Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Vodavone Blockierter Prozess

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 30.05.2014, 04:42   #1
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Habe eure Seite schon einmal besucht und und mir von einem Thema das "der schrauber" bearbeitet hatte helfen lassen. Nahezu identisch mit den Thema was "Tilliboon" gepostet hatte.(von der Hilfestellung her) http://www.trojaner-board.de/154087-...weet-page.html
Jetz ist es aber so dass mein Bitdefender "manchmal" in seiner Arbeit einen Prozess von Vodavone blockiert aber keine Dateien in die Quarantäne gesteckt werden. Hin und wieder wird auch nichts Blockiert und Bitdefender gaukelt mir vor dass alles in Butter wäre was ich allerdings nicht so das Gefühl habe. Also was tun?

FRST Scann:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-05-2014
Ran by Operator (administrator) on OPERATOR-PC on 30-05-2014 06:07:20
Running from C:\Users\Operator\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(TeamViewer) C:\Program Files\airbackup\airbackupSC.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TeamViewer) C:\Program Files\airbackup\airbackupFP.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Flux Software LLC) C:\Users\Operator\AppData\Local\FluxSoftware\Flux\flux.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
() C:\Users\Operator\Downloads\Gmer-19357.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
() C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\21.0.1432.67\opera.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1225920 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [539688 2011-05-12] (ROCCAT GmbH)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [f.lux] => C:\Users\Operator\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [MKLOL] => C:\Program Files (x86)\MKJogo\MKLOL\MK.exe [1277128 2014-04-27] (MK)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [airbackup] => C:\Program Files\airbackup\airbackup.exe [16331056 2014-03-14] (TeamViewer)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x838F3E984A60CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Docs) - C:\Users\Operator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-25]

==================== Services (Whitelisted) =================

R2 airbackup Service Controller; C:\Program Files\airbackup\airbackupSC.exe [1213232 2014-03-14] (TeamViewer)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S2 Util webget; "C:\Program Files (x86)\webget\bin\utilwebget.exe" [X]

==================== Drivers (Whitelisted) ====================

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2014-04-28] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
U3 ugtdakob; \??\C:\Users\Operator\AppData\Local\Temp\ugtdakob.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-30 05:59 - 2014-05-30 05:59 - 00380416 _____ () C:\Users\Operator\Downloads\Gmer-19357.exe
2014-05-30 05:55 - 2014-05-30 05:55 - 00022918 _____ () C:\Users\Operator\Downloads\Addition.txt
2014-05-30 05:54 - 2014-05-30 06:07 - 00011686 _____ () C:\Users\Operator\Downloads\FRST.txt
2014-05-30 05:54 - 2014-05-30 06:07 - 00000000 ____D () C:\FRST
2014-05-30 05:53 - 2014-05-30 05:53 - 02066944 _____ (Farbar) C:\Users\Operator\Downloads\FRST64.exe
2014-05-30 05:52 - 2014-05-30 05:52 - 00000478 _____ () C:\Users\Operator\Downloads\defogger_disable.log
2014-05-30 05:52 - 2014-05-30 05:52 - 00000000 _____ () C:\Users\Operator\defogger_reenable
2014-05-30 05:51 - 2014-05-30 05:51 - 00050477 _____ () C:\Users\Operator\Downloads\Defogger.exe
2014-05-29 23:35 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-29 10:00 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-29 10:00 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-29 10:00 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-05-29 10:00 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-05-29 09:59 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-05-29 09:59 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-05-29 09:42 - 2014-05-29 09:42 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-29 09:12 - 2014-05-29 09:13 - 00000168 _____ () C:\Users\Operator\Documents\Backup inf.txt
2014-05-29 09:08 - 2014-05-30 05:13 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-05-29 09:07 - 2014-05-29 09:16 - 00000000 ____D () C:\Program Files\airbackup
2014-05-29 09:07 - 2014-05-29 09:07 - 00001881 _____ () C:\Users\Public\Desktop\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00001853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\TeamViewer
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer
2014-05-29 09:03 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-05-29 09:03 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-05-29 09:03 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-05-29 09:03 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-05-29 08:58 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-05-29 08:58 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-29 08:58 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-29 08:58 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-05-29 08:58 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-05-29 08:58 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-05-29 08:58 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-29 08:58 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-29 08:58 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-29 08:58 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-05-29 08:58 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-05-29 08:58 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-05-29 08:58 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-05-29 08:58 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-05-29 08:58 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-29 08:58 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-05-29 08:57 - 2014-05-29 08:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-05-29 08:53 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-05-29 08:53 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-05-29 08:53 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-29 08:53 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-29 08:53 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-05-29 08:53 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-05-29 08:53 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-05-29 08:51 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-05-29 08:51 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-05-29 08:51 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-05-29 08:51 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-05-29 08:41 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-05-29 08:41 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-05-29 08:41 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-05-29 08:41 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-05-29 08:41 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-05-29 08:41 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-05-29 08:41 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-05-29 08:41 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-05-29 08:41 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-05-29 08:40 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-29 08:40 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-29 08:40 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-05-29 08:40 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-05-29 08:40 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-05-29 08:40 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-05-29 08:40 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-05-29 08:40 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-05-29 08:40 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-05-29 08:40 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-05-29 08:40 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-05-29 08:40 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-29 08:40 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-05-29 08:40 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-05-29 08:40 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-05-29 08:40 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-05-29 08:40 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-05-29 08:40 - 2013-11-23 19:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-29 08:40 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-29 08:40 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-05-29 08:40 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-05-29 08:40 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-05-29 08:40 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-05-29 08:40 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-05-29 08:40 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-05-29 08:40 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-29 08:40 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-05-29 08:40 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-05-29 08:40 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-05-29 08:40 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-05-29 08:40 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-05-29 08:40 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-05-29 08:40 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-05-29 08:40 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-05-29 08:40 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-05-29 08:40 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-05-29 08:40 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-05-29 08:40 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-05-29 08:40 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-05-29 08:40 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-05-29 08:40 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-05-29 08:40 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-05-29 08:40 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-05-29 08:40 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-05-29 08:40 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-05-29 08:40 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-05-29 08:40 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-05-29 08:40 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-05-29 08:40 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-05-29 08:40 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-05-29 08:40 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-05-29 08:40 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-05-29 08:40 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-05-29 08:40 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-05-29 08:40 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-05-29 08:40 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-05-29 08:40 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-05-29 08:40 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-05-29 08:40 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-05-29 08:40 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-05-29 08:40 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-05-29 08:40 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-05-29 08:40 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-05-29 08:40 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-05-29 08:39 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-05-29 08:39 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-05-29 08:39 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-05-29 08:39 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-05-29 08:39 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-05-29 08:39 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-05-29 08:39 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-05-29 08:39 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-05-29 08:39 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-05-29 08:39 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-05-29 08:39 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-05-29 08:39 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-05-29 08:39 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-05-29 08:39 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-05-29 08:38 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-05-29 08:32 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-29 08:32 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-05-29 08:23 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-29 08:23 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-29 08:23 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-29 08:23 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-29 08:23 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-29 08:23 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-29 08:21 - 2014-05-29 08:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-29 08:21 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-28 06:46 - 2014-05-30 05:15 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-28 06:46 - 2014-05-28 06:46 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-28 06:46 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-28 06:46 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-28 06:43 - 2014-05-28 06:43 - 00001464 _____ () C:\Users\Operator\Desktop\PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Users\Operator\AppData\Local\Secunia PSI
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-28 06:30 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-28 06:30 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-28 06:30 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-28 06:30 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-28 06:30 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-28 06:30 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-28 06:30 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-28 06:30 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-28 06:30 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-28 06:30 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-28 06:30 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-28 06:30 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-28 06:30 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-28 06:30 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-28 06:30 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-28 06:30 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-05-28 06:30 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-28 06:30 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-05-28 06:30 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-28 06:23 - 2014-05-28 06:24 - 00001425 _____ () C:\DelFix.txt
2014-05-28 05:28 - 2014-05-28 05:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-28 05:19 - 2014-05-28 06:23 - 00000000 ____D () C:\Windows\ERUNT
2014-05-28 05:06 - 2014-05-28 05:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-28 04:58 - 2014-05-28 06:30 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieUserList
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieSiteList
2014-05-28 04:30 - 2014-05-28 04:30 - 00000000 _____ () C:\autoexec.bat
2014-05-28 04:29 - 2014-05-28 04:38 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-05-28 04:29 - 2014-05-28 04:29 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-28 04:26 - 2014-05-28 04:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 04:25 - 2014-05-28 04:25 - 00005420 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 04:25 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-28 04:25 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-28 04:25 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-28 04:25 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-28 04:15 - 2014-05-28 04:15 - 00002037 _____ () C:\Users\Operator\Desktop\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00002001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001924 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-05-28 04:14 - 2014-05-28 07:11 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-05-28 04:14 - 2014-05-28 04:14 - 00000000 ____D () C:\ProgramData\Sun
2014-05-28 04:13 - 2014-05-28 04:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-27 17:23 - 2014-05-27 17:25 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-05-27 17:22 - 2014-05-27 17:22 - 00000000 ____D () C:\Users\Operator\AppData\Local\Bluestacks
2014-05-27 17:18 - 2014-05-27 17:18 - 00003156 _____ () C:\Windows\System32\Tasks\{B5E54B77-92C7-4761-8E60-26DEE69966BC}
2014-05-27 17:18 - 2014-05-27 17:18 - 00001827 _____ () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00001803 _____ () C:\Users\Operator\Desktop\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00000000 ____D () C:\Program Files (x86)\Tunatic
2014-05-27 16:54 - 2014-05-27 16:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-27 06:58 - 2014-05-20 01:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-27 06:55 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-27 06:55 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-27 06:53 - 2014-05-27 06:53 - 00000000 ____D () C:\NVIDIA
2014-05-27 06:44 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-05-27 06:44 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-05-21 03:45 - 2014-05-21 16:35 - 00000000 ____D () C:\Users\Operator\Desktop\Anno 2070 Produktion
2014-05-20 21:21 - 2014-05-29 09:43 - 00089526 _____ () C:\Windows\PFRO.log
2014-05-20 03:03 - 2014-05-20 03:03 - 00000000 ____D () C:\Users\Operator\AppData\Local\PunkBuster
2014-05-19 21:06 - 2014-05-19 21:06 - 00001849 _____ () C:\Users\Operator\Desktop\Anno 2070.lnk
2014-05-19 16:18 - 2014-05-19 16:18 - 00000000 ____D () C:\Users\Operator\Documents\ANNO 2070
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Ubisoft
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\ProgramData\Solidshield
2014-05-17 23:38 - 2014-05-17 23:39 - 00000000 ____D () C:\Users\Operator\AppData\Local\Ubisoft Game Launcher
2014-05-17 23:38 - 2014-05-17 23:38 - 00001201 _____ () C:\Users\Operator\Desktop\Uplay.lnk
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-16 23:57 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\AppData\Local\SKIDROW
2014-05-16 22:15 - 2014-05-16 22:15 - 00000959 _____ () C:\Users\Operator\Desktop\Deadpool.lnk
2014-05-16 20:15 - 2014-05-16 20:15 - 00000000 ____D () C:\Users\Operator\Documents\BioWare
2014-05-16 19:43 - 2014-05-16 19:43 - 00001342 _____ () C:\Users\Public\Desktop\Dragon Age II.lnk
2014-05-16 14:29 - 2014-05-16 14:37 - 00000000 ____D () C:\Users\Operator\AppData\Local\Darksiders2
2014-05-16 14:29 - 2014-05-16 14:29 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-05-16 01:46 - 2014-05-16 01:46 - 00000221 _____ () C:\Users\Operator\Desktop\Darksiders II.url
2014-05-15 15:39 - 2014-05-15 15:39 - 00000235 _____ () C:\Users\Operator\AppData\Roaming\3818398.bat
2014-05-15 11:27 - 2014-05-15 11:27 - 00000000 ____D () C:\Users\Operator\Documents\MercurySteam
2014-05-15 11:26 - 2014-05-15 11:26 - 00001728 _____ () C:\Users\Operator\Desktop\CLOS2.lnk
2014-05-15 11:18 - 2014-05-15 11:22 - 00000000 ____D () C:\Program Files (x86)\Castlevania Lords of Shadow 2
2014-05-14 20:50 - 2014-05-14 20:50 - 00000000 ____D () C:\Users\Operator\AppData\Local\Two Worlds II
2014-05-14 19:34 - 2014-05-14 19:34 - 00000220 _____ () C:\Users\Operator\Desktop\Two Worlds II.url
2014-05-14 13:43 - 2014-05-14 13:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-14 13:43 - 2014-05-14 13:43 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 13:43 - 2014-05-14 13:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-13 22:09 - 2014-05-13 22:09 - 00000000 ____D () C:\Users\Operator\AppData\Local\BigHugeEngine
2014-05-13 20:08 - 2014-05-13 20:08 - 00000222 _____ () C:\Users\Operator\Desktop\Kingdoms of Amalur Reckoning.url
2014-05-13 20:01 - 2014-05-26 16:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-13 20:01 - 2014-05-13 20:01 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-13 20:01 - 2014-05-13 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-12 19:03 - 2014-05-12 19:03 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-05-12 19:02 - 2014-05-19 15:24 - 00088135 _____ () C:\Windows\DirectX.log
2014-05-12 13:25 - 2014-05-12 13:25 - 00001620 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-05-12 13:25 - 2014-05-12 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-05-09 19:29 - 2014-05-09 19:29 - 00000000 ____D () C:\Users\Operator\Documents\My Cheat Tables
2014-05-07 14:19 - 2014-05-07 16:31 - 00001059 _____ () C:\Users\Operator\Desktop\Rome 2.lnk
2014-05-07 07:38 - 2014-05-07 07:40 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\DarkSoulsII
2014-05-07 07:38 - 2014-05-07 07:38 - 00001169 _____ () C:\Users\Operator\Desktop\Dark Souls 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000607 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\Documents\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Guild Wars 2
2014-05-06 21:02 - 2014-05-30 05:12 - 00009986 _____ () C:\Windows\setupact.log
2014-05-06 21:02 - 2014-05-06 21:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-06 06:56 - 2014-05-06 06:56 - 00000884 _____ () C:\Users\Operator\Desktop\Devil May Cry 5.lnk
2014-05-06 06:43 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\Documents\My Games
2014-05-06 06:43 - 2014-05-06 06:43 - 00000000 ____D () C:\ProgramData\Steam
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-05-05 19:13 - 2014-05-16 22:34 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\BitComet
2014-05-05 19:13 - 2014-05-05 19:13 - 00000000 ____D () C:\Program Files\BitComet
2014-05-04 19:46 - 2014-05-05 05:02 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Command and Conquer 3 Kanes Wrath
2014-05-04 18:36 - 2014-05-04 18:36 - 00000000 ____D () C:\Users\Operator\.appwork
2014-05-04 18:25 - 2014-05-04 18:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-05-04 18:24 - 2014-05-04 18:37 - 00000000 ____D () C:\Users\Operator\AppData\Local\JDownloader v2.0
2014-05-04 18:20 - 2014-05-06 18:34 - 00000106 _____ () C:\Users\Operator\Documents\OriginAccount.txt
2014-05-01 09:39 - 2014-05-01 09:39 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\TeamViewer

==================== One Month Modified Files and Folders =======

2014-05-30 06:07 - 2014-05-30 05:54 - 00011686 _____ () C:\Users\Operator\Downloads\FRST.txt
2014-05-30 06:07 - 2014-05-30 05:54 - 00000000 ____D () C:\FRST
2014-05-30 06:07 - 2014-04-25 07:40 - 00000000 ____D () C:\Users\Operator\AppData\Local\Temp
2014-05-30 05:59 - 2014-05-30 05:59 - 00380416 _____ () C:\Users\Operator\Downloads\Gmer-19357.exe
2014-05-30 05:55 - 2014-05-30 05:55 - 00022918 _____ () C:\Users\Operator\Downloads\Addition.txt
2014-05-30 05:53 - 2014-05-30 05:53 - 02066944 _____ (Farbar) C:\Users\Operator\Downloads\FRST64.exe
2014-05-30 05:52 - 2014-05-30 05:52 - 00000478 _____ () C:\Users\Operator\Downloads\defogger_disable.log
2014-05-30 05:52 - 2014-05-30 05:52 - 00000000 _____ () C:\Users\Operator\defogger_reenable
2014-05-30 05:52 - 2014-04-25 07:40 - 00000000 ____D () C:\Users\Operator
2014-05-30 05:51 - 2014-05-30 05:51 - 00050477 _____ () C:\Users\Operator\Downloads\Defogger.exe
2014-05-30 05:18 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-30 05:18 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-30 05:16 - 2014-04-25 07:39 - 01291173 _____ () C:\Windows\WindowsUpdate.log
2014-05-30 05:15 - 2014-05-28 06:46 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-30 05:14 - 2014-04-25 08:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-30 05:13 - 2014-05-29 09:08 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-05-30 05:12 - 2014-05-06 21:02 - 00009986 _____ () C:\Windows\setupact.log
2014-05-30 05:12 - 2014-04-25 08:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-30 05:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-29 23:33 - 2014-04-25 08:03 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-29 23:33 - 2011-04-12 09:43 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-05-29 23:33 - 2011-04-12 09:43 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-05-29 23:33 - 2009-07-14 07:13 - 01593956 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-29 23:29 - 2014-04-25 09:12 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\TS3Client
2014-05-29 23:28 - 2014-04-26 00:10 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Skype
2014-05-29 19:53 - 2014-04-25 11:57 - 00058016 _____ () C:\Users\Operator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-29 09:46 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-05-29 09:45 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-29 09:43 - 2014-05-20 21:21 - 00089526 _____ () C:\Windows\PFRO.log
2014-05-29 09:43 - 2009-07-14 06:45 - 00276968 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-29 09:42 - 2014-05-29 09:42 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-29 09:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-29 09:16 - 2014-05-29 09:07 - 00000000 ____D () C:\Program Files\airbackup
2014-05-29 09:13 - 2014-05-29 09:12 - 00000168 _____ () C:\Users\Operator\Documents\Backup inf.txt
2014-05-29 09:07 - 2014-05-29 09:07 - 00001881 _____ () C:\Users\Public\Desktop\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00001853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\TeamViewer
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer
2014-05-29 08:57 - 2014-05-29 08:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-05-29 08:27 - 2014-04-25 07:40 - 00000000 ___RD () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-29 08:27 - 2014-04-25 07:40 - 00000000 ___RD () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-29 08:22 - 2014-05-29 08:21 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-28 22:32 - 2014-04-25 08:22 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-28 07:14 - 2014-04-25 12:14 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\vlc
2014-05-28 07:11 - 2014-05-28 04:14 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-05-28 06:46 - 2014-05-28 06:46 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-28 06:43 - 2014-05-28 06:43 - 00001464 _____ () C:\Users\Operator\Desktop\PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Users\Operator\AppData\Local\Secunia PSI
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-28 06:31 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-28 06:30 - 2014-05-28 04:58 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 06:24 - 2014-05-28 06:23 - 00001425 _____ () C:\DelFix.txt
2014-05-28 06:23 - 2014-05-28 05:19 - 00000000 ____D () C:\Windows\ERUNT
2014-05-28 05:28 - 2014-05-28 05:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-28 05:06 - 2014-05-28 05:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieUserList
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieSiteList
2014-05-28 04:38 - 2014-05-28 04:29 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-05-28 04:30 - 2014-05-28 04:30 - 00000000 _____ () C:\autoexec.bat
2014-05-28 04:29 - 2014-05-28 04:29 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-28 04:26 - 2014-05-28 04:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 04:25 - 2014-05-28 04:25 - 00005420 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 04:25 - 2014-05-28 04:13 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-28 04:15 - 2014-05-28 04:15 - 00002037 _____ () C:\Users\Operator\Desktop\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00002001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001924 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-05-28 04:14 - 2014-05-28 04:14 - 00000000 ____D () C:\ProgramData\Sun
2014-05-28 03:44 - 2014-04-25 11:57 - 00000000 ____D () C:\Program Files (x86)\osu!
2014-05-28 03:44 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-27 17:25 - 2014-05-27 17:23 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-05-27 17:22 - 2014-05-27 17:22 - 00000000 ____D () C:\Users\Operator\AppData\Local\Bluestacks
2014-05-27 17:18 - 2014-05-27 17:18 - 00003156 _____ () C:\Windows\System32\Tasks\{B5E54B77-92C7-4761-8E60-26DEE69966BC}
2014-05-27 17:18 - 2014-05-27 17:18 - 00001827 _____ () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00001803 _____ () C:\Users\Operator\Desktop\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00000000 ____D () C:\Program Files (x86)\Tunatic
2014-05-27 16:54 - 2014-05-27 16:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-27 14:18 - 2014-04-26 20:10 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\.minecraft
2014-05-27 12:04 - 2014-04-26 00:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-27 12:04 - 2014-04-26 00:10 - 00000000 ____D () C:\ProgramData\Skype
2014-05-27 06:58 - 2014-04-25 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-27 06:58 - 2014-04-25 08:04 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-27 06:53 - 2014-05-27 06:53 - 00000000 ____D () C:\NVIDIA
2014-05-27 06:45 - 2014-04-25 08:08 - 00000000 ____D () C:\Users\Operator\AppData\Local\NVIDIA Corporation
2014-05-27 06:45 - 2014-04-25 08:04 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-05-26 16:49 - 2014-05-13 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-26 14:07 - 2014-04-25 08:19 - 00000000 ____D () C:\Users\Operator\AppData\Local\PMB Files
2014-05-21 16:35 - 2014-05-21 03:45 - 00000000 ____D () C:\Users\Operator\Desktop\Anno 2070 Produktion
2014-05-20 04:44 - 2014-05-27 06:55 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-27 06:55 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-20 04:44 - 2014-04-25 08:05 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-20 04:44 - 2014-04-25 08:05 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-05-20 03:25 - 2014-04-25 08:05 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2014-04-25 08:05 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-05-20 03:13 - 2014-04-25 11:38 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-05-20 03:03 - 2014-05-20 03:03 - 00000000 ____D () C:\Users\Operator\AppData\Local\PunkBuster
2014-05-20 03:03 - 2014-04-25 11:38 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-05-20 02:40 - 2014-04-25 08:15 - 00000000 ____D () C:\ProgramData\Origin
2014-05-20 02:40 - 2014-04-25 08:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-05-20 01:10 - 2014-05-27 06:58 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-19 21:06 - 2014-05-19 21:06 - 00001849 _____ () C:\Users\Operator\Desktop\Anno 2070.lnk
2014-05-19 16:18 - 2014-05-19 16:18 - 00000000 ____D () C:\Users\Operator\Documents\ANNO 2070
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Ubisoft
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\ProgramData\Solidshield
2014-05-19 15:24 - 2014-05-12 19:02 - 00088135 _____ () C:\Windows\DirectX.log
2014-05-19 15:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-17 23:39 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Local\Ubisoft Game Launcher
2014-05-17 23:38 - 2014-05-17 23:38 - 00001201 _____ () C:\Users\Operator\Desktop\Uplay.lnk
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-17 23:16 - 2014-04-25 08:06 - 00000000 ____D () C:\Users\Operator\AppData\Local\NVIDIA
2014-05-16 23:57 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\AppData\Local\SKIDROW
2014-05-16 23:57 - 2014-05-06 06:43 - 00000000 ____D () C:\Users\Operator\Documents\My Games
2014-05-16 22:34 - 2014-05-05 19:13 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\BitComet
2014-05-16 22:15 - 2014-05-16 22:15 - 00000959 _____ () C:\Users\Operator\Desktop\Deadpool.lnk
2014-05-16 20:15 - 2014-05-16 20:15 - 00000000 ____D () C:\Users\Operator\Documents\BioWare
2014-05-16 19:43 - 2014-05-16 19:43 - 00001342 _____ () C:\Users\Public\Desktop\Dragon Age II.lnk
2014-05-16 14:37 - 2014-05-16 14:29 - 00000000 ____D () C:\Users\Operator\AppData\Local\Darksiders2
2014-05-16 14:29 - 2014-05-16 14:29 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-05-16 14:16 - 2014-04-25 08:19 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-16 01:46 - 2014-05-16 01:46 - 00000221 _____ () C:\Users\Operator\Desktop\Darksiders II.url
2014-05-15 15:39 - 2014-05-15 15:39 - 00000235 _____ () C:\Users\Operator\AppData\Roaming\3818398.bat
2014-05-15 11:27 - 2014-05-15 11:27 - 00000000 ____D () C:\Users\Operator\Documents\MercurySteam
2014-05-15 11:26 - 2014-05-15 11:26 - 00001728 _____ () C:\Users\Operator\Desktop\CLOS2.lnk
2014-05-15 11:22 - 2014-05-15 11:18 - 00000000 ____D () C:\Program Files (x86)\Castlevania Lords of Shadow 2
2014-05-15 01:49 - 2014-04-25 08:05 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-05-14 20:50 - 2014-05-14 20:50 - 00000000 ____D () C:\Users\Operator\AppData\Local\Two Worlds II
2014-05-14 20:50 - 2014-04-26 20:16 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\NVIDIA
2014-05-14 19:34 - 2014-05-14 19:34 - 00000220 _____ () C:\Users\Operator\Desktop\Two Worlds II.url
2014-05-14 13:44 - 2014-05-14 13:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-14 13:44 - 2014-04-25 08:17 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Adobe
2014-05-14 13:44 - 2014-04-25 08:16 - 00000000 ____D () C:\Users\Operator\AppData\Local\Adobe
2014-05-14 13:43 - 2014-05-14 13:43 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 13:43 - 2014-05-14 13:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-14 13:29 - 2014-04-25 07:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-05-13 23:14 - 2014-04-25 08:17 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 23:14 - 2014-04-25 08:17 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 23:14 - 2014-04-25 08:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 22:09 - 2014-05-13 22:09 - 00000000 ____D () C:\Users\Operator\AppData\Local\BigHugeEngine
2014-05-13 20:08 - 2014-05-13 20:08 - 00000222 _____ () C:\Users\Operator\Desktop\Kingdoms of Amalur Reckoning.url
2014-05-13 20:01 - 2014-05-13 20:01 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-13 20:01 - 2014-05-13 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-12 19:03 - 2014-05-12 19:03 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-05-12 19:03 - 2014-04-25 11:38 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-12 19:02 - 2014-04-25 11:38 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-12 13:25 - 2014-05-12 13:25 - 00001620 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-05-12 13:25 - 2014-05-12 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-05-12 07:26 - 2014-05-28 06:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-28 06:46 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-28 06:46 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 23:30 - 2014-04-28 01:37 - 00001102 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-11 23:30 - 2014-04-28 01:37 - 00001090 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-09 19:29 - 2014-05-09 19:29 - 00000000 ____D () C:\Users\Operator\Documents\My Cheat Tables
2014-05-09 08:14 - 2014-05-29 08:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-29 08:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-07 16:31 - 2014-05-07 14:19 - 00001059 _____ () C:\Users\Operator\Desktop\Rome 2.lnk
2014-05-07 07:40 - 2014-05-07 07:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\DarkSoulsII
2014-05-07 07:38 - 2014-05-07 07:38 - 00001169 _____ () C:\Users\Operator\Desktop\Dark Souls 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000607 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\Documents\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Guild Wars 2
2014-05-06 21:02 - 2014-05-06 21:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-06 19:46 - 2014-04-27 03:28 - 00000000 ____D () C:\Users\Operator\AppData\Local\Battle.net
2014-05-06 18:34 - 2014-05-04 18:20 - 00000106 _____ () C:\Users\Operator\Documents\OriginAccount.txt
2014-05-06 06:56 - 2014-05-06 06:56 - 00000884 _____ () C:\Users\Operator\Desktop\Devil May Cry 5.lnk
2014-05-06 06:43 - 2014-05-06 06:43 - 00000000 ____D () C:\ProgramData\Steam
2014-05-06 06:40 - 2014-05-29 08:23 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-29 08:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-29 08:23 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-29 08:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-29 08:23 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-29 08:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-05-05 19:13 - 2014-05-05 19:13 - 00000000 ____D () C:\Program Files\BitComet
2014-05-05 05:02 - 2014-05-04 19:46 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Command and Conquer 3 Kanes Wrath
2014-05-04 18:37 - 2014-05-04 18:24 - 00000000 ____D () C:\Users\Operator\AppData\Local\JDownloader v2.0
2014-05-04 18:36 - 2014-05-04 18:36 - 00000000 ____D () C:\Users\Operator\.appwork
2014-05-04 18:25 - 2014-05-04 18:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-05-04 18:21 - 2014-04-25 08:17 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Origin
2014-05-04 17:12 - 2014-05-29 08:21 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-04 09:41 - 2014-04-25 12:14 - 00000000 ___DC () C:\Users\Operator\AppData\Local\MigWiz
2014-05-04 09:41 - 2014-04-25 08:20 - 00000000 ____D () C:\Windows\Panther
2014-05-02 06:12 - 2014-04-27 03:27 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-05-01 09:39 - 2014-05-01 09:39 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\TeamViewer
2014-04-30 20:29 - 2014-04-25 08:06 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-04-30 20:29 - 2014-04-25 08:06 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

Some content of TEMP:
====================
C:\Users\Operator\AppData\Local\Temp\ERUNT.exe
C:\Users\Operator\AppData\Local\Temp\Gw2.exe
C:\Users\Operator\AppData\Local\Temp\JDSetup130457167729983404.exe
C:\Users\Operator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Operator\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Operator\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Operator\AppData\Local\Temp\nvStInst.exe
C:\Users\Operator\AppData\Local\Temp\SHSetup.exe
C:\Users\Operator\AppData\Local\Temp\sonarinst.exe
C:\Users\Operator\AppData\Local\Temp\Upd8CE3.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 06:19

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Addition
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-05-2014
Ran by Operator at 2014-05-30 05:55:12
Running from C:\Users\Operator\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installed Programs ======================

Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
airbackup (HKLM\...\airbackup) (Version: 2014 - TeamViewer)
AMD USB Filter Driver (x32 Version: 1.0.15.94 - Advanced Micro Devices, Inc.) Hidden
Anno 2070 (HKLM-x32\...\Steam App 48240) (Version:  - BlueByte)
ATI Catalyst Install Manager (HKLM\...\{64555D45-1F57-BF1D-1A5E-BFD4C8C0ADB4}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.2.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitComet 1.37 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.37 - CometNetwork)
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
Castlevania: Lords of Shadow 2 (HKLM-x32\...\Q2FzdGxldmFuaWFMb3Jkc29mU2hhZG93Mg==_is1) (Version: 1 - )
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Dark Souls 2 (HKLM-x32\...\RGFya1NvdWxzMg==_is1) (Version: 1 - )
Darksiders II (HKLM-x32\...\Steam App 50650) (Version:  - Vigil Games)
DMC Devi May Cry (c) Capcom version 1 (HKLM-x32\...\DMC Devi May Cry (c) Capcom_is1) (Version: 1 - )
Dragon Age™ II (HKLM-x32\...\{4D565319-8B91-41CB-961C-0DDC86101AC5}) (Version: 1.04.8524.0 - Electronic Arts)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
f.lux (HKCU\...\Flux) (Version:  - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software (Version: 8.40.83 - Logitech Inc.) Hidden
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
MKLOL (HKCU\...\MKLOL) (Version:  - )
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1168 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Opera Stable 21.0.1432.67 (HKLM-x32\...\Opera 21.0.1432.67) (Version: 21.0.1432.67 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.1.3.32950 - Grinding Gear Games)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6278 - Realtek Semiconductor Corp.)
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version:  - Roccat GmbH)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.28223 - TeamViewer)
Theme Resource Changer X64 v1.0 (HKLM\...\Theme Resource Changer X64 v1.0) (Version:  - Bad Ass Apps)
Total War ROME II (HKLM-x32\...\VG90YWxXYXJST01FSUk=_is1) (Version: 1 - )
Tunatic (HKLM-x32\...\Tunatic) (Version:  - )
Two Worlds II (HKLM-x32\...\Steam App 7520) (Version:  - Reality Pump Studios)
Uplay (HKLM-x32\...\Uplay) (Version: 4.5 - Ubisoft)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

28-05-2014 04:24:13 Ende der Bereinigung
29-05-2014 06:17:42 Windows Update
29-05-2014 06:41:38 Windows Update
29-05-2014 21:29:50 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {204FFD45-540D-4741-9265-992850E72F79} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {7907F859-BF8F-4D0B-9EFB-00AA44A2B887} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {912E4D21-1015-4C99-88ED-69A0EB1B1D24} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-04-25 12:02 - 2013-03-19 12:07 - 00696632 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2014-04-25 12:02 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2014-04-25 11:38 - 2014-05-12 19:02 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-04-25 08:05 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-14 13:29 - 2014-05-12 07:51 - 01397880 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\opera_crashreporter.exe
2014-04-25 08:09 - 2010-11-04 11:48 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll
2014-05-14 13:29 - 2014-05-12 07:51 - 00877688 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\libglesv2.dll
2014-05-14 13:29 - 2014-05-12 07:51 - 00135800 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\libegl.dll
2014-05-14 13:29 - 2014-05-12 07:51 - 00957048 _____ () C:\Program Files (x86)\Opera\21.0.1432.67\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Operator\Desktop\Minecraft.exe:BDU
AlternateDataStreams: C:\Users\Operator\Downloads\Defogger.exe:BDU
AlternateDataStreams: C:\Users\Operator\Downloads\FRST64.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/30/2014 05:13:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 11:29:38 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/29/2014 09:47:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: nvtray.exe, Version: 7.17.13.3788, Zeitstempel: 0x537aa54d
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004e4e4
ID des fehlerhaften Prozesses: 0x9ec
Startzeit der fehlerhaften Anwendung: 0xnvtray.exe0
Pfad der fehlerhaften Anwendung: nvtray.exe1
Pfad des fehlerhaften Moduls: nvtray.exe2
Berichtskennung: nvtray.exe3

Error: (05/29/2014 09:45:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 09:42:18 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/29/2014 09:08:29 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Product: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.ATL,version="9.0.30729.6161",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, component: {74C57B6B-FF6E-3825-BED2-78E14E3E0E3C}

Error: (05/29/2014 09:08:03 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable (x64) -- Error 1935.Während der Installation der Assembly "Microsoft.VC80.ATL,type="win32",version="8.0.50727.6195",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64"" ist ein Fehler aufgetreten. Weitere Informationen finden Sie unter Hilfe und Support. HRESULT: 0x80070BC9, Assemblyschnittstelle: IAssemblyCacheItem, Funktion: Commit, Komponente: {837BF1EB-D770-94EB-A01F-C8B3B9A1E18E}

Error: (05/29/2014 09:07:12 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable (x64) -- Error 1935.Während der Installation der Assembly "Microsoft.VC80.ATL,type="win32",version="8.0.50727.42",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64"" ist ein Fehler aufgetreten. Weitere Informationen finden Sie unter Hilfe und Support. HRESULT: 0x80070BC9, Assemblyschnittstelle: IAssemblyCacheItem, Funktion: Commit, Komponente: {837BF1EB-D770-94EB-A01F-C8B3B9A1E18E}

Error: (05/29/2014 08:28:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 08:15:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (05/30/2014 05:12:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util webget" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/29/2014 09:44:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util webget" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/29/2014 08:49:49 AM) (Source: Disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (05/29/2014 08:49:47 AM) (Source: Disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (05/29/2014 08:27:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util webget" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/29/2014 08:14:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util webget" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/28/2014 10:38:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util webget" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (05/28/2014 07:37:07 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (05/30/2014 05:13:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 11:29:38 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/29/2014 09:47:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: nvtray.exe7.17.13.3788537aa54dntdll.dll6.1.7601.18247521eaf24c0000005000000000004e4e49ec01cf7b1211e1d8d1C:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\SYSTEM32\ntdll.dll86bb0c30-e705-11e3-8e04-6c626dd9c7e3

Error: (05/29/2014 09:45:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 09:42:18 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/29/2014 09:08:29 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Product: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.ATL,version="9.0.30729.6161",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070BC9. assembly interface: IAssemblyCacheItem, function: Commit, component: {74C57B6B-FF6E-3825-BED2-78E14E3E0E3C}(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2014 09:08:03 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable (x64) -- Error 1935.Während der Installation der Assembly "Microsoft.VC80.ATL,type="win32",version="8.0.50727.6195",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64"" ist ein Fehler aufgetreten. Weitere Informationen finden Sie unter Hilfe und Support. HRESULT: 0x80070BC9, Assemblyschnittstelle: IAssemblyCacheItem, Funktion: Commit, Komponente: {837BF1EB-D770-94EB-A01F-C8B3B9A1E18E}(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2014 09:07:12 AM) (Source: MsiInstaller) (EventID: 11935) (User: Operator-PC)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable (x64) -- Error 1935.Während der Installation der Assembly "Microsoft.VC80.ATL,type="win32",version="8.0.50727.42",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="amd64"" ist ein Fehler aufgetreten. Weitere Informationen finden Sie unter Hilfe und Support. HRESULT: 0x80070BC9, Assemblyschnittstelle: IAssemblyCacheItem, Funktion: Commit, Komponente: {837BF1EB-D770-94EB-A01F-C8B3B9A1E18E}(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2014 08:28:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 08:15:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info =========================== 

Percentage of memory in use: 26%
Total physical RAM: 8191.18 MB
Available physical RAM: 6013.59 MB
Total Pagefile: 16380.54 MB
Available Pagefile: 13941.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive a: (Volume) (Fixed) (Total:698.54 GB) (Free:389.24 GB) NTFS
Drive c: () (Fixed) (Total:465.76 GB) (Free:366.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 4EC774CC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 618C1D64)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         

Geändert von Drahnier016 (30.05.2014 um 05:29 Uhr)

Alt 30.05.2014, 08:41   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



hi,

was genau wird denn blockiert? logfile oder Screenshot von Bitdefender?
__________________

__________________

Alt 30.05.2014, 09:28   #3
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Hier ein Bild da. Weiteres hab ich seit heute aus irgend einem Grund hin und wieder kurze(5-10 sec.) einen System Freeze. sogar die Maus lässt sich nicht mehr bewegen.
__________________

Geändert von Drahnier016 (30.05.2014 um 09:44 Uhr)

Alt 31.05.2014, 10:25   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Lässt sich nit öffnen, kannst du bitte nen normalen Screenshot davon machen und ohne zu zippen anhängen?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 31.05.2014, 10:39   #5
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Hir ohne Zip.

Angehängte Grafiken
Dateityp: jpg blocked prozess.jpg (99,6 KB, 188x aufgerufen)

Alt 01.06.2014, 13:55   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



melde das mal beim Bitdefender Support. Ich denke da an einen Fehlalarm.
__________________
--> Vodavone Blockierter Prozess

Alt 01.06.2014, 15:51   #7
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



ok danke btw schön dass es menschen wie dich gibt.

1 Frage noch: Ich hab ja Schritt für Schritt das gemacht was man zum erstellen von einem Thema vorher machen sollte muss ich davon irgendwas rückgängig machen?(defogger etc)

Alt 02.06.2014, 12:13   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Warten wir erstmal die Rückmeldung ab, falls wir noch mal ran müssen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 03.06.2014, 09:42   #9
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Die können mir anscheinend nicht sagen was da ist. Ich bekomme keine Antwort von denen.
Aber ich hab auch schon das nächste Problem. Webget Vierus scheint wieder da zu sein... Malewarebytes hat eine "Potentielle Bedrohung gefunden"
Angehängte Grafiken
Dateityp: jpg Unbenannt.jpg (60,9 KB, 189x aufgerufen)

Alt 04.06.2014, 08:19   #10
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Poste mal bitte ein frisches FRST log.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 04.06.2014, 10:14   #11
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Hab das Ding mal in die Quarantäne gesteckt.
Hier das Log.

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-06-2014
Ran by Operator (administrator) on OPERATOR-PC on 04-06-2014 11:11:28
Running from C:\Users\Operator\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(TeamViewer) C:\Program Files\airbackup\airbackupSC.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TeamViewer) C:\Program Files\airbackup\airbackupFP.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Flux Software LLC) C:\Users\Operator\AppData\Local\FluxSoftware\Flux\flux.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ArenaNet) A:\C-Games\Guild Wars 2\Gw2.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1279480 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [539688 2011-05-12] (ROCCAT GmbH)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [f.lux] => C:\Users\Operator\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [MKLOL] => C:\Program Files (x86)\MKJogo\MKLOL\MK.exe [1277128 2014-04-27] (MK)
HKU\S-1-5-21-22734751-2402719893-2507161876-1000\...\Run: [airbackup] => C:\Program Files\airbackup\airbackup.exe [16331056 2014-03-14] (TeamViewer)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x838F3E984A60CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Docs) - C:\Users\Operator\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-25]

==================== Services (Whitelisted) =================

R2 airbackup Service Controller; C:\Program Files\airbackup\airbackupSC.exe [1213232 2014-03-14] (TeamViewer)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-12] ()
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)

==================== Drivers (Whitelisted) ====================

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2014-04-28] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-04] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 MSICDSetup; \??\D:\CDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-04 11:11 - 2014-06-04 11:11 - 02068992 _____ (Farbar) C:\Users\Operator\Downloads\FRST64.exe
2014-06-04 11:11 - 2014-06-04 11:11 - 00011333 _____ () C:\Users\Operator\Downloads\FRST.txt
2014-06-04 11:10 - 2014-06-04 11:10 - 01059840 _____ (Farbar) C:\Users\Operator\Downloads\FRST.exe
2014-06-03 10:39 - 2014-06-03 10:39 - 00003852 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1398405290
2014-06-03 10:29 - 2014-05-30 01:07 - 01715176 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-06-03 10:29 - 2014-05-30 01:07 - 01291232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-05-30 06:22 - 2014-05-30 06:22 - 00013262 _____ () C:\Users\Operator\Desktop\Gmer.7z
2014-05-30 06:21 - 2014-05-30 06:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-30 06:21 - 2014-05-30 06:21 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-05-30 06:16 - 2014-05-30 06:16 - 00562001 _____ () C:\Users\Operator\Desktop\Gmer.txt
2014-05-30 05:55 - 2014-05-30 05:55 - 00022918 _____ () C:\Users\Operator\Desktop\Addition.txt
2014-05-30 05:54 - 2014-06-04 11:11 - 00000000 ____D () C:\FRST
2014-05-30 05:54 - 2014-05-30 06:07 - 00078271 _____ () C:\Users\Operator\Desktop\FRST.txt
2014-05-30 05:52 - 2014-05-30 05:52 - 00000478 _____ () C:\Users\Operator\Desktop\defogger_disable.log
2014-05-30 05:52 - 2014-05-30 05:52 - 00000000 _____ () C:\Users\Operator\defogger_reenable
2014-05-29 23:35 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-29 10:00 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-29 10:00 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-29 10:00 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-05-29 10:00 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-05-29 09:59 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-05-29 09:59 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-05-29 09:42 - 2014-05-29 09:42 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-29 09:08 - 2014-06-04 07:57 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-05-29 09:07 - 2014-05-29 09:16 - 00000000 ____D () C:\Program Files\airbackup
2014-05-29 09:07 - 2014-05-29 09:07 - 00001881 _____ () C:\Users\Public\Desktop\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00001853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\TeamViewer
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer
2014-05-29 09:03 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-05-29 09:03 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-05-29 09:03 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-05-29 09:03 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-05-29 08:58 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-05-29 08:58 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-29 08:58 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-29 08:58 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-05-29 08:58 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-05-29 08:58 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-05-29 08:58 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-29 08:58 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-29 08:58 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-29 08:58 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-05-29 08:58 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-05-29 08:58 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-05-29 08:58 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-05-29 08:58 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-05-29 08:58 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-29 08:58 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-05-29 08:57 - 2014-05-29 08:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-05-29 08:53 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-05-29 08:53 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-05-29 08:53 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-29 08:53 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-29 08:53 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-05-29 08:53 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-05-29 08:53 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-05-29 08:51 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-05-29 08:51 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-05-29 08:51 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-05-29 08:51 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-05-29 08:51 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-05-29 08:41 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-05-29 08:41 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-05-29 08:41 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-05-29 08:41 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-05-29 08:41 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-05-29 08:41 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-05-29 08:41 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-05-29 08:41 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-05-29 08:41 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-05-29 08:41 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-05-29 08:41 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-05-29 08:41 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-05-29 08:41 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-05-29 08:41 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-05-29 08:40 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-29 08:40 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-29 08:40 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-05-29 08:40 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-05-29 08:40 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-05-29 08:40 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-05-29 08:40 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-05-29 08:40 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-05-29 08:40 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-05-29 08:40 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-05-29 08:40 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-05-29 08:40 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-05-29 08:40 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-05-29 08:40 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-29 08:40 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-05-29 08:40 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-05-29 08:40 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-05-29 08:40 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-05-29 08:40 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-05-29 08:40 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-05-29 08:40 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-05-29 08:40 - 2013-11-23 19:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-29 08:40 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-29 08:40 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-05-29 08:40 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-05-29 08:40 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-05-29 08:40 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-05-29 08:40 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-05-29 08:40 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-05-29 08:40 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-29 08:40 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-05-29 08:40 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-05-29 08:40 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-05-29 08:40 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-05-29 08:40 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-05-29 08:40 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-05-29 08:40 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-05-29 08:40 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-05-29 08:40 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-05-29 08:40 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-05-29 08:40 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-05-29 08:40 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-05-29 08:40 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-05-29 08:40 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-05-29 08:40 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-05-29 08:40 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-05-29 08:40 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-05-29 08:40 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-05-29 08:40 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-05-29 08:40 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-05-29 08:40 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-05-29 08:40 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-05-29 08:40 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-05-29 08:40 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-05-29 08:40 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-05-29 08:40 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-05-29 08:40 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-05-29 08:40 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-05-29 08:40 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-05-29 08:40 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-05-29 08:40 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-05-29 08:40 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-05-29 08:40 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-05-29 08:40 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-05-29 08:40 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-05-29 08:40 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-05-29 08:40 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-05-29 08:40 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-05-29 08:40 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-05-29 08:40 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-05-29 08:40 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-05-29 08:39 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-05-29 08:39 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-05-29 08:39 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-05-29 08:39 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-05-29 08:39 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-05-29 08:39 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-05-29 08:39 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-05-29 08:39 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-05-29 08:39 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-05-29 08:39 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-05-29 08:39 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-05-29 08:39 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-05-29 08:39 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-05-29 08:39 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-05-29 08:38 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-05-29 08:32 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-29 08:32 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-05-29 08:23 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-29 08:23 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-29 08:23 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-29 08:23 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-29 08:23 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-29 08:23 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-29 08:21 - 2014-05-29 08:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-29 08:21 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-28 06:46 - 2014-06-04 09:06 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-28 06:46 - 2014-05-28 06:46 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-28 06:46 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-28 06:46 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-28 06:43 - 2014-05-28 06:43 - 00001464 _____ () C:\Users\Operator\Desktop\PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Users\Operator\AppData\Local\Secunia PSI
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-28 06:30 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-28 06:30 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-28 06:30 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-28 06:30 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-28 06:30 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-28 06:30 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-28 06:30 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-28 06:30 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-28 06:30 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-28 06:30 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-28 06:30 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-28 06:30 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-28 06:30 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-28 06:30 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-28 06:30 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-28 06:30 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-28 06:30 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-28 06:30 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-28 06:30 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-28 06:30 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-05-28 06:30 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-28 06:30 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-05-28 06:30 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-28 06:23 - 2014-05-28 06:24 - 00001425 _____ () C:\DelFix.txt
2014-05-28 05:28 - 2014-05-28 05:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-28 05:19 - 2014-05-28 06:23 - 00000000 ____D () C:\Windows\ERUNT
2014-05-28 05:06 - 2014-05-28 05:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-28 04:58 - 2014-05-28 06:30 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieUserList
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieSiteList
2014-05-28 04:30 - 2014-05-28 04:30 - 00000000 _____ () C:\autoexec.bat
2014-05-28 04:29 - 2014-05-28 04:38 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-05-28 04:29 - 2014-05-28 04:29 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-28 04:26 - 2014-05-28 04:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 04:25 - 2014-05-28 04:25 - 00005420 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 04:25 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-28 04:25 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-28 04:25 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-28 04:25 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-28 04:15 - 2014-05-28 04:15 - 00002037 _____ () C:\Users\Operator\Desktop\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00002001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001924 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-05-28 04:14 - 2014-06-02 19:24 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-05-28 04:14 - 2014-05-28 04:14 - 00000000 ____D () C:\ProgramData\Sun
2014-05-28 04:13 - 2014-05-28 04:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-27 17:23 - 2014-05-27 17:25 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-05-27 17:22 - 2014-05-27 17:22 - 00000000 ____D () C:\Users\Operator\AppData\Local\Bluestacks
2014-05-27 17:18 - 2014-05-27 17:18 - 00003156 _____ () C:\Windows\System32\Tasks\{B5E54B77-92C7-4761-8E60-26DEE69966BC}
2014-05-27 17:18 - 2014-05-27 17:18 - 00001827 _____ () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00001803 _____ () C:\Users\Operator\Desktop\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00000000 ____D () C:\Program Files (x86)\Tunatic
2014-05-27 16:54 - 2014-05-27 16:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-27 06:58 - 2014-05-20 01:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-27 06:55 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-27 06:55 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-27 06:55 - 2014-05-20 04:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-27 06:53 - 2014-05-27 06:53 - 00000000 ____D () C:\NVIDIA
2014-05-27 06:44 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-05-27 06:44 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-05-21 03:45 - 2014-05-21 16:35 - 00000000 ____D () C:\Users\Operator\Desktop\Anno 2070 Produktion
2014-05-20 21:21 - 2014-06-04 07:56 - 00089872 _____ () C:\Windows\PFRO.log
2014-05-20 03:03 - 2014-05-20 03:03 - 00000000 ____D () C:\Users\Operator\AppData\Local\PunkBuster
2014-05-19 21:06 - 2014-05-19 21:06 - 00001849 _____ () C:\Users\Operator\Desktop\Anno 2070.lnk
2014-05-19 16:18 - 2014-05-19 16:18 - 00000000 ____D () C:\Users\Operator\Documents\ANNO 2070
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Ubisoft
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\ProgramData\Solidshield
2014-05-17 23:38 - 2014-05-17 23:39 - 00000000 ____D () C:\Users\Operator\AppData\Local\Ubisoft Game Launcher
2014-05-17 23:38 - 2014-05-17 23:38 - 00001201 _____ () C:\Users\Operator\Desktop\Uplay.lnk
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-16 23:57 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\AppData\Local\SKIDROW
2014-05-16 22:15 - 2014-05-16 22:15 - 00000959 _____ () C:\Users\Operator\Desktop\Deadpool.lnk
2014-05-16 20:15 - 2014-05-16 20:15 - 00000000 ____D () C:\Users\Operator\Documents\BioWare
2014-05-16 19:43 - 2014-05-16 19:43 - 00001342 _____ () C:\Users\Public\Desktop\Dragon Age II.lnk
2014-05-16 14:29 - 2014-05-16 14:37 - 00000000 ____D () C:\Users\Operator\AppData\Local\Darksiders2
2014-05-16 14:29 - 2014-05-16 14:29 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-05-16 01:46 - 2014-05-16 01:46 - 00000221 _____ () C:\Users\Operator\Desktop\Darksiders II.url
2014-05-15 15:39 - 2014-05-15 15:39 - 00000235 _____ () C:\Users\Operator\AppData\Roaming\3818398.bat
2014-05-15 11:27 - 2014-05-15 11:27 - 00000000 ____D () C:\Users\Operator\Documents\MercurySteam
2014-05-15 11:26 - 2014-05-15 11:26 - 00001728 _____ () C:\Users\Operator\Desktop\CLOS2.lnk
2014-05-15 11:18 - 2014-05-15 11:22 - 00000000 ____D () C:\Program Files (x86)\Castlevania Lords of Shadow 2
2014-05-14 20:50 - 2014-05-14 20:50 - 00000000 ____D () C:\Users\Operator\AppData\Local\Two Worlds II
2014-05-14 19:34 - 2014-05-14 19:34 - 00000220 _____ () C:\Users\Operator\Desktop\Two Worlds II.url
2014-05-14 13:43 - 2014-05-14 13:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-14 13:43 - 2014-05-14 13:43 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 13:43 - 2014-05-14 13:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-13 22:09 - 2014-05-13 22:09 - 00000000 ____D () C:\Users\Operator\AppData\Local\BigHugeEngine
2014-05-13 20:08 - 2014-05-13 20:08 - 00000222 _____ () C:\Users\Operator\Desktop\Kingdoms of Amalur Reckoning.url
2014-05-13 20:01 - 2014-05-26 16:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-13 20:01 - 2014-05-13 20:01 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-13 20:01 - 2014-05-13 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-12 19:03 - 2014-05-12 19:03 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-05-12 19:02 - 2014-05-19 15:24 - 00088135 _____ () C:\Windows\DirectX.log
2014-05-12 13:25 - 2014-05-12 13:25 - 00001620 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-05-12 13:25 - 2014-05-12 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-05-09 19:29 - 2014-05-09 19:29 - 00000000 ____D () C:\Users\Operator\Documents\My Cheat Tables
2014-05-07 14:19 - 2014-05-07 16:31 - 00001059 _____ () C:\Users\Operator\Desktop\Rome 2.lnk
2014-05-07 07:38 - 2014-05-07 07:40 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\DarkSoulsII
2014-05-07 07:38 - 2014-05-07 07:38 - 00001169 _____ () C:\Users\Operator\Desktop\Dark Souls 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000607 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\Documents\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Guild Wars 2
2014-05-06 21:02 - 2014-06-04 07:57 - 00011209 _____ () C:\Windows\setupact.log
2014-05-06 21:02 - 2014-05-06 21:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-06 06:56 - 2014-05-06 06:56 - 00000884 _____ () C:\Users\Operator\Desktop\Devil May Cry 5.lnk
2014-05-06 06:43 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\Documents\My Games
2014-05-06 06:43 - 2014-05-06 06:43 - 00000000 ____D () C:\ProgramData\Steam
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-05-05 19:13 - 2014-05-16 22:34 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\BitComet
2014-05-05 19:13 - 2014-05-05 19:13 - 00000000 ____D () C:\Program Files\BitComet

==================== One Month Modified Files and Folders =======

2014-06-04 11:11 - 2014-06-04 11:11 - 02068992 _____ (Farbar) C:\Users\Operator\Downloads\FRST64.exe
2014-06-04 11:11 - 2014-06-04 11:11 - 00011333 _____ () C:\Users\Operator\Downloads\FRST.txt
2014-06-04 11:11 - 2014-05-30 05:54 - 00000000 ____D () C:\FRST
2014-06-04 11:11 - 2014-04-25 09:12 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\TS3Client
2014-06-04 11:11 - 2014-04-25 07:40 - 00000000 ____D () C:\Users\Operator\AppData\Local\Temp
2014-06-04 11:10 - 2014-06-04 11:10 - 01059840 _____ (Farbar) C:\Users\Operator\Downloads\FRST.exe
2014-06-04 10:14 - 2014-04-25 08:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-04 09:06 - 2014-05-28 06:46 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-04 08:05 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-04 08:05 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-04 08:01 - 2014-04-25 07:39 - 01411303 _____ () C:\Windows\WindowsUpdate.log
2014-06-04 07:57 - 2014-05-29 09:08 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-06-04 07:57 - 2014-05-06 21:02 - 00011209 _____ () C:\Windows\setupact.log
2014-06-04 07:57 - 2014-04-25 08:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-04 07:57 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-04 07:56 - 2014-05-20 21:21 - 00089872 _____ () C:\Windows\PFRO.log
2014-06-03 10:39 - 2014-06-03 10:39 - 00003852 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1398405290
2014-06-03 10:39 - 2014-04-25 07:54 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-06-03 10:29 - 2014-04-25 07:59 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-03 10:21 - 2009-07-14 07:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-06-02 22:14 - 2014-04-26 00:10 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Skype
2014-06-02 19:24 - 2014-05-28 04:14 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-05-30 11:04 - 2014-04-25 12:12 - 00007605 _____ () C:\Users\Operator\AppData\Local\resmon.resmoncfg
2014-05-30 06:22 - 2014-05-30 06:22 - 00013262 _____ () C:\Users\Operator\Desktop\Gmer.7z
2014-05-30 06:21 - 2014-05-30 06:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-30 06:21 - 2014-05-30 06:21 - 00000000 ____D () C:\Program Files (x86)\7-Zip
2014-05-30 06:16 - 2014-05-30 06:16 - 00562001 _____ () C:\Users\Operator\Desktop\Gmer.txt
2014-05-30 06:07 - 2014-05-30 05:54 - 00078271 _____ () C:\Users\Operator\Desktop\FRST.txt
2014-05-30 05:55 - 2014-05-30 05:55 - 00022918 _____ () C:\Users\Operator\Desktop\Addition.txt
2014-05-30 05:52 - 2014-05-30 05:52 - 00000478 _____ () C:\Users\Operator\Desktop\defogger_disable.log
2014-05-30 05:52 - 2014-05-30 05:52 - 00000000 _____ () C:\Users\Operator\defogger_reenable
2014-05-30 05:52 - 2014-04-25 07:40 - 00000000 ____D () C:\Users\Operator
2014-05-30 01:07 - 2014-06-03 10:29 - 01715176 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-05-30 01:07 - 2014-06-03 10:29 - 01291232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-05-30 01:07 - 2014-04-25 08:06 - 01279480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-05-30 01:07 - 2014-04-25 08:06 - 01122312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-05-29 23:33 - 2014-04-25 08:03 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-29 23:33 - 2011-04-12 09:43 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-05-29 23:33 - 2011-04-12 09:43 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-05-29 23:33 - 2009-07-14 07:13 - 01593956 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-29 19:53 - 2014-04-25 11:57 - 00058016 _____ () C:\Users\Operator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-29 09:45 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-29 09:43 - 2009-07-14 06:45 - 00276968 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-29 09:42 - 2014-05-29 09:42 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-29 09:42 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-29 09:16 - 2014-05-29 09:07 - 00000000 ____D () C:\Program Files\airbackup
2014-05-29 09:07 - 2014-05-29 09:07 - 00001881 _____ () C:\Users\Public\Desktop\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00001853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\airbackup.lnk
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\TeamViewer
2014-05-29 09:07 - 2014-05-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer
2014-05-29 08:57 - 2014-05-29 08:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-05-29 08:27 - 2014-04-25 07:40 - 00000000 ___RD () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-29 08:27 - 2014-04-25 07:40 - 00000000 ___RD () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-29 08:22 - 2014-05-29 08:21 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-28 22:32 - 2014-04-25 08:22 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-05-28 07:14 - 2014-04-25 12:14 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\vlc
2014-05-28 06:46 - 2014-05-28 06:46 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-28 06:46 - 2014-05-28 06:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-28 06:43 - 2014-05-28 06:43 - 00001464 _____ () C:\Users\Operator\Desktop\PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00001069 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Users\Operator\AppData\Local\Secunia PSI
2014-05-28 06:31 - 2014-05-28 06:31 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-28 06:31 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-28 06:30 - 2014-05-28 04:58 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-05-28 06:24 - 2014-05-28 06:23 - 00001425 _____ () C:\DelFix.txt
2014-05-28 06:23 - 2014-05-28 05:19 - 00000000 ____D () C:\Windows\ERUNT
2014-05-28 05:28 - 2014-05-28 05:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-28 05:06 - 2014-05-28 05:06 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieUserList
2014-05-28 04:38 - 2014-05-28 04:38 - 00000000 __SHD () C:\Users\Operator\AppData\Local\EmieSiteList
2014-05-28 04:38 - 2014-05-28 04:29 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-05-28 04:30 - 2014-05-28 04:30 - 00000000 _____ () C:\autoexec.bat
2014-05-28 04:29 - 2014-05-28 04:29 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-28 04:26 - 2014-05-28 04:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-28 04:25 - 2014-05-28 04:25 - 00005420 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-28 04:25 - 2014-05-28 04:13 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-28 04:15 - 2014-05-28 04:15 - 00002037 _____ () C:\Users\Operator\Desktop\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00002001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001945 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk
2014-05-28 04:15 - 2014-05-28 04:15 - 00001924 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
2014-05-28 04:14 - 2014-05-28 04:14 - 00000000 ____D () C:\ProgramData\Sun
2014-05-28 03:44 - 2014-04-25 11:57 - 00000000 ____D () C:\Program Files (x86)\osu!
2014-05-28 03:44 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-27 17:25 - 2014-05-27 17:23 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-05-27 17:22 - 2014-05-27 17:22 - 00000000 ____D () C:\Users\Operator\AppData\Local\Bluestacks
2014-05-27 17:18 - 2014-05-27 17:18 - 00003156 _____ () C:\Windows\System32\Tasks\{B5E54B77-92C7-4761-8E60-26DEE69966BC}
2014-05-27 17:18 - 2014-05-27 17:18 - 00001827 _____ () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00001803 _____ () C:\Users\Operator\Desktop\Tunatic.lnk
2014-05-27 17:18 - 2014-05-27 17:18 - 00000000 ____D () C:\Program Files (x86)\Tunatic
2014-05-27 16:54 - 2014-05-27 16:54 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-27 14:18 - 2014-04-26 20:10 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\.minecraft
2014-05-27 12:04 - 2014-04-26 00:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-27 12:04 - 2014-04-26 00:10 - 00000000 ____D () C:\ProgramData\Skype
2014-05-27 06:58 - 2014-04-25 08:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-27 06:58 - 2014-04-25 08:04 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-27 06:53 - 2014-05-27 06:53 - 00000000 ____D () C:\NVIDIA
2014-05-27 06:45 - 2014-04-25 08:08 - 00000000 ____D () C:\Users\Operator\AppData\Local\NVIDIA Corporation
2014-05-27 06:45 - 2014-04-25 08:04 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-05-26 16:49 - 2014-05-13 20:01 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-26 14:07 - 2014-04-25 08:19 - 00000000 ____D () C:\Users\Operator\AppData\Local\PMB Files
2014-05-21 16:35 - 2014-05-21 03:45 - 00000000 ____D () C:\Users\Operator\Desktop\Anno 2070 Produktion
2014-05-20 04:44 - 2014-05-27 06:55 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-20 04:44 - 2014-05-27 06:55 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-20 04:44 - 2014-05-27 06:55 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-20 04:44 - 2014-04-25 08:05 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-20 04:44 - 2014-04-25 08:05 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-05-20 04:44 - 2014-04-25 08:00 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-05-20 03:25 - 2014-04-25 08:05 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-05-20 03:25 - 2014-04-25 08:05 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-05-20 03:25 - 2014-04-25 08:05 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-05-20 03:13 - 2014-04-25 11:38 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-05-20 03:03 - 2014-05-20 03:03 - 00000000 ____D () C:\Users\Operator\AppData\Local\PunkBuster
2014-05-20 03:03 - 2014-04-25 11:38 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-05-20 02:40 - 2014-04-25 08:15 - 00000000 ____D () C:\ProgramData\Origin
2014-05-20 02:40 - 2014-04-25 08:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-05-20 01:10 - 2014-05-27 06:58 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-19 21:06 - 2014-05-19 21:06 - 00001849 _____ () C:\Users\Operator\Desktop\Anno 2070.lnk
2014-05-19 16:18 - 2014-05-19 16:18 - 00000000 ____D () C:\Users\Operator\Documents\ANNO 2070
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Ubisoft
2014-05-19 15:25 - 2014-05-19 15:25 - 00000000 ____D () C:\ProgramData\Solidshield
2014-05-19 15:24 - 2014-05-12 19:02 - 00088135 _____ () C:\Windows\DirectX.log
2014-05-19 15:20 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-17 23:39 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Local\Ubisoft Game Launcher
2014-05-17 23:38 - 2014-05-17 23:38 - 00001201 _____ () C:\Users\Operator\Desktop\Uplay.lnk
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-05-17 23:38 - 2014-05-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-17 23:16 - 2014-04-25 08:06 - 00000000 ____D () C:\Users\Operator\AppData\Local\NVIDIA
2014-05-16 23:57 - 2014-05-16 23:57 - 00000000 ____D () C:\Users\Operator\AppData\Local\SKIDROW
2014-05-16 23:57 - 2014-05-06 06:43 - 00000000 ____D () C:\Users\Operator\Documents\My Games
2014-05-16 22:34 - 2014-05-05 19:13 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\BitComet
2014-05-16 22:15 - 2014-05-16 22:15 - 00000959 _____ () C:\Users\Operator\Desktop\Deadpool.lnk
2014-05-16 20:15 - 2014-05-16 20:15 - 00000000 ____D () C:\Users\Operator\Documents\BioWare
2014-05-16 19:43 - 2014-05-16 19:43 - 00001342 _____ () C:\Users\Public\Desktop\Dragon Age II.lnk
2014-05-16 14:37 - 2014-05-16 14:29 - 00000000 ____D () C:\Users\Operator\AppData\Local\Darksiders2
2014-05-16 14:29 - 2014-05-16 14:29 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-05-16 14:16 - 2014-04-25 08:19 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-05-16 01:46 - 2014-05-16 01:46 - 00000221 _____ () C:\Users\Operator\Desktop\Darksiders II.url
2014-05-15 15:39 - 2014-05-15 15:39 - 00000235 _____ () C:\Users\Operator\AppData\Roaming\3818398.bat
2014-05-15 11:27 - 2014-05-15 11:27 - 00000000 ____D () C:\Users\Operator\Documents\MercurySteam
2014-05-15 11:26 - 2014-05-15 11:26 - 00001728 _____ () C:\Users\Operator\Desktop\CLOS2.lnk
2014-05-15 11:22 - 2014-05-15 11:18 - 00000000 ____D () C:\Program Files (x86)\Castlevania Lords of Shadow 2
2014-05-15 01:49 - 2014-04-25 08:05 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-05-14 20:50 - 2014-05-14 20:50 - 00000000 ____D () C:\Users\Operator\AppData\Local\Two Worlds II
2014-05-14 20:50 - 2014-04-26 20:16 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\NVIDIA
2014-05-14 19:34 - 2014-05-14 19:34 - 00000220 _____ () C:\Users\Operator\Desktop\Two Worlds II.url
2014-05-14 13:44 - 2014-05-14 13:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-14 13:44 - 2014-04-25 08:17 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Adobe
2014-05-14 13:44 - 2014-04-25 08:16 - 00000000 ____D () C:\Users\Operator\AppData\Local\Adobe
2014-05-14 13:43 - 2014-05-14 13:43 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 13:43 - 2014-05-14 13:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-13 23:14 - 2014-04-25 08:17 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 23:14 - 2014-04-25 08:17 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 23:14 - 2014-04-25 08:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 22:09 - 2014-05-13 22:09 - 00000000 ____D () C:\Users\Operator\AppData\Local\BigHugeEngine
2014-05-13 20:08 - 2014-05-13 20:08 - 00000222 _____ () C:\Users\Operator\Desktop\Kingdoms of Amalur Reckoning.url
2014-05-13 20:01 - 2014-05-13 20:01 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-13 20:01 - 2014-05-13 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-12 19:03 - 2014-05-12 19:03 - 00001170 _____ () C:\Users\Public\Desktop\Battlefield 4.lnk
2014-05-12 19:03 - 2014-04-25 11:38 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-05-12 19:02 - 2014-04-25 11:38 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-12 13:25 - 2014-05-12 13:25 - 00001620 _____ () C:\Users\Public\Desktop\Path of Exile.lnk
2014-05-12 13:25 - 2014-05-12 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
2014-05-12 07:26 - 2014-05-28 06:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-05-28 06:46 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-28 06:46 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 23:30 - 2014-04-28 01:37 - 00001102 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-11 23:30 - 2014-04-28 01:37 - 00001090 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-09 19:29 - 2014-05-09 19:29 - 00000000 ____D () C:\Users\Operator\Documents\My Cheat Tables
2014-05-09 08:14 - 2014-05-29 08:40 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-29 08:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-07 16:31 - 2014-05-07 14:19 - 00001059 _____ () C:\Users\Operator\Desktop\Rome 2.lnk
2014-05-07 07:40 - 2014-05-07 07:38 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\DarkSoulsII
2014-05-07 07:38 - 2014-05-07 07:38 - 00001169 _____ () C:\Users\Operator\Desktop\Dark Souls 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000607 _____ () C:\Users\Public\Desktop\Guild Wars 2.lnk
2014-05-07 07:19 - 2014-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\Documents\Guild Wars 2
2014-05-07 07:18 - 2014-05-07 07:18 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Guild Wars 2
2014-05-06 21:02 - 2014-05-06 21:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-06 19:46 - 2014-04-27 03:28 - 00000000 ____D () C:\Users\Operator\AppData\Local\Battle.net
2014-05-06 18:34 - 2014-05-04 18:20 - 00000106 _____ () C:\Users\Operator\Documents\OriginAccount.txt
2014-05-06 06:56 - 2014-05-06 06:56 - 00000884 _____ () C:\Users\Operator\Desktop\Devil May Cry 5.lnk
2014-05-06 06:43 - 2014-05-06 06:43 - 00000000 ____D () C:\ProgramData\Steam
2014-05-06 06:40 - 2014-05-29 08:23 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-29 08:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-29 08:23 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-29 08:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-29 08:23 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-29 08:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-05-05 20:02 - 2014-05-05 20:02 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-05-05 19:13 - 2014-05-05 19:13 - 00000000 ____D () C:\Program Files\BitComet
2014-05-05 05:02 - 2014-05-04 19:46 - 00000000 ____D () C:\Users\Operator\AppData\Roaming\Command and Conquer 3 Kanes Wrath

Some content of TEMP:
====================
C:\Users\Operator\AppData\Local\Temp\ERUNT.exe
C:\Users\Operator\AppData\Local\Temp\Gw2.exe
C:\Users\Operator\AppData\Local\Temp\JDSetup130457167729983404.exe
C:\Users\Operator\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Operator\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Operator\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Operator\AppData\Local\Temp\nvStInst.exe
C:\Users\Operator\AppData\Local\Temp\SHSetup.exe
C:\Users\Operator\AppData\Local\Temp\sonarinst.exe
C:\Users\Operator\AppData\Local\Temp\Upd8CE3.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-20 06:19

==================== End Of Log ============================
         
--- --- ---

Alt 05.06.2014, 09:10   #12
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



den einen Fund einfach löschen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.06.2014, 10:36   #13
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Sonst nichts?

Alt 05.06.2014, 19:34   #14
schrauber
/// the machine
/// TB-Ausbilder
 

Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess





auser du willst unbedingt noch mehr?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.06.2014, 20:24   #15
Drahnier016
 
Vodavone Blockierter  Prozess - Standard

Vodavone Blockierter Prozess



Danke vielmals und das mit Defogger etc. da muss ich auch nichts mehr machen oder?

Antwort

Themen zu Vodavone Blockierter Prozess
4d36e972-e325-11ce-bfc1-08002be10318, association, besuch, besucht, bitdefender, blockiert, dateien, defender, ellung, gepostet, hilfestellung, ide, keine dateien, launch, prozess, quara, quarantäne, schrauber, seite, teredo, thema, vodavone, was tun, was tun?



Ähnliche Themen: Vodavone Blockierter Prozess


  1. PUP.Optional.BrowserSecurity - Orangenes Warndreieck/nicht blockierter Inhalt im Firefox
    Plagegeister aller Art und deren Bekämpfung - 02.11.2015 (11)
  2. Blockierter Internetzugang nach Quarantäne von Trojan.Generic.11216133 (B)
    Plagegeister aller Art und deren Bekämpfung - 29.04.2014 (11)
  3. Windows 7 Trojaner Interpol Blockierter Pc Abgesicherter Modus geht nicht
    Plagegeister aller Art und deren Bekämpfung - 20.10.2013 (5)
  4. Komischer Prozess
    Plagegeister aller Art und deren Bekämpfung - 07.08.2013 (5)
  5. Bundestrojaner (blockierter Bildschirm)
    Plagegeister aller Art und deren Bekämpfung - 02.05.2013 (5)
  6. iexplorer prozess
    Plagegeister aller Art und deren Bekämpfung - 26.09.2012 (13)
  7. Blockierter PC durch Suisa Trojaner
    Plagegeister aller Art und deren Bekämpfung - 13.06.2012 (21)
  8. Internet Explorer Prozess (NUR PROZESS) iexplore.exe startet sich selbst 3 mal
    Plagegeister aller Art und deren Bekämpfung - 27.02.2011 (21)
  9. Internet Explorer Prozess (NUR PROZESS) iexplore.exe startet sich selbst 3 mal
    Plagegeister aller Art und deren Bekämpfung - 29.07.2010 (9)
  10. 2 mal firefox-prozess?
    Log-Analyse und Auswertung - 12.04.2010 (1)
  11. Prozess Canaveral?
    Plagegeister aller Art und deren Bekämpfung - 02.04.2010 (1)
  12. Prozess MDM
    Plagegeister aller Art und deren Bekämpfung - 21.03.2008 (2)
  13. Frage zu PRozess
    Log-Analyse und Auswertung - 17.03.2007 (1)
  14. Problem, Prozess
    Mülltonne - 08.03.2007 (1)
  15. Unbekannter Prozess!
    Log-Analyse und Auswertung - 26.10.2006 (8)
  16. Prozess iexplorer.exe
    Log-Analyse und Auswertung - 10.08.2006 (1)
  17. Prozess WINWORD.exe
    Plagegeister aller Art und deren Bekämpfung - 12.03.2006 (3)

Zum Thema Vodavone Blockierter Prozess - Habe eure Seite schon einmal besucht und und mir von einem Thema das "der schrauber" bearbeitet hatte helfen lassen. Nahezu identisch mit den Thema was "Tilliboon" gepostet hatte.(von der Hilfestellung - Vodavone Blockierter Prozess...
Archiv
Du betrachtest: Vodavone Blockierter Prozess auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.