-553F-40C2-9A7F-1665ADA2C552
SearchScopes: HKCU - {AD980049-C0DA-4302-B858-E426D7770BA9} URL = hxxp://searchya.com/?chnl=fap&s=1&cr=998867976&cd=2XzutAtN2Y1L1Qzu0B0C0A0E0CyDyD0D0DtBzy0FzztB0C0E0EtN0D0TzutBtDtCtBtDtBtDzz&q={searchTerms}
SearchScopes: HKLM-x32 - {1A294047-1466-00FD-04F7-4D269C15F5D7} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2319825
testsigning: ==> Check for possible unsigned malware driver <===== ATTENTION!
         
*****************

C:\Windows\System32\Tasks\Escolade => Moved successfully.
C:\Users\gamer\AppData\Local\avgchrome => Moved successfully.
C:\Program Files (x86)\LemurLeap => Moved successfully.
C:\Users\gamer\AppData\Roaming\iPumper => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\aacbndibbcpajfgnkdkaakeiojmmgmnk => Key deleted successfully.
"C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ccbgjfdieajmokelnlapbedknchgenne => Key deleted successfully.
"C:\Users\gamer\AppData\Local\Temp\ccex.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jlnfdbbladgcmhhamgkioifhbobjaoof => Key deleted successfully.
"C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx" => File/Directory not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpihmmhdcobmllpcnpfbhnipmhamldje => Key deleted successfully.
"C:\Users\gamer\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx" => File/Directory not found.
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028 ==> The Chrome "Settings" can be used to fix the entry.
C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1A294047-1466-00FD-04F7-4D269C15F5D7} => Key deleted successfully.
HKCR\CLSID\{1A294047-1466-00FD-04F7-4D269C15F5D7} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4C9D75B9-6533-4886-ADE5-7A94533FC63F} => Key deleted successfully.
HKCR\CLSID\{4C9D75B9-6533-4886-ADE5-7A94533FC63F} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} => Key deleted successfully.
HKCR\CLSID\{9C6A8F58-1B8B-4EBF-9B13-80EDB372AAA8} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AD980049-C0DA-4302-B858-E426D7770BA9} => Key deleted successfully.
HKCR\CLSID\{AD980049-C0DA-4302-B858-E426D7770BA9} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{1A294047-1466-00FD-04F7-4D269C15F5D7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{1A294047-1466-00FD-04F7-4D269C15F5D7} => Key not found.

Der Befehl "bcdedit" ist entweder falsch geschrieben oder
konnte nicht gefunden werden.

==== End of Fixlog ====
         
Guten Tag,

Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.11.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16686
gamer :: GAMERPC [Administrator]

12.10.2013 12:04:57
mbam-log-2013-10-12 (12-04-57).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 306955
Laufzeit: 7 Minute(n), 38 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 2
HKCU\Software\LemurLeap (PUP.Optional.LemurLeap.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SYSTEM\CurrentControlSet\Services\Update LemurLeap (PUP.Optional.LemurLeap.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 18
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\CrxInstaller.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\DSearchLink.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\MntrDLLInstall.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\MyDeltaTB.exe (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\8ADAB74C-BAB0-7891-9C60-AA56A62EE88F\Latest\ccp.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\CrxInstaller.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\DSearchLink.exe (PUP.Optional.Delta.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\MntrDLLInstall.dll (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\MyDeltaTB.exe (PUP.Optional.Delta) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\FA6F71A1-BAB0-7891-A24D-66AB7D2AAE9B\Latest\ccp.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\awhEAAD.tmp (PUP.Optional.Amonetize) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\gamer\AppData\Local\Temp\tmp1B5E\DeltaTB.exe (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=9cda997b442073489aa46155637e7a9b
# engine=15458
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-12 10:11:41
# local_time=2013-10-12 12:11:41 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 96 630 14568536 0 0
# compatibility_mode=5893 16776574 100 94 1962411 133202551 0 0
# scanned=1762
# found=2
# cleaned=0
# scan_time=238
sh=DC03D54B336F38F102FD020C208AC1C784C86659 ft=1 fh=e063b029e9d73230 vn="a variant of Win32/Kryptik.BMKE trojan" ac=I fn="C:\FRST\Quarantine\bz8arfof.plz"
sh=DC03D54B336F38F102FD020C208AC1C784C86659 ft=1 fh=e063b029e9d73230 vn="a variant of Win32/Kryptik.BMKE trojan" ac=I fn="C:\FRST\Quarantine\~tmf3645445714545284192.dll"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=9cda997b442073489aa46155637e7a9b
# engine=15458
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-12 07:46:50
# local_time=2013-10-12 09:46:50 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 96 35139 14603045 27918 0
# compatibility_mode=5893 16776574 100 94 1996920 133237060 0 0
# scanned=588788
# found=11
# cleaned=0
# scan_time=34054
sh=DC03D54B336F38F102FD020C208AC1C784C86659 ft=1 fh=e063b029e9d73230 vn="a variant of Win32/Kryptik.BMKE trojan" ac=I fn="C:\FRST\Quarantine\bz8arfof.plz"
sh=DC03D54B336F38F102FD020C208AC1C784C86659 ft=1 fh=e063b029e9d73230 vn="a variant of Win32/Kryptik.BMKE trojan" ac=I fn="C:\FRST\Quarantine\~tmf3645445714545284192.dll"
sh=9DB406D90E06A3A8D32F93B4E02C013480E4E766 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.PSI trojan" ac=I fn="C:\Users\gamer\AppData\Local\Temp\jar_cache1764195791146124691.tmp"
sh=7C2CA5A96CBFBBCB435D77A23F1F36945A9C7E2E ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.PSI trojan" ac=I fn="C:\Users\gamer\AppData\Local\Temp\jar_cache596691546129389269.tmp"
sh=DF7C41F462CDFF021A503630286A3CC8839B934B ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\gamer\AppData\Local\Temp\jar_cache6397445233078136240.tmp"
sh=2CA27D62A3CAC8D9051815CC2E4886E731955C44 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\gamer\AppData\Local\Temp\jar_cache7879509362875229810.tmp"
sh=2BD66ACD064EA2D472D77DDD5218DC0220D4C6FD ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\gamer\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\343a8f57-521cfe22"
sh=238DC21F6CFA5AA7D1AC794674C8DC27DB93F608 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Obfus.D trojan" ac=I fn="C:\Users\gamer\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\2c8bbb7b-30c6abc0"
sh=97AD30A2F1954781EBF4872DC4EA0E4F7135EDCC ft=1 fh=dbf8fefc96520283 vn="a variant of Win32/Packed.ExeScript.B trojan" ac=I fn="C:\Users\gamer\Desktop\Patches\2010_07_21_AIX_2.0_CORE_MOD.exe"
sh=8A7538FC2093837ED1526213CA1FE93820803031 ft=1 fh=c71c0011ba35f808 vn="a variant of Win32/Packed.ExeScript.B trojan" ac=I fn="D:\Games\Battlefield 2\mods\stats\Stats.exe"
sh=8A7538FC2093837ED1526213CA1FE93820803031 ft=1 fh=c71c0011ba35f808 vn="a variant of Win32/Packed.ExeScript.B trojan" ac=I fn="D:\Games\EA GAMES\Battlefield 2\mods\stats\Stats.exe"
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by gamer (administrator) on GAMERPC on 12-10-2013 23:28:43
Running from C:\Users\gamer\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) D:\Games\Steam\Steam.exe
(Electronic Arts) D:\Games\Origin\Origin.exe
(Electronic Arts) D:\Games\Origin\OriginClientService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKCU\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKCU\...\Policies\Explorer: [NoResolveSearch] 1
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
MountPoints2: {916f4ef4-00ef-11e1-b6b9-bcaec55dd29f} - "G:\WD SmartWare.exe" autoplay=true
MountPoints2: {916f51b2-00ef-11e1-b6b9-bcaec55dd29f} - G:\unlock.exe autoplay=true
MountPoints2: {b4f56ae5-00d2-11e1-a6ce-806e6f6e6963} - E:\.\Bin\ASSETUP.exe
MountPoints2: {c5c9903a-00d6-11e1-ae28-806e6f6e6963} - E:\Autorun.exe
MountPoints2: {d04cc7cf-dd45-11e1-8490-806e6f6e6963} - E:\autorun.exe
MountPoints2: {d504954f-7147-11e2-9507-806e6f6e6963} - E:\SETUP.EXE -autorun
MountPoints2: {ed2c2bf0-9753-11e1-b34f-bcaec55dd29f} - F:\setup.exe
MountPoints2: {f20574ec-49d9-11e1-b4dd-bcaec55dd29f} - F:\setup.exe
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3451FE17C294CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
URLSearchHook: (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
SearchScopes: HKLM - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b}
SearchScopes: HKCU - Backup.Old.DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {B52A983B-8D6A-40F9-9D77-0DC2F0233211} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=382950&p={searchTerms}
SearchScopes: HKCU - {F87C7CF5-AB46-4B0A-AAFB-BBB8019EC3AA} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7ADFA_deDE456
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU -  No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 83.169.184.225 83.169.184.161

FireFox:
========
FF ProfilePath: C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.7.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Extension: Better Battlelog (BBLog) - C:\Users\gamer\AppData\Roaming\Mozilla\Firefox\Profiles\u1q208jg.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Delta Search) - hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=66E8BCAEC55DD29F&affID=120006&tsp=5028
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Babylon ToolBar) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.7_0\BabylonChromeToolBar.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll No File
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Extension: (GFACE Experience Plugin) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejdlfmdbdibkbfdpjocdaolcheehmpol\0.37.0_0
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbnkmpcicaafjhmnhiblopefjfacnmem\3.6.0_0
CHR Extension: (AdBlock) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\gamer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\gamer\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.24.0.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-08-20] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] ()
S3 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2013-06-11] ()
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392 2009-03-30] (Microsoft Corporation)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [3804120 2011-08-07] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-09-29] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [366936 2009-03-30] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2000-01-01] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-08-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-26] (Avira Operations GmbH & Co. KG)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S3 RTCore64; D:\Games\MSI Afterburner\RTCore64.sys [10568 2012-07-24] ()
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-10-28] (Duplex Secure Ltd.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-10-09] ()
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2012-09-28] (Creative Technology Ltd.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys [x]
S0 mv91xx; system32\DRIVERS\mv91xx.sys [x]
S0 mvs91xx; system32\DRIVERS\mvs91xx.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WinRing0_1_2_0; \??\D:\Games\Game Booster 3\Driver\WinRing0x64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-12 18:01 - 2013-10-12 18:01 - 100634370 _____ C:\Windows\SysWOW64\义ᆂŽ
2013-10-12 12:05 - 2013-10-12 12:05 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-11 18:51 - 2013-10-11 19:05 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:29 - 2013-10-11 16:50 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-09 21:54 - 2013-10-11 15:01 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-09 16:21 - 2013-10-09 16:22 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 17:25 - 2013-10-08 17:26 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:10 - 2013-10-10 11:25 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-07 15:06 - 1998-01-23 12:22 - 00304128 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 06496544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 03514656 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00884512 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-02 19:37 - 2013-06-21 12:23 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-02 19:37 - 2013-06-21 12:23 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-02 19:37 - 2013-06-20 06:17 - 03253909 _____ C:\Windows\system32\nvcoproc.bin
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:34 - 2013-10-02 19:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 17:01 - 2013-10-02 17:07 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 17:01 - 2011-11-04 20:11 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Microsoft Help
2013-10-02 17:01 - 2011-10-28 15:37 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Macromedia
2013-10-02 17:01 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-02 17:01 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 15:56 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-10-02 15:56 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 01059560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-02 15:56 - 2013-06-21 14:06 - 00021578 _____ C:\Windows\system32\nvinfo.pb
2013-10-01 17:17 - 2013-10-01 17:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-19 18:54 - 2013-09-19 18:56 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:49 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:27 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-09-19 18:27 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-09-19 18:27 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG
2013-09-19 18:14 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-19 18:14 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-19 18:14 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-19 18:14 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-19 18:14 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-19 18:14 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-19 18:14 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-19 18:14 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-19 18:14 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-19 18:14 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-19 18:14 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-19 18:14 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-19 18:14 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-09-19 18:14 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-09-19 18:14 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-09-19 18:13 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-09-19 18:13 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-09-19 18:13 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-09-19 18:13 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-09-19 18:13 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-09-19 18:13 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-09-19 18:13 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-09-19 18:13 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-09-19 18:13 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-09-19 18:12 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-19 18:12 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-19 18:12 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-19 18:12 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-19 18:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-09-19 18:12 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-09-19 18:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-09-19 18:12 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-09-19 18:12 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-09-19 18:12 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-09-19 18:12 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-09-19 18:12 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-09-19 18:12 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-09-19 18:12 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-09-19 18:12 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-09-19 18:12 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-09-19 18:12 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-09-19 18:12 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-09-19 18:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-09-19 18:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-09-19 18:12 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-09-19 18:11 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-09-19 18:11 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-09-19 18:11 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-09-19 18:11 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-09-19 18:11 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-09-19 18:11 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-09-19 18:11 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-09-19 18:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-09-19 18:11 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-09-19 18:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-09-19 18:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-09-19 18:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-09-19 18:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-09-19 18:11 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-09-19 18:11 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-09-19 18:11 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-09-19 18:11 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-09-19 18:11 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-09-19 18:11 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-09-19 18:11 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

==================== One Month Modified Files and Folders =======

2013-10-12 23:29 - 2012-07-13 16:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-12 22:35 - 2011-10-30 19:15 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-12 22:35 - 2011-10-30 19:15 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-12 22:35 - 2011-10-30 19:15 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-12 22:35 - 2011-10-30 19:15 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-12 18:01 - 2013-10-12 18:01 - 100634370 _____ C:\Windows\SysWOW64\义ᆂŽ
2013-10-12 12:23 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-12 12:23 - 2009-07-14 06:45 - 00031504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-12 12:16 - 2012-08-20 18:46 - 00093812 _____ C:\Windows\setupact.log
2013-10-12 12:16 - 2012-01-19 16:37 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn Hamachi
2013-10-12 12:16 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-12 12:15 - 2012-08-22 16:57 - 00338726 _____ C:\Windows\PFRO.log
2013-10-12 12:15 - 2011-10-27 21:37 - 01792304 _____ C:\Windows\WindowsUpdate.log
2013-10-12 12:05 - 2013-10-12 12:05 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-11 19:23 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-11 19:05 - 2013-10-11 18:51 - 00000000 ____D C:\AdwCleaner
2013-10-11 18:32 - 2011-04-12 09:43 - 00766530 _____ C:\Windows\system32\perfh007.dat
2013-10-11 18:32 - 2011-04-12 09:43 - 00174416 _____ C:\Windows\system32\perfc007.dat
2013-10-11 18:32 - 2009-07-14 07:13 - 01808802 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-11 18:08 - 2013-10-11 18:08 - 00000000 ____D C:\FRST
2013-10-11 16:50 - 2013-10-11 18:29 - 01954124 _____ (Farbar) C:\Users\gamer\Desktop\FRST64.exe
2013-10-11 15:40 - 2013-05-17 17:46 - 00000000 ____D C:\Users\gamer\AppData\Local\DoNotTrackPlus
2013-10-11 15:01 - 2013-10-09 21:54 - 00000000 ____D C:\Users\gamer\AppData\Local\Oxy
2013-10-11 13:27 - 2013-10-11 13:27 - 100470597 _____ C:\Windows\SysWOW64\剆먐—
2013-10-10 21:03 - 2011-11-07 15:50 - 00000000 ___RD C:\Users\gamer\Desktop\Playlist
2013-10-10 21:03 - 2011-11-07 15:36 - 00000000 ___RD C:\Users\gamer\Desktop\Musik
2013-10-10 20:12 - 2013-10-10 20:12 - 00000000 ____D C:\Users\gamer\Desktop\jkö
2013-10-10 20:06 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Spiele
2013-10-10 17:26 - 2013-10-10 17:26 - 100267706 _____ C:\Windows\SysWOW64\燄㛤8
2013-10-10 11:25 - 2013-10-07 15:10 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Oxy
2013-10-09 21:55 - 2012-01-08 15:58 - 00003526 _____ C:\Windows\System32\Tasks\RunAsStdUser Task
2013-10-09 21:54 - 2011-10-27 21:54 - 00000000 ____D C:\Users\gamer
2013-10-09 21:52 - 2012-02-10 17:11 - 00000410 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-10-09 19:39 - 2012-02-10 17:11 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-10-09 19:39 - 2012-02-10 17:11 - 00002838 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-10-09 17:33 - 2012-07-13 16:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 17:33 - 2012-04-10 14:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 17:33 - 2011-11-03 22:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:35 - 2012-04-11 13:02 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-09 16:35 - 2011-10-28 17:16 - 00215416 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-09 16:22 - 2013-10-09 16:21 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4 Beta
2013-10-08 22:45 - 2011-12-02 18:06 - 00000000 ____D C:\Users\gamer\Documents\Camtasia Studio
2013-10-08 22:30 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\TS3Client
2013-10-08 20:59 - 2011-10-31 15:46 - 00000000 ____D C:\Users\gamer\AppData\Local\TeamSpeak 3 Client
2013-10-08 17:26 - 2013-10-08 17:25 - 00000339 _____ C:\debug.dat
2013-10-08 17:25 - 2013-10-08 17:25 - 00004012 _____ C:\Windows\SysWOW64\ntdat.trn
2013-10-07 15:23 - 2013-10-07 15:23 - 00003114 _____ C:\Windows\System32\Tasks\YourFile DownloaderUpdate
2013-10-07 15:06 - 2013-10-07 15:06 - 00000115 _____ C:\Windows\disney.ini
2013-10-02 19:49 - 2011-10-28 17:42 - 00000000 ____D C:\Users\gamer\Desktop\Patches
2013-10-02 19:47 - 2011-10-27 16:42 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-02 19:44 - 2012-09-17 17:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-02 19:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2013-10-02 19:36 - 2013-10-02 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-02 19:36 - 2013-10-02 17:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-02 19:22 - 2012-06-20 18:46 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Tobit
2013-10-02 18:01 - 2013-10-02 18:01 - 00000000 ____D C:\NVIDIA
2013-10-02 17:27 - 2013-05-22 14:04 - 00000000 ____D C:\Users\gamer\AppData\Local\ESL Wire Game Client
2013-10-02 17:24 - 2012-10-08 18:35 - 00003096 _____ C:\Windows\System32\Tasks\{CEB90E36-3DB6-459C-99B8-E4476E3F4A72}
2013-10-02 17:24 - 2012-05-24 19:59 - 00002918 _____ C:\Windows\System32\Tasks\{E67A37FC-0327-4705-A8D5-E8197D5DBB9F}
2013-10-02 17:07 - 2013-10-02 17:01 - 00000000 ____D C:\Users\UpdatusUser.gamerpc.001
2013-10-02 17:01 - 2013-10-02 17:01 - 00000020 ___SH C:\Users\UpdatusUser.gamerpc.001\ntuser.ini
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Vorlagen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Startmenü
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Netzwerkumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Lokale Einstellungen
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Eigene Dateien
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Druckumgebung
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Musik
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\Documents\Eigene Bilder
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Verlauf
2013-10-02 17:01 - 2013-10-02 17:01 - 00000000 _SHDL C:\Users\UpdatusUser.gamerpc.001\AppData\Local\Anwendungsdaten
2013-10-02 16:35 - 2012-02-07 16:00 - 00000000 ____D C:\Users\gamer\AppData\Roaming\InstallDir
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Users\gamer\AppData\Roaming\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-02 16:28 - 2013-10-02 16:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-02 16:24 - 2013-04-26 21:25 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\Users\gamer\AppData\Local\LogMeIn
2013-10-02 16:22 - 2013-10-02 16:22 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-02 16:21 - 2013-10-02 16:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-02 14:50 - 2011-10-28 17:55 - 00000000 ____D C:\Users\gamer\AppData\Local\PunkBuster
2013-10-02 14:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-02 14:35 - 2011-10-28 16:38 - 00000000 ____D C:\ProgramData\Origin
2013-10-01 17:40 - 2012-12-07 15:00 - 00000000 ____D C:\Users\gamer\AppData\Local\NVIDIA
2013-10-01 17:21 - 2013-10-01 17:17 - 00000000 ____D C:\Users\gamer\Documents\Battlefield 4
2013-09-30 19:21 - 2011-10-28 17:55 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-29 21:44 - 2013-09-29 21:44 - 00000810 _____ C:\Users\Public\Desktop\Battlefield 4™ Beta.lnk
2013-09-29 21:43 - 2013-09-29 21:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-09-29 21:43 - 2012-04-11 13:02 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-29 21:43 - 2011-10-28 17:55 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-09-29 21:42 - 2012-08-26 14:32 - 00448312 _____ C:\Windows\DirectX.log
2013-09-27 11:13 - 2013-09-27 11:13 - 98201609 _____ C:\Windows\SysWOW64\骠공‹
2013-09-27 10:57 - 2013-10-02 15:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-02 15:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433140.dll
2013-09-21 21:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-09-19 19:09 - 2011-10-27 21:55 - 00001427 _____ C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-19 19:09 - 2011-10-27 21:55 - 00000000 ___RD C:\Users\gamer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-19 19:08 - 2011-10-27 22:34 - 00000000 ____D C:\Windows\Panther
2013-09-19 19:07 - 2009-07-14 06:45 - 02378272 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-19 19:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-19 19:04 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-09-19 19:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-19 19:01 - 2011-11-30 20:37 - 01785760 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-19 18:56 - 2013-09-19 18:54 - 00000000 ____D C:\Windows\system32\MRT
2013-09-19 18:56 - 2011-10-28 15:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-19 18:49 - 2013-09-19 18:41 - 00012966 _____ C:\Windows\IE10_main.log
2013-09-19 18:44 - 2013-09-19 18:44 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-19 18:44 - 2013-09-19 18:44 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-19 18:44 - 2013-09-19 18:44 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-19 18:44 - 2013-09-19 18:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-19 18:44 - 2013-09-19 18:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-19 18:44 - 2013-09-19 18:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-19 18:44 - 2013-09-19 18:44 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 18:42 - 2013-09-19 18:42 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:42 - 2013-09-19 18:42 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-09-19 18:41 - 2013-09-19 18:41 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-09-19 18:17 - 2009-07-14 04:34 - 00000659 _____ C:\Windows\win.ini
2013-09-19 18:16 - 2013-09-19 18:16 - 00258416 _____ C:\Windows\msxml4-KB2758694-enu.LOG

Some content of TEMP:
====================
C:\Users\gamer\AppData\Local\Temp\Quarantine.exe
C:\Users\gamer\AppData\Local\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-12 22:17

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Antwort

Themen zu Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.
.exe, abgesicherte, abgesicherten, abgesicherten modus, andere, anderen, bundespolizei, bundespolizei-trojaner, bundespolizeitrojaner, erstell, frst64.exe, funktionier, funktioniert, funktioniert nicht, funktioniert nicht mehr, heute, hilfe, leute, löschen, modus, nicht mehr, runtergeladen, servus, stick



Ähnliche Themen: Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr.


  1. Nach dem Löschen von startsearch.com funktioniert der IE 11 nicht mehr
    Log-Analyse und Auswertung - 17.03.2015 (11)
  2. GVU Trojaner auf dem Laptop entfernen, abgesicherter Modus funktioniert nicht mehr
    Log-Analyse und Auswertung - 30.04.2014 (15)
  3. Windows 7 1) Systemwiederherstellungspunkte nach Neustart weg / 2) F8-Menü -> Abgesicherter Modus etc. funktioniert nicht mehr
    Alles rund um Windows - 15.11.2013 (7)
  4. GVU Trojaner Abgesicherter Modus funktioniert nicht mehr! Windows XP
    Plagegeister aller Art und deren Bekämpfung - 02.10.2013 (8)
  5. PC funktioniert nur noch sehr langsam im abgesicherten Modus, laesst sich nicht mehr bedienen!
    Plagegeister aller Art und deren Bekämpfung - 09.09.2013 (3)
  6. BKA-Trojaner weißer Bildschirm, aber abgesicherter Modus funktioniert auch nicht mehr, Rescue-CDs können nichts finden
    Plagegeister aller Art und deren Bekämpfung - 05.08.2013 (30)
  7. Bundestrojaner, Abges. Modus mit Eingabeaufforderung funktioniert nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 30.06.2013 (25)
  8. GVU-Virus, Rechner als Standardnutzer nicht mehr nutzbar, Rechner funktioniert nur als Admin oder im Abgesicherten Modus als Standardnutzer
    Log-Analyse und Auswertung - 22.01.2013 (31)
  9. Polizei Trojaner? Abgesicherter Modus funktioniert auch nicht mehr.
    Plagegeister aller Art und deren Bekämpfung - 05.10.2012 (5)
  10. BKA-Virus - abgesicherter Modus funktioniert nicht; Wiederherstellungspunkt nicht vorhanden
    Plagegeister aller Art und deren Bekämpfung - 25.07.2012 (9)
  11. BundesPOLIZEI-Trojaner - RescueCD findet ihn nicht, Abgesicherter Modus funktioniert nicht...
    Plagegeister aller Art und deren Bekämpfung - 28.12.2011 (8)
  12. Bundespolizeitrojaner! Abgesicherter Modus geht auch nicht mehr!!!
    Plagegeister aller Art und deren Bekämpfung - 25.08.2011 (1)
  13. Administrativer Modus funktioniert nicht mehr
    Log-Analyse und Auswertung - 16.10.2010 (3)
  14. Computer funktioniert nur mehr im abgesicherten Modus
    Log-Analyse und Auswertung - 30.08.2010 (38)
  15. Abgesicherter Modus funktioniert nicht mehr
    Alles rund um Windows - 16.03.2009 (2)
  16. Abgesicherter Modus funktioniert nicht mehr
    Alles rund um Windows - 13.01.2008 (3)
  17. F8 Abgesicherter Modus funktioniert nicht!
    Alles rund um Windows - 08.11.2006 (1)

Zum Thema Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. - Servus Leute, ich hab mir heute den Bundespolizei-Trojaner eingefangen. Ich wollte ihn mit Hilfe des Abgesicherten Modus selbst löschen, aber der funktioniert auch nicht mehr. Hab mir schon FRST64.exe runtergeladen - Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr....
Archiv
Du betrachtest: Bundespolizeitrojaner löschen- Abergesicherter Modus funktioniert nicht mehr. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.