Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Bitte um Hilfe beim entfernen von Instant Savings

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 21.07.2013, 19:09   #1
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Icon17

Bitte um Hilfe beim entfernen von Instant Savings



Guten Tag, hier ist ein Trojaner-Board- Neuling am Start, deswegen Fehler bitte nicht so übel nehmen.

Ich habe mir nun Instant Savings eingefangen. In der Systemsteuerung bei den Programmen wird Instant Savings nicht angezeigt, weswegen ich es nicht einfach deinstallieren kann. Als Browser benutze ich Google Chrome, aber hier wird das, nennen wir es mal "Plugin", auch nicht angezeigt, weswegen ich es auch hier nicht entfernen kann. Mein PC hat als Betriebssystem Windows 8. Avast|Free läuft als Antivirensoftware.

Momentan scannt Malwarebytes meinen Rechner. Jedoch habe ich schon gelesen, dass Malwarebytes bei Instant Savings meistens nicht fündig wird. Deswegen frage ich hier nach, was ich noch so unternehmen kann, diesen Virus zu entfernen, weil ich eher abgeneigt bin meine Festplatte zu formatieren. Falls Malwarebytes doch fündig wird bedanke ich mich für die sinnlose Aufmerksamkeit, ich schreibe es dann hier in den Thread falls das der Fall ist. Falls Malwarebytes nicht fündig wird, danke für die Aufmerksamkeit, ich bitte um dringend benötigte Hilfe.

Alt 21.07.2013, 19:52   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 21.07.2013, 20:47   #3
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Vielen Dank für deine Hilfe. Ich habe mir nun die 64-bit Version von FRST heruntergeladen und einen scan durchgeführt. Hier beide Logdaten:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-07-2013
Ran by Denis (administrator) on 21-07-2013 21:01:10
Running from C:\Users\Denis\Desktop\FRST
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\WINDOWS\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4396.1016_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Spigot, Inc.) C:\Users\Denis\AppData\Roaming\Search Protection\SearchProtection.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Users\Denis\Desktop\AutoHotkey Script (neu).exe
(Wsys Co., Ltd.) C:\ProgramData\eSafe\eGdpSvc.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16613_none_6273bd8950d6cae2\TiWorker.exe
(Microsoft Corp.) C:\WINDOWS\system32\defrag.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452968 2012-03-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3549528 2013-07-16] (Electronic Arts)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Denis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-06-27] (Spotify Ltd)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1672616 2013-07-10] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19876456 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Spotify] - C:\Users\Denis\AppData\Roaming\Spotify\spotify.exe [4643328 2013-06-27] (Spotify Ltd)
HKCU\...\Run: [SearchProtection] - C:\Users\Denis\AppData\Roaming\Search Protection\SearchProtection.EXE [740712 2013-05-22] (Spigot, Inc.)
MountPoints2: K - "K:\setup.exe" 
MountPoints2: {b24643dc-eea1-11e1-a1ec-8c89a5e0bc15} - "K:\setup.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-06-28] (LogMeIn Inc.)
HKLM-x32\...\Run: [YTDownloader] - "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot [x]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\watchmi tray.lnk
ShortcutTarget: watchmi tray.lnk -> C:\Windows\Installer\{F0559C5E-7912-4391-B1A0-6B975F0E5064}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe (Acresso Software Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Denis\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyServer: scorpion.premiumize.me:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {9C63174C-4ED2-4D45-82CF-484D25760093} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: about:blank
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (BrowserProtect) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgafcinpmmpklohkojmllohdhomoefph\1.0_0\spext.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U5) - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Denis\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.100.18) - C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (FB Refresh) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0
CHR Extension: (YouTube Options) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdokagampppgbnjfdlkfpphniapiiifn\1.8.125_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (avast! Online Security) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Akatsuki Clouds) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgankgbmohecnigpfaimapoedpabiojf\1.0.0.3_0
CHR Extension: (Object Browser) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\1.23.13_0
CHR Extension: (Facebook Ads Hider) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\leeebdddeggoocipdjiokmjcpidnmoah\1.2.5_0
CHR HKLM-x32\...\Chrome\Extension: [niapdbllcanepiiimjjndipklodoedlc] - C:\Users\Denis\AppData\Local\Temp\YontooLayers.crx

==================== Services (Whitelisted) =================

S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-15] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-28] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [744856 2012-11-14] (Tunngle.net GmbH)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2012-01-31] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [376896 2013-07-21] (Wsys Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-16] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-16] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-16] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-21] (Advanced Micro Devices)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S2 APXACC; \SystemRoot\system32\DRIVERS\appexDrv.sys [x]
U3 idsvc; 
S3 X6va008; \??\C:\WINDOWS\SysWOW64\Drivers\X6va008 [x]
S3 X6va011; \??\C:\WINDOWS\SysWOW64\Drivers\X6va011 [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 20:59 - 2013-07-21 20:59 - 01779345 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-21 19:54 - 2013-07-21 20:40 - 00013277 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:46 - 00000000 ____D C:\Users\Denis\AppData\Roaming\iSafe
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:43 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eDownload
2013-07-21 19:42 - 2013-07-21 19:42 - 00344672 _____ C:\Users\Denis\Downloads\iSafe.exe
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:27 - 2013-07-20 09:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:27 - 2013-07-20 09:28 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:25 - 2013-07-20 09:26 - 33150376 _____ (Oracle Corporation) C:\Users\Denis\Downloads\jre-7u25-windows-x64.exe
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:51 - 2013-07-16 15:52 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-16 15:48 - 2013-07-16 15:50 - 34888568 _____ (Riot Games) C:\Users\Denis\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-07-14 22:27 - 2013-07-14 22:28 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Denis\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-14 22:20 - 2013-07-14 22:20 - 02828552 _____ (AVAST Software) C:\Users\Denis\Downloads\avast-browser-cleanup_8.0.1484.29.exe
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 17:35 - 2013-07-09 17:37 - 38657799 _____ C:\Users\Denis\Downloads\Cube World V2.zip
2013-07-09 17:35 - 2013-07-09 17:37 - 34810001 _____ C:\Users\Denis\Downloads\Cube World V1.rar
2013-07-09 13:39 - 2013-07-09 13:39 - 00317952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-07-09 13:38 - 2013-06-05 00:09 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-07-09 13:38 - 2013-06-05 00:09 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-07 17:12 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-07-07 17:12 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-07-07 17:12 - 2013-05-04 09:34 - 00213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-07-07 17:12 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2013-07-07 17:12 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2013-07-07 17:12 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2013-07-07 17:12 - 2013-03-02 04:45 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-07-07 17:11 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-07-07 17:11 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-07-07 17:11 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-07-07 17:11 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-07-07 17:11 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2013-07-07 17:11 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2013-07-07 17:11 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2013-07-07 17:11 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-07-07 17:11 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-07-07 17:11 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2013-07-07 17:11 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-07-07 17:11 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:48 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-07-07 17:11 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2013-07-07 17:11 - 2013-05-03 00:04 - 00386646 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-07-07 17:11 - 2013-03-02 12:57 - 00337128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-07-07 17:11 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2013-07-07 17:11 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2013-07-07 17:10 - 2013-03-02 12:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2013-07-07 17:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00148712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00125160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00495336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00327912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-07-07 17:10 - 2013-03-02 10:23 - 01338880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 05091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:45 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2013-07-07 17:10 - 2013-03-02 04:44 - 05978624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2013-07-07 17:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2013-07-07 17:09 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2013-07-07 17:09 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2013-07-07 17:08 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2013-07-07 17:08 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2013-07-07 17:08 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2013-07-07 17:08 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll
2013-07-07 17:08 - 2013-04-09 07:17 - 01829408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-07-07 17:08 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2013-07-07 17:08 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2013-07-07 17:08 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2013-07-07 17:08 - 2013-04-09 04:35 - 04038144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-07-07 17:08 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-07-07 17:08 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-07-07 17:08 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2013-07-07 17:08 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-07-07 17:08 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2013-07-07 17:08 - 2013-04-09 01:39 - 01408896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2013-07-07 17:08 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-07-07 17:08 - 2013-03-30 20:16 - 01403784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-07-07 17:08 - 2013-03-30 20:16 - 01267424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-07-07 17:08 - 2013-03-29 00:09 - 01217328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-07-07 17:08 - 2013-03-29 00:09 - 01093880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-07-07 17:08 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2013-07-07 17:08 - 2013-03-02 04:43 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-07-07 17:07 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2013-07-07 17:07 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2013-07-07 17:07 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2013-07-07 17:07 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2013-07-07 17:07 - 2013-04-08 23:52 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2013-07-07 17:07 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-07-07 17:07 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2013-07-07 17:07 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2013-07-07 17:02 - 2013-04-16 04:34 - 01455368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-07-07 17:01 - 2013-05-16 00:35 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-07-07 17:01 - 2013-05-04 09:45 - 02233600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-07-07 17:01 - 2013-04-27 07:20 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2013-07-07 17:01 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2013-07-07 17:01 - 2013-04-24 01:12 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-07-07 17:01 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2013-07-07 17:01 - 2013-04-24 00:55 - 01889280 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-07-07 17:01 - 2013-04-11 08:40 - 06987528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-07-07 17:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2013-07-07 17:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2013-07-07 17:01 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-07-07 17:01 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-07-07 17:01 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2013-07-07 17:01 - 2013-03-06 09:10 - 00112872 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2013-07-07 17:01 - 2013-03-06 08:31 - 19758592 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-07-07 17:01 - 2013-03-06 08:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-07-07 17:01 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-07-07 17:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2013-07-07 17:01 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-07-07 17:01 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2013-07-07 17:00 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2013-07-07 17:00 - 2013-05-16 00:36 - 14320640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 19230720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2013-07-07 17:00 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-07-07 17:00 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-07-07 17:00 - 2013-04-29 00:30 - 13760512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 02877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 02046976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 03958784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 02241024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-07-07 17:00 - 2013-04-29 00:27 - 15404544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-07-07 17:00 - 2013-04-29 00:27 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-07-07 17:00 - 2013-04-29 00:27 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2013-07-07 17:00 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-02 15:38 - 2013-07-02 17:51 - 00586240 _____ C:\Users\Denis\Downloads\1_Internet-Protokolle.ppt
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:14 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:09 - 2013-07-01 16:09 - 01120013 _____ C:\Users\Denis\Downloads\Google.pptx
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 21:21 - 2013-06-30 22:00 - 117461232 _____ C:\Users\Denis\Downloads\The Nexus (Deluxe).rar
2013-06-30 21:20 - 2013-06-30 21:48 - 121036020 _____ C:\Users\Denis\Downloads\amrnte_amrnte.rar
2013-06-30 12:10 - 2013-06-30 12:11 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:42 - 2013-06-29 12:41 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:39 - 2013-06-29 12:39 - 00903080 _____ (Oracle Corporation) C:\Users\Denis\Downloads\chromeinstall-7u25.exe
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 19:16 - 2013-06-28 20:09 - 159884183 _____ C:\Users\Denis\Downloads\Bullet For My Valentine - Scream Aim Fire (Deluxe Edition) (2008).rar
2013-06-28 19:14 - 2013-06-28 19:43 - 126003927 _____ C:\Users\Denis\Downloads\BFMV_Fever.2010.rar
2013-06-28 19:14 - 2013-06-28 19:14 - 65059225 _____ C:\Users\Denis\Downloads\BFMV_Temper_Temper_2013.rar
2013-06-26 18:27 - 2013-06-26 18:37 - 167641015 _____ C:\Users\Denis\Downloads\TESVSDra181510DeuAud.rar
2013-06-26 18:11 - 2013-06-26 18:11 - 00457617 _____ C:\Users\Denis\Downloads\SexLab_LoversComfort_v20130604.zip
2013-06-26 18:03 - 2013-06-26 18:03 - 00026367 _____ C:\Users\Denis\Downloads\SexLabRomance.7z
2013-06-26 13:23 - 2013-06-26 13:56 - 142299628 _____ C:\Users\Denis\Downloads\TESVSGU13.rar
2013-06-26 13:21 - 2013-06-26 13:21 - 00000160 _____ C:\Users\Denis\Downloads\utorrent(torrent,remote.utorrent.com^2Ftiny^2FxOOAhf).exe
2013-06-26 13:20 - 2013-06-26 13:20 - 00001776 _____ C:\Users\Denis\Downloads\The_Elder_Scrolls_V_Skyrim_Update_13_1.9.32.0.8_F_r_die_Deutsche_Version_-fowf4kmfy68pl.dlc
2013-06-26 13:18 - 2013-06-26 13:22 - 00000000 ____D C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2013-06-26 13:16 - 2013-06-26 13:16 - 01045072 _____ (BitTorrent Inc.) C:\Users\Denis\Downloads\utorrent_3.3.0.29677.exe
2013-06-26 12:25 - 2013-06-26 12:29 - 68829391 _____ C:\Users\Denis\Downloads\SexLabFramework.v101b.zip
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:18 - 2013-06-26 12:18 - 00266051 _____ C:\Users\Denis\Downloads\skse_1_06_16_installer.exe
2013-06-26 12:06 - 2012-08-25 22:44 - 00001595 _____ C:\Users\Denis\Desktop\Skyrim.lnk
2013-06-26 12:00 - 2013-06-26 12:01 - 08785718 _____ C:\Users\Denis\Downloads\Animated Prostitution-10748-3-06.7z
2013-06-25 22:48 - 2013-07-07 17:54 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-06-25 22:38 - 2013-06-25 22:40 - 00000000 ____D C:\Users\Denis\Desktop\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED
2013-06-25 21:08 - 2013-06-25 22:38 - 1206656174 _____ C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED (1).rar
2013-06-25 20:12 - 2013-06-25 20:14 - 11584038 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft  64x MC15.zip
2013-06-25 19:58 - 2013-06-25 20:01 - 28616684 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft 128x MC15.zip
2013-06-25 19:57 - 2013-06-25 19:57 - 00377138 _____ C:\Users\Denis\Downloads\OptiFine_1.5.2_HD_U_D5.zip
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-24 17:57 - 2013-06-25 18:11 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 17:49 - 2013-06-24 17:49 - 00156672 _____ (Microsoft) C:\Users\Denis\Downloads\InstallIW4M (1).exe
2013-06-24 17:41 - 2013-06-24 17:42 - 03794238 _____ C:\Users\Denis\Downloads\iw4Clientv1.4.2012d (1).rar
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:39 - 2013-06-24 15:40 - 00000000 ____D C:\Users\Denis\Desktop\Spiele

==================== One Month Modified Files and Folders =======

2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 20:59 - 2013-07-21 20:59 - 01779345 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-21 20:40 - 2013-07-21 19:54 - 00013277 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-21 20:28 - 2013-02-03 20:56 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA.job
2013-07-21 20:16 - 2008-01-01 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-07-21 20:03 - 2013-02-02 16:58 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-21 20:00 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\sru
2013-07-21 19:46 - 2013-07-21 19:43 - 00000000 ____D C:\Users\Denis\AppData\Roaming\iSafe
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:43 - 2013-07-21 19:42 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eDownload
2013-07-21 19:42 - 2013-07-21 19:42 - 00344672 _____ C:\Users\Denis\Downloads\iSafe.exe
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-21 19:23 - 2013-06-11 16:30 - 00001948 _____ C:\WINDOWS\Tasks\Object Browser-chromeinstaller.job
2013-07-21 19:18 - 2013-06-11 16:31 - 00001230 _____ C:\WINDOWS\Tasks\Object Browser-updater.job
2013-07-21 19:18 - 2013-06-11 16:30 - 00001134 _____ C:\WINDOWS\Tasks\Object Browser-enabler.job
2013-07-21 18:55 - 2012-08-05 16:18 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-21 17:00 - 2013-02-02 16:58 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-21 12:27 - 2013-02-03 20:56 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core.job
2013-07-20 18:11 - 2012-08-06 14:53 - 00000000 ____D C:\Users\Denis\AppData\Roaming\TS3Client
2013-07-20 18:06 - 2012-08-02 22:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Skype
2013-07-20 11:13 - 2012-08-03 15:23 - 00000024 _____ C:\Users\Denis\random.dat
2013-07-20 10:30 - 2012-08-03 15:23 - 00000044 _____ C:\Users\Denis\jagex_cl_runescape_LIVE.dat
2013-07-20 09:37 - 2012-07-26 12:27 - 03462926 _____ C:\WINDOWS\system32\perfh007.dat
2013-07-20 09:37 - 2012-07-26 12:27 - 01006054 _____ C:\WINDOWS\system32\perfc007.dat
2013-07-20 09:37 - 2012-07-26 09:28 - 00006988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-07-20 09:31 - 2012-08-04 13:00 - 00000000 ____D C:\Users\Denis\AppData\Local\LogMeIn Hamachi
2013-07-20 09:31 - 2012-08-02 16:41 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-07-20 09:30 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-07-20 09:29 - 2012-07-26 07:26 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:28 - 2013-07-20 09:27 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:28 - 2013-07-20 09:27 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:28 - 2012-01-25 22:13 - 01093032 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2013-07-20 09:28 - 2011-07-18 23:14 - 00972712 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-07-20 09:26 - 2013-07-20 09:25 - 33150376 _____ (Oracle Corporation) C:\Users\Denis\Downloads\jre-7u25-windows-x64.exe
2013-07-19 20:19 - 2012-09-26 12:40 - 00000000 ____D C:\Users\Denis\Documents\FIFA 13
2013-07-19 19:46 - 2012-09-19 12:26 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-18 17:40 - 2012-11-06 01:20 - 00867656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2013-07-18 17:40 - 2012-11-06 01:20 - 00527176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\Users\Denis\AppData\Local\PMB Files
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\ProgramData\PMB Files
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ____D C:\ProgramData\Skype
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Origin
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Local\Origin
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 16:08 - 2013-03-24 19:39 - 00189936 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 01030952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:52 - 2013-07-16 15:51 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-16 15:50 - 2013-07-16 15:48 - 34888568 _____ (Riot Games) C:\Users\Denis\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-15 19:32 - 2012-11-01 22:00 - 00000000 ____D C:\Users\Denis
2013-07-15 15:51 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-07-14 22:27 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Denis\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-14 22:20 - 2013-07-14 22:20 - 02828552 _____ (AVAST Software) C:\Users\Denis\Downloads\avast-browser-cleanup_8.0.1484.29.exe
2013-07-14 13:05 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2013-07-14 11:29 - 2013-02-03 20:58 - 00002368 _____ C:\Users\Denis\Desktop\Google Chrome.lnk
2013-07-13 12:22 - 2013-02-03 20:56 - 00004084 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA
2013-07-13 12:22 - 2013-02-03 20:56 - 00003704 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core
2013-07-12 19:57 - 2012-08-02 21:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\.minecraft
2013-07-10 16:41 - 2012-08-25 21:27 - 00000000 ____D C:\Program Files (x86)\The Elder Scrolls V- Skyrim
2013-07-10 15:24 - 2012-08-25 22:37 - 00000000 ____D C:\Users\Denis\Documents\Nexus Mod Manager
2013-07-10 15:24 - 2012-08-25 21:07 - 00000000 ____D C:\Users\Denis\AppData\Local\Skyrim
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 17:37 - 2013-07-09 17:35 - 38657799 _____ C:\Users\Denis\Downloads\Cube World V2.zip
2013-07-09 17:37 - 2013-07-09 17:35 - 34810001 _____ C:\Users\Denis\Downloads\Cube World V1.rar
2013-07-09 14:28 - 2012-12-27 21:23 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-07-09 14:28 - 2012-12-27 21:23 - 00281520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-07-09 14:28 - 2012-09-20 20:38 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-09 13:39 - 2013-07-09 13:39 - 00317952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-07-09 13:38 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\servicing
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-07-07 21:42 - 2012-10-10 17:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Dropbox
2013-07-07 19:46 - 2012-10-10 17:13 - 00000000 ___RD C:\Users\Denis\Dropbox
2013-07-07 19:18 - 2012-11-01 22:40 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-446083895-2330232980-1348218028-1002
2013-07-07 17:54 - 2013-06-25 22:48 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-07-07 17:54 - 2012-08-25 22:36 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-07-07 17:51 - 2013-02-25 18:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Audacity
2013-07-05 13:24 - 2013-06-11 16:30 - 00000000 ____D C:\Program Files (x86)\Object Browser
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-03 11:44 - 2013-05-26 12:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-02 20:39 - 2013-06-11 16:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\uTorrent
2013-07-02 17:51 - 2013-07-02 15:38 - 00586240 _____ C:\Users\Denis\Downloads\1_Internet-Protokolle.ppt
2013-07-01 16:14 - 2013-07-01 16:09 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:09 - 01120013 _____ C:\Users\Denis\Downloads\Google.pptx
2013-06-30 22:00 - 2013-06-30 21:21 - 117461232 _____ C:\Users\Denis\Downloads\The Nexus (Deluxe).rar
2013-06-30 21:48 - 2013-06-30 21:20 - 121036020 _____ C:\Users\Denis\Downloads\amrnte_amrnte.rar
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:11 - 2013-06-30 12:10 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:43 - 2013-04-01 22:37 - 00000068 _____ C:\Users\Denis\Desktop\Minecraft.bat
2013-06-29 12:41 - 2013-06-29 12:42 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-29 12:41 - 2012-01-25 22:13 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npdeployJava1.dll
2013-06-29 12:41 - 2011-07-18 23:13 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2013-06-29 12:39 - 2013-06-29 12:39 - 00903080 _____ (Oracle Corporation) C:\Users\Denis\Downloads\chromeinstall-7u25.exe
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 20:09 - 2013-06-28 19:16 - 159884183 _____ C:\Users\Denis\Downloads\Bullet For My Valentine - Scream Aim Fire (Deluxe Edition) (2008).rar
2013-06-28 19:43 - 2013-06-28 19:14 - 126003927 _____ C:\Users\Denis\Downloads\BFMV_Fever.2010.rar
2013-06-28 19:14 - 2013-06-28 19:14 - 65059225 _____ C:\Users\Denis\Downloads\BFMV_Temper_Temper_2013.rar
2013-06-28 18:49 - 2012-08-02 22:18 - 00000000 ____D C:\Users\Denis\AppData\Local\Akamai
2013-06-27 19:43 - 2012-10-10 21:09 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Spotify
2013-06-27 18:03 - 2012-10-10 21:10 - 00000000 ____D C:\Users\Denis\AppData\Local\Spotify
2013-06-26 18:37 - 2013-06-26 18:27 - 167641015 _____ C:\Users\Denis\Downloads\TESVSDra181510DeuAud.rar
2013-06-26 18:11 - 2013-06-26 18:11 - 00457617 _____ C:\Users\Denis\Downloads\SexLab_LoversComfort_v20130604.zip
2013-06-26 18:03 - 2013-06-26 18:03 - 00026367 _____ C:\Users\Denis\Downloads\SexLabRomance.7z
2013-06-26 13:56 - 2013-06-26 13:23 - 142299628 _____ C:\Users\Denis\Downloads\TESVSGU13.rar
2013-06-26 13:33 - 2012-08-06 14:52 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 13:22 - 2013-06-26 13:18 - 00000000 ____D C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2013-06-26 13:21 - 2013-06-26 13:21 - 00000160 _____ C:\Users\Denis\Downloads\utorrent(torrent,remote.utorrent.com^2Ftiny^2FxOOAhf).exe
2013-06-26 13:20 - 2013-06-26 13:20 - 00001776 _____ C:\Users\Denis\Downloads\The_Elder_Scrolls_V_Skyrim_Update_13_1.9.32.0.8_F_r_die_Deutsche_Version_-fowf4kmfy68pl.dlc
2013-06-26 13:18 - 2013-06-11 16:31 - 00004234 _____ C:\WINDOWS\System32\Tasks\Object Browser-updater
2013-06-26 13:18 - 2013-06-11 16:30 - 00004138 _____ C:\WINDOWS\System32\Tasks\Object Browser-enabler
2013-06-26 13:16 - 2013-06-26 13:16 - 01045072 _____ (BitTorrent Inc.) C:\Users\Denis\Downloads\utorrent_3.3.0.29677.exe
2013-06-26 12:29 - 2013-06-26 12:25 - 68829391 _____ C:\Users\Denis\Downloads\SexLabFramework.v101b.zip
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:18 - 2013-06-26 12:18 - 00266051 _____ C:\Users\Denis\Downloads\skse_1_06_16_installer.exe
2013-06-26 12:01 - 2013-06-26 12:00 - 08785718 _____ C:\Users\Denis\Downloads\Animated Prostitution-10748-3-06.7z
2013-06-25 22:40 - 2013-06-25 22:38 - 00000000 ____D C:\Users\Denis\Desktop\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED
2013-06-25 22:38 - 2013-06-25 21:08 - 1206656174 _____ C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED (1).rar
2013-06-25 20:14 - 2013-06-25 20:12 - 11584038 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft  64x MC15.zip
2013-06-25 20:01 - 2013-06-25 19:58 - 28616684 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft 128x MC15.zip
2013-06-25 19:57 - 2013-06-25 19:57 - 00377138 _____ C:\Users\Denis\Downloads\OptiFine_1.5.2_HD_U_D5.zip
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-25 18:11 - 2013-06-24 17:57 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 18:01 - 2013-06-17 12:26 - 00001156 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play IW4M (Modern Warfare 2).lnk
2013-06-24 18:01 - 2013-06-17 12:26 - 00000000 ____D C:\Users\Denis\AppData\Local\IW4M
2013-06-24 17:49 - 2013-06-24 17:49 - 00156672 _____ (Microsoft) C:\Users\Denis\Downloads\InstallIW4M (1).exe
2013-06-24 17:42 - 2013-06-24 17:41 - 03794238 _____ C:\Users\Denis\Downloads\iw4Clientv1.4.2012d (1).rar
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:40 - 2013-06-24 15:39 - 00000000 ____D C:\Users\Denis\Desktop\Spiele
2013-06-23 20:20 - 2012-10-22 18:01 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2013-07-21 20:02

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2013
Ran by Denis at 2013-07-21 21:02:38
Running from C:\Users\Denis\Desktop\FRST
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
Adobe AIR (x32 Version: 3.2.0.2070)
Adobe Bridge 1.0 (x32 Version: 001.000.001)
Adobe Common File Installer (x32 Version: 1.00.001)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Help Center 1.0 (x32 Version: 1.0.1)
Adobe Photoshop CS2 (x32 Version: 9.0)
Adobe Reader X (10.1.6) MUI (x32 Version: 10.1.6)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1)
Age of Empire 2 HD Edition GERMAN (c) Microsoft version 1 (x32 Version: 1)
Akamai NetSession Interface (HKCU)
Akamai NetSession Interface (x32)
AMD Accelerated Video Transcoding (Version: 12.5.100.20928)
AMD APP SDK Runtime (Version: 10.0.1016.4)
AMD AVIVO64 Codecs (Version: 12.2.0.20329)
AMD Catalyst Install Manager (Version: 8.0.891.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0928.1532.26058)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
AMD Steady Video Plug-In  (Version: 2.06.0000)
AMD VISION Engine Control Center (x32 Version: 2012.0928.1532.26058)
applicationupdater (HKCU)
Ashampoo Burning Studio (x32 Version: 10.0.10)
Ashampoo Burning Studio 10.0.1 (x32 Version: 10.0.1)
Audacity 2.0.3 (x32 Version: 2.0.3)
AutoHotkey 1.0.48.05 (x32 Version: 1.0.48.05)
avast! Free Antivirus (x32 Version: 8.0.1489.0)
Battlefield 3™ (x32 Version: 1.4.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
BattlEye for OA Uninstall (x32)
BF3 Borderless (Version: 1.2)
Borderlands 2 (x32)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Black Ops II - Zombies (x32)
Call of Duty: Black Ops II (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center InstallProxy (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center Localization All (x32 Version: 2012.0928.1532.26058)
CCC Help Chinese Standard (x32 Version: 2012.0928.1531.26058)
CCC Help Chinese Traditional (x32 Version: 2012.0928.1531.26058)
CCC Help Czech (x32 Version: 2012.0928.1531.26058)
CCC Help Danish (x32 Version: 2012.0928.1531.26058)
CCC Help Dutch (x32 Version: 2012.0928.1531.26058)
CCC Help English (x32 Version: 2012.0928.1531.26058)
CCC Help Finnish (x32 Version: 2012.0928.1531.26058)
CCC Help French (x32 Version: 2012.0928.1531.26058)
CCC Help German (x32 Version: 2012.0928.1531.26058)
CCC Help Greek (x32 Version: 2012.0928.1531.26058)
CCC Help Hungarian (x32 Version: 2012.0928.1531.26058)
CCC Help Italian (x32 Version: 2012.0928.1531.26058)
CCC Help Japanese (x32 Version: 2012.0928.1531.26058)
CCC Help Korean (x32 Version: 2012.0928.1531.26058)
CCC Help Norwegian (x32 Version: 2012.0928.1531.26058)
CCC Help Polish (x32 Version: 2012.0928.1531.26058)
CCC Help Portuguese (x32 Version: 2012.0928.1531.26058)
CCC Help Russian (x32 Version: 2012.0928.1531.26058)
CCC Help Spanish (x32 Version: 2012.0928.1531.26058)
CCC Help Swedish (x32 Version: 2012.0928.1531.26058)
CCC Help Thai (x32 Version: 2012.0928.1531.26058)
CCC Help Turkish (x32 Version: 2012.0928.1531.26058)
ccc-utility64 (Version: 2012.0928.1532.26058)
CCleaner (Version: 3.22)
Cheat Engine 6.2 (x32)
Counter-Strike: Global Offensive (x32)
D3DX10 (x32 Version: 15.4.2368.0902)
Der Herr der Ringe Online v03.07.00.8037 (x32 Version: 03.07.00.8037)
Dishonored German (c) Bethesda version 1 (x32 Version: 1)
Dota 2 (x32)
Dropbox (HKCU Version: 2.0.22)
ESN Sonar (x32 Version: 0.70.4)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922)
Free Windows Tuner v2.0.0.6 (x32 Version: 2.0.0.6)
Free YouTube to MP3 Converter version 3.11.34.1015 (x32 Version: 3.11.34.1015)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922)
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922)
Game Booster 3 (x32 Version: 3.4)
gamelauncher-ps2-live (HKCU)
GIF Viewer 3.0 (x32 Version: 3.0)
GIMP 2.8.2 (Version: 2.8.2)
Google Chrome (HKCU Version: 28.0.1500.72)
Google Update Helper (x32 Version: 1.3.21.123)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java(TM) 6 Update 26 (x32 Version: 6.0.260)
Java(TM) 6 Update 45 (64-bit) (Version: 6.0.450)
Java(TM) 6 Update 45 (x32 Version: 6.0.450)
JDownloader 0.9 (x32 Version: 0.9)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (x32 Version: 15.4.5722.2)
LAME v3.99.3 (for Windows) (x32)
League of Legends (x32 Version: 3.0.1)
Left 4 Dead 2 (x32)
LibreOffice 3.6 (x32 Version: 3.6.1.1)
Loadout (x32)
LogMeIn Hamachi (x32 Version: 2.1.0.362)
LogMeIn Hamachi (x32 Version: 2.1.0.374)
Magic Workstation 0.94f (x32)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (x32 Version: 3.5.0.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
MotioninJoy Gamepad tool 0.7.0000 (Version: 0.7.0000)
Mp3tag v2.51 (x32 Version: v2.51)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MTG Card Images for Magic Workstation (x32)
MTG GamePack for Magic Workstation (x32)
MyDefrag v4.3.1 (Version: 4.0.0.0)
Native Instruments Guitar Rig Mobile I/O (Version: 3.0.0.625)
Native Instruments Guitar Rig Session I/O (Version: 3.0.0.625)
Neverwinter (x32)
Notepad++ (x32 Version: 6.2)
NVIDIA PhysX (x32 Version: 9.11.1111)
Object Browser (x32 Version: 1.27.153.6)
OpenTTD 1.2.3 (x32 Version: 1.2.3)
Origin (x32 Version: 9.0.11.77)
Pando Media Booster (x32 Version: 2.6.0.7)
PlanetSide 2 (HKCU Version: 1.0.3.181)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922)
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922)
Pošta Windows Live (x32 Version: 15.4.3502.0922)
PunkBuster Services (x32 Version: 0.993)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922)
Realtek Ethernet Controller Driver (x32 Version: 8.7.1025.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6591)
Resource Hacker Version 3.6.0 (x32)
ReValver Mk IIIdotV x64
Rise And Fall (remove only) (x32 Version: 1.7.0.11.2.4.3)
RuneScape Launcher 1.2.2 (x32 Version: 1.2.2)
S4 League_EU (x32 Version: 1.00.0000)
Sacred 2 - Fallen Angel (x32 Version: 2.43.0.0)
Search Protection (HKCU Version: 7.3.0.3)
Sid Meier's Railroad Tycoon (x32 Version: 1.0)
Skype™ 6.6 (x32 Version: 6.6.106)
Source SDK (x32)
Source SDK Base 2007 (x32)
Spelling Dictionaries Support For Adobe Reader X (x32 Version: 10.0.0)
Spotify (HKCU Version: 0.9.1.53.g876fa9df)
SRWare Iron Version 23.0.1300.0 (x32 Version: 23.0.1300.0)
Steam (x32 Version: 1.0.0.0)
swMSM (x32 Version: 12.0.0.1)
TeamSpeak 3 Client (x32 Version: 3.0.10.1)
Terraria (x32)
The Elder Scrolls V Hearthfire DLC für die DEU & ENG Version 1.00 (x32)
The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (x32 Version: 1)
The Elder Scrolls V Skyrim Update 11 (1.8.151.0.7) Deutsche Version 1.00 (x32)
The Elder Scrolls V Skyrim Update 13 (1.9.32.0.8) Deutsche Version 1.9.32.0.8 (x32 Version: 1.9.32.0.8)
The Walking Dead (c) 3 version 1 (x32 Version: 1)
The War Z version alpha (x32 Version: alpha)
Tunngle beta (x32)
us Mod Manager (Version: 0.45.2)
VirtualCloneDrive (x32)
watchmi (x32 Version: 3.0.0)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3538.0513)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922)
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922)
Windows Live Fotótár (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (x32 Version: 15.4.5722.2)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922)
Windows Liven sähköposti (x32 Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
Wsys Control 1.0.0.2557 (x32 Version: 1.0.0.2557)
YGOPro DevPro Version 1.8.6 (x32 Version: 1.8.6)
Yontoo 1.10.02 (Version: 1.10.02)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922)

==================== Restore Points  =========================


==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0822694E-A448-4AF1-B3A8-378124B3DA4C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe No File
Task: {097C36B8-81DC-4BEA-919A-FD1C4C233811} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe No File
Task: {10D85952-E3F6-47A1-96CF-5E1C2D874EA6} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [2012-07-26] (Microsoft Corporation)
Task: {13A2AC02-B682-48CC-9155-2E2673580117} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical
Task: {151CEA63-D3BB-447F-B4A2-7A737A7F9409} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup
Task: {17644F17-DC4C-4AC8-9444-7AAA52EB5CDC} - System32\Tasks\Microsoft\Windows\NetCfg\BindingWorkItemQueueHandler
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {1DB7C2F1-876C-4F24-AD17-8428211113F9} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
Task: {214B24F4-FEB4-4C59-AF1F-70136065199C} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance
Task: {23700E5C-0E77-499D-908A-415D5C6252F4} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {2C6B9EA8-7F5A-4ABA-BF96-8D352D02A743} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh
Task: {2E030FA7-3D7C-4E1D-8CFE-56ADB26FD402} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks
Task: {3054485A-F517-4E95-9977-4DD827B1E9B3} - System32\Tasks\Microsoft\Windows\WS\Badge Update
Task: {378401BA-A703-444A-A79C-3C47AD2DC5B6} - System32\Tasks\Microsoft\Windows\TaskScheduler\Maintenance Configurator
Task: {38E3C68A-A3A2-4FDD-AC07-9F4869909198} - System32\Tasks\Google Updater and Installer => C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-03] (Google Inc.)
Task: {3AE164E7-30CD-40BC-9422-3EC7A5618965} - System32\Tasks\Microsoft\Windows\WS\WSTask
Task: {3B6A2309-D4C0-4A87-B670-CF5B8479F344} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe No File
Task: {3C490ABD-D849-41AF-9AC4-87DD759B0996} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
Task: {4073C1B3-6E16-4AA8-B7F3-C6A6D35D5071} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance
Task: {44B3F1B8-5943-4072-8D8C-A9484676AC44} - System32\Tasks\Microsoft\Windows\Live\Roaming\SynchronizeWithStorage
Task: {45B409AD-034D-4F23-A99B-072DEF830C85} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe No File
Task: {483A8F5C-5D26-44B5-B49E-AF6741D1BBEB} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [2012-07-26] (Microsoft Corporation)
Task: {4B952129-9AE9-41A3-BE2B-8AD2E06F66B6} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon
Task: {5755E746-D7ED-4C20-A472-66C11834CDE4} - System32\Tasks\Microsoft\Windows\TaskScheduler\Manual Maintenance
Task: {582CE772-BC1A-4AAE-95A9-612E3F71F407} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe No File
Task: {5C4EFB77-EFA6-45DF-A373-D795C0725BFF} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required
Task: {627441F3-8526-4B62-BF9A-1A3EA414E71A} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [2012-07-26] (Microsoft Corporation)
Task: {66700F3D-2ABE-4082-87B8-8D546CAE53C0} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {67A8CAD0-1E16-4AF0-97F7-E9EC58B3566D} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {6E9DE125-5583-4031-B572-FEE48F25CFFF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [2012-09-20] (Microsoft Corporation)
Task: {6EEB0B6C-C20F-4667-81D5-E404303E855F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUScheduledInstall
Task: {6FDDEA7C-6310-428D-AEB2-54FFC72811EF} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319
Task: {72599636-6B30-44B6-B333-5E6D711657E3} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2012-07-26] (Microsoft Corporation)
Task: {72BBEF92-3230-482B-BB2E-2D66919CAE87} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe No File
Task: {74096F94-B654-4DB0-96F5-3C3408B92FE3} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update
Task: {792D83EE-A59C-45F3-BBC1-533015BB1839} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] ()
Task: {7D9A9A1C-499C-40A6-8F8A-5BCC4CC9A87C} - System32\Tasks\Microsoft\Windows\TaskScheduler\Regular Maintenance
Task: {7DDEF4DB-D8BB-4FC9-8A04-D7F195252FD3} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\WINDOWS\system32\sc.exe [2012-07-26] (Microsoft Corporation)
Task: {803D698F-2E53-48EF-875C-2278DF667F47} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe No File
Task: {81C9863B-7FA7-4B5B-8724-6D0B80E88929} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe No File
Task: {845CB020-68B5-4C6B-9876-7BEC7B3E27AC} - System32\Tasks\Microsoft\Windows\TaskScheduler\Idle Maintenance
Task: {85E33E5D-142F-433F-B9CB-06528CBB855C} - System32\Tasks\Object Browser-enabler => C:\Program Files (x86)\Object Browser\Object Browser-enabler.exe [2013-06-26] (Object Browser)
Task: {87354DAA-66DF-4B41-9346-15958D96E1D2} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode)
Task: {8B06F82D-A2F9-4620-B1CD-9FE4061DC117} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe No File
Task: {8D8A17FE-9F17-4BFA-9CA3-A649D0B569CB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11] (Adobe Systems Incorporated)
Task: {921A1D4E-32FB-46D7-B6C0-6F467884074D} - System32\Tasks\Microsoft\Windows\WS\Sync Licenses
Task: {9479EF8E-11D4-41B3-9783-CC65070D592D} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime
Task: {94DCF254-64FB-4C4E-8E12-5F4055C10C2A} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64
Task: {989A7C6D-BE82-4C3C-AF96-6116039E336B} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
Task: {9BF53EAA-821D-435B-9855-D65E360CA7BE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd)
Task: {9E5E2154-A2AF-40EB-A712-F1B90B1A9FBD} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] ()
Task: {9F059E43-080E-4B93-8146-9E7366A1CE72} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUSessionConnect
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => C:\Windows\System32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {A800277E-E202-4492-AD38-3312641CBC04} - System32\Tasks\Microsoft\Windows\Live\Roaming\MaintenanceTask
Task: {AB62FA47-2C99-44B1-A5D0-D4161423BE43} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefresh
Task: {AC6259DE-AC59-459E-849E-6ADFFD1ADE63} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask
Task: {AD7FAB58-15DC-4E7D-A4E1-60EE5974B9B7} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe No File
Task: {AEB0B5BD-B9E5-458A-898A-E559BD9EB51B} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask
Task: {AF324FF8-7416-4032-BC05-DAB757FBD5EF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {AF420AC6-CA29-4854-8452-097F3807D77A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe No File
Task: {AF549BD8-337C-4BF7-8681-36A182E30507} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan
Task: {B1739FE7-EE66-45A4-B3C9-1D5094C77A1D} - System32\Tasks\DealPly => C:\Users\Denis\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE [2013-02-27] ()
Task: {B22FAA65-9C94-4F73-AC63-750D5B4F48CE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA => C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-03] (Google Inc.)
Task: {B34E50F8-0F4A-48E3-A62F-9875AD96D84B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\AUFirmwareInstall
Task: {B5F353CE-6293-49C1-8158-8E7C22EB387F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe No File
Task: {BA8A1687-2AA6-4187-B761-09BACC7A7438} - System32\Tasks\Object Browser-updater => C:\Program Files (x86)\Object Browser\Object Browser-updater.exe [2013-06-26] (Object Browser)
Task: {BB1B0091-F0A8-41C9-B96D-584FAC3D035E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe No File
Task: {BC76AEF7-2CF0-4EB6-B65B-A8803E0B5E12} - System32\Tasks\Microsoft\Windows\AppID\SmartScreenSpecific
Task: {BD2B3A81-5556-404C-80F1-DD22E14AB662} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe No File
Task: {BDBDC914-38F2-46FF-BD95-416907B1EE4B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe No File
Task: {C1ACCD1E-4385-4FB2-B5E4-7F2A57A626A2} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan
Task: {C463FD1E-31C7-4C20-AB65-08E514CA152D} - System32\Tasks\Microsoft\Windows\IME\SQM data sender
Task: {C563629E-5497-4215-BC3B-DD04C07296C4} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe No File
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {C866EDFC-5C92-4E52-AFE6-FD54B250C188} - System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-446083895-2330232980-1348218028-1002
Task: {CCD1963F-9C59-4686-AC1B-2DCDF36F512C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe No File
Task: {CD1054FF-8005-4904-8B9C-436EAB1E2021} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork
Task: {D02F989B-8E7C-43AB-9774-4E63832ADC84} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core => C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-03] (Google Inc.)
Task: {D235757B-1316-482F-B30C-719AB650CF05} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe No File
Task: {D24F4A6C-D68F-4228-A0D3-396DBF5E0385} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe No File
Task: {D5C10D27-4C5B-4CE5-A1D8-0035FCF41B3E} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2013-06-08] ()
Task: {D6BDD73A-E61D-4BC5-A3B1-DDEA50ADEDA0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe No File
Task: {DBCF6E1B-CE0A-441E-B7A5-219C8BE50C65} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical
Task: {DECE5921-598D-454B-9A04-B2DE95EFC1B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery
Task: {E0A2C520-6FE9-4E4E-95C8-33B4BE9805D0} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe No File
Task: {E4DFE66F-E089-4CC3-A70F-957223D565F4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
Task: {E6127866-8945-4453-B377-341872E47C62} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe No File
Task: {E7B4AEAF-81A4-46DA-8FF3-81E9B426771A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe No File
Task: {E8DAA09B-DF2A-4951-9134-6FA9587793F9} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [2012-09-20] (Microsoft Corporation)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [2012-07-26] (Microsoft Corporation)
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM
Task: {EDCBC82A-6F80-4802-BADA-9E31595766CC} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe No File
Task: {F0BD0592-FDCA-4385-84FC-E0BD7AFC8AA7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe No File
Task: {F9F5D297-5336-41EC-9521-4D84DBED96F6} - System32\Tasks\Object Browser-chromeinstaller => C:\Program Files (x86)\Object Browser\Object Browser-chromeinstaller.exe [2013-06-26] (Object Browser)
Task: {FFE3FD50-646E-4A64-913B-23C4187E6025} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync
Task: {FFE492AA-B987-4727-B540-F7FC9D6D4F79} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2012-09-20] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core.job => C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA.job => C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Object Browser-chromeinstaller.job => C:\Program Files (x86)\Object Browser\Object Browser-chromeinstaller.exe
Task: C:\WINDOWS\Tasks\Object Browser-enabler.job => C:\Program Files (x86)\Object Browser\Object Browser-enabler.exe
Task: C:\WINDOWS\Tasks\Object Browser-updater.job => C:\Program Files (x86)\Object Browser\Object Browser-updater.exe

==================== Faulty Device Manager Devices =============

Name: WAN-Miniport (IP)
Description: WAN-Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Win32 Adapter V9 (Tunngle)
Description: TAP-Win32 Adapter V9 (Tunngle)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Win32 Provider V9 (Tunngle)
Service: tap0901t
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN-Miniport (IPv6)
Description: WAN-Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: WAN-Miniport (Netzwerkmonitor)
Description: WAN-Miniport (Netzwerkmonitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter
Description: Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconductor Corp.
Service: RTL8192su
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/21/2013 05:00:25 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (07/19/2013 06:48:48 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (07/18/2013 07:58:39 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.

Error: (07/17/2013 03:58:56 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SearchProtection.exe, Version: 7.3.0.3, Zeitstempel: 0x519cbea6
Name des fehlerhaften Moduls: SearchProtection.exe, Version: 7.3.0.3, Zeitstempel: 0x519cbea6
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001b70f
ID des fehlerhaften Prozesses: 0x2310
Startzeit der fehlerhaften Anwendung: 0xSearchProtection.exe0
Pfad der fehlerhaften Anwendung: SearchProtection.exe1
Pfad des fehlerhaften Moduls: SearchProtection.exe2
Berichtskennung: SearchProtection.exe3
Vollständiger Name des fehlerhaften Pakets: SearchProtection.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SearchProtection.exe5


System errors:
=============
Error: (07/21/2013 08:25:37 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (07/20/2013 09:30:43 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AppEx Networks Accelerator LWF" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (07/20/2013 09:30:03 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/19/2013 10:56:31 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AppEx Networks Accelerator LWF" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (07/19/2013 10:55:44 AM) (Source: Microsoft-Windows-Kernel-General) (User: NT-AUTORITÄT)
Description: 0xc000014d0

Error: (07/16/2013 10:31:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (07/16/2013 10:31:01 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (07/16/2013 07:13:23 PM) (Source: DCOM) (User: DENIS-PC)
Description: {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}

Error: (07/16/2013 03:50:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (07/16/2013 03:50:21 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.


Microsoft Office Sessions:
=========================
Error: (07/21/2013 05:00:25 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F2030000E5050000

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000

Error: (07/20/2013 09:37:33 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000

Error: (07/19/2013 06:48:48 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F2030000E5050000

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000

Error: (07/19/2013 11:03:35 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000

Error: (07/18/2013 07:58:39 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d

Error: (07/17/2013 03:58:56 PM) (Source: Application Error)(User: )
Description: SearchProtection.exe7.3.0.3519cbea6SearchProtection.exe7.3.0.3519cbea6c00000050001b70f231001ce82f4dc3156a8C:\Users\Denis\AppData\Roaming\Search Protection\SearchProtection.exeC:\Users\Denis\AppData\Roaming\Search Protection\SearchProtection.exe04fce46b-eee9-11e2-becd-8c89a5e0bc15


CodeIntegrity Errors:
===================================
  Date: 2012-11-02 09:05:15.928
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:14.863
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:13.847
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:12.826
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:08.993
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:07.831
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:06.797
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-02 09:05:05.737
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Percentage of memory in use: 70%
Total physical RAM: 3561.07 MB
Available physical RAM: 1050.59 MB
Total Pagefile: 7145.07 MB
Available Pagefile: 3899.62 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:880.41 GB) (Free:475.6 GB) NTFS (Disk=0 Partition=2)
Drive d: (Recover) (Fixed) (Total:50 GB) (Free:4.43 GB) NTFS (Disk=0 Partition=3)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: DAD0363C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=880 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)

==================== End Of Log ============================
         
Hier ist der Log von Malwarebytes:
Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.07.21.06

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16599
Denis :: DENIS-PC [Administrator]

21.07.2013 19:50:43
mbam-log-2013-07-21 (19-50-43).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|G:\|H:\|I:\|K:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 672835
Laufzeit: 1 Stunde(n), 56 Minute(n), 8 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         
Wie erwartet wurde nichts gefunden. Schade... Was kann ich noch so machen, ich bitte um Hilfe
__________________

Alt 21.07.2013, 21:32   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.07.2013, 22:18   #5
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Danke für die hilfe. hier ist der log von adw:
Code:
ATTFilter
# Option [Löschen]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gelöscht : C:\user.js
Gelöscht mit Neustart : C:\ProgramData\eSafe
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Partner
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\Denis\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Denis\AppData\Roaming\DealPly
Ordner Gelöscht : C:\Users\Denis\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Denis\AppData\Roaming\eDownload
Ordner Gelöscht : C:\Users\Denis\AppData\Roaming\search protection
Ordner Gelöscht : C:\WINDOWS\SysWOW64\BrowserProtect

***** [Registrierungsdatenbank] *****

Schlüssel Gelöscht : HKCU\Software\1ClickDownload
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKCU\Software\BabylonToolbar
Schlüssel Gelöscht : HKCU\Software\BI
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\InstalledBrowserExtensions
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\596da8ab76fbf41
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\eSafeSecControl
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Tarma Installer
Schlüssel Gelöscht : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]

***** [Internet Browser] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Google Chrome v28.0.1500.72

Datei : C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Die Datei ist sauber.

-\\ Chromium v    _signature: ZEE6wqcNKQJ54DJS81QbM8+ha3UmQdb97V2tjE419sU=

Datei : C:\Users\Denis\AppData\Local\Chromium\User Data\Default\Preferences

[OK] Die Datei ist sauber.

*************************

AdwCleaner[S1].txt - [8752 octets] - [21/07/2013 23:03:46]

########## EOF - C:\AdwCleaner[S1].txt - [8812 octets] ##########
         
JRT folgt gleich

hier JRT
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.1.9 (07.20.2013:3)
OS: Windows 8 Pro x64
Ran by Denis on 21.07.2013 at 23:10:18.13
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\searchprotection



~~~ Registry Keys

Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\esafeseccontrol
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim



~~~ Files

Failed to delete: [File] C:\eula.1028.txt
Failed to delete: [File] C:\eula.1031.txt
Failed to delete: [File] C:\eula.1033.txt
Failed to delete: [File] C:\eula.1036.txt
Failed to delete: [File] C:\eula.1040.txt
Failed to delete: [File] C:\eula.1041.txt
Failed to delete: [File] C:\eula.1042.txt
Failed to delete: [File] C:\eula.2052.txt
Failed to delete: [File] C:\install.res.1028.dll
Failed to delete: [File] C:\install.res.1031.dll
Failed to delete: [File] C:\install.res.1033.dll
Failed to delete: [File] C:\install.res.1036.dll
Failed to delete: [File] C:\install.res.1040.dll
Failed to delete: [File] C:\install.res.1041.dll
Failed to delete: [File] C:\install.res.1042.dll
Failed to delete: [File] C:\install.res.2052.dll
Failed to delete: [File] C:\install.res.3082.dll



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\esafe"
Successfully deleted: [Folder] "C:\Users\Denis\AppData\Roaming\isafe"
Failed to delete: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Denis\appdata\local\{59D1B12C-FF86-4370-A1BA-A6CA9ECEAD63}
Successfully deleted: [Empty Folder] C:\Users\Denis\appdata\local\{5FB23C06-46DE-4EAA-9755-B06EC21DEE0A}
Successfully deleted: [Empty Folder] C:\Users\Denis\appdata\local\{95CFA519-4BCE-4259-BE8C-5537F17BDAA4}
Successfully deleted: [Empty Folder] C:\Users\Denis\appdata\local\{C646D28D-FA3B-4787-8C4F-E7BFD4A7098E}
Successfully deleted: [Empty Folder] C:\Users\Denis\appdata\local\{ECC75216-13BF-4DE8-B082-8A225490F953}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21.07.2013 at 23:13:33.73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
Und FRST:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-07-2013
Ran by Denis (administrator) on 21-07-2013 23:14:29
Running from C:\Users\Denis\Desktop\FRST
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\WINDOWS\system32\atiesrxx.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Wsys Co., Ltd.) C:\ProgramData\eSafe\eGdpSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4396.1016_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452968 2012-03-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3549528 2013-07-16] (Electronic Arts)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Denis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-06-27] (Spotify Ltd)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1672616 2013-07-10] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19876456 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Spotify] - C:\Users\Denis\AppData\Roaming\Spotify\spotify.exe [4643328 2013-06-27] (Spotify Ltd)
MountPoints2: K - "K:\setup.exe" 
MountPoints2: {b24643dc-eea1-11e1-a1ec-8c89a5e0bc15} - "K:\setup.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-06-28] (LogMeIn Inc.)
HKLM-x32\...\Run: [YTDownloader] - "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot [x]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\watchmi tray.lnk
ShortcutTarget: watchmi tray.lnk -> C:\Windows\Installer\{F0559C5E-7912-4391-B1A0-6B975F0E5064}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe (Acresso Software Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Denis\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyServer: scorpion.premiumize.me:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {9C63174C-4ED2-4D45-82CF-484D25760093} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Denis\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (FB Refresh) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0
CHR Extension: (YouTube Options) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdokagampppgbnjfdlkfpphniapiiifn\1.8.125_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (avast! Online Security) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Akatsuki Clouds) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgankgbmohecnigpfaimapoedpabiojf\1.0.0.3_0
CHR Extension: (Facebook Ads Hider) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\leeebdddeggoocipdjiokmjcpidnmoah\1.2.5_0

==================== Services (Whitelisted) =================

S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-15] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-28] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [744856 2012-11-14] (Tunngle.net GmbH)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2012-01-31] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [376896 2013-07-21] (Wsys Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-16] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-16] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-16] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-21] (Advanced Micro Devices)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S2 APXACC; \SystemRoot\system32\DRIVERS\appexDrv.sys [x]
U3 idsvc; 
S3 X6va008; \??\C:\WINDOWS\SysWOW64\Drivers\X6va008 [x]
S3 X6va011; \??\C:\WINDOWS\SysWOW64\Drivers\X6va011 [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:06 - 2013-07-21 23:06 - 00001814 _____ C:\WINDOWS\PFRO.log
2013-07-21 23:03 - 2013-07-21 23:04 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:03 - 2013-07-21 23:04 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 22:34 - 2013-07-21 22:40 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 22:07 - 2013-07-21 23:06 - 00044216 _____ C:\WINDOWS\setupact.log
2013-07-21 22:07 - 2013-07-21 22:07 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-07-21 21:00 - 2013-07-21 23:14 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 20:59 - 2013-07-21 20:59 - 01779345 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-21 19:54 - 2013-07-21 20:40 - 00013277 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00344672 _____ C:\Users\Denis\Downloads\iSafe.exe
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:27 - 2013-07-20 09:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:27 - 2013-07-20 09:28 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:25 - 2013-07-20 09:26 - 33150376 _____ (Oracle Corporation) C:\Users\Denis\Downloads\jre-7u25-windows-x64.exe
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:51 - 2013-07-16 15:52 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-16 15:48 - 2013-07-16 15:50 - 34888568 _____ (Riot Games) C:\Users\Denis\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-07-14 22:27 - 2013-07-14 22:28 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Denis\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-14 22:20 - 2013-07-14 22:20 - 02828552 _____ (AVAST Software) C:\Users\Denis\Downloads\avast-browser-cleanup_8.0.1484.29.exe
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 17:35 - 2013-07-09 17:37 - 38657799 _____ C:\Users\Denis\Downloads\Cube World V2.zip
2013-07-09 17:35 - 2013-07-09 17:37 - 34810001 _____ C:\Users\Denis\Downloads\Cube World V1.rar
2013-07-09 13:39 - 2013-07-09 13:39 - 00317952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-07-09 13:38 - 2013-06-05 00:09 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-07-09 13:38 - 2013-06-05 00:09 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-07 17:12 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-07-07 17:12 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-07-07 17:12 - 2013-05-04 09:34 - 00213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-07-07 17:12 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2013-07-07 17:12 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2013-07-07 17:12 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2013-07-07 17:12 - 2013-03-02 04:45 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-07-07 17:11 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-07-07 17:11 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-07-07 17:11 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-07-07 17:11 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-07-07 17:11 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2013-07-07 17:11 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2013-07-07 17:11 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2013-07-07 17:11 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-07-07 17:11 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-07-07 17:11 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2013-07-07 17:11 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-07-07 17:11 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:48 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-07-07 17:11 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2013-07-07 17:11 - 2013-05-03 00:04 - 00386646 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-07-07 17:11 - 2013-03-02 12:57 - 00337128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-07-07 17:11 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2013-07-07 17:11 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2013-07-07 17:10 - 2013-03-02 12:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2013-07-07 17:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00194792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00148712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00125160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00495336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00327912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-07-07 17:10 - 2013-03-02 10:23 - 01338880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 05091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:45 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2013-07-07 17:10 - 2013-03-02 04:44 - 05978624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2013-07-07 17:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2013-07-07 17:09 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2013-07-07 17:09 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2013-07-07 17:08 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2013-07-07 17:08 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2013-07-07 17:08 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2013-07-07 17:08 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll
2013-07-07 17:08 - 2013-04-09 07:17 - 01829408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-07-07 17:08 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2013-07-07 17:08 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2013-07-07 17:08 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2013-07-07 17:08 - 2013-04-09 04:35 - 04038144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-07-07 17:08 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-07-07 17:08 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-07-07 17:08 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2013-07-07 17:08 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-07-07 17:08 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2013-07-07 17:08 - 2013-04-09 01:39 - 01408896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2013-07-07 17:08 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-07-07 17:08 - 2013-03-30 20:16 - 01403784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-07-07 17:08 - 2013-03-30 20:16 - 01267424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-07-07 17:08 - 2013-03-29 00:09 - 01217328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-07-07 17:08 - 2013-03-29 00:09 - 01093880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-07-07 17:08 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2013-07-07 17:08 - 2013-03-02 04:43 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-07-07 17:07 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2013-07-07 17:07 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2013-07-07 17:07 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2013-07-07 17:07 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2013-07-07 17:07 - 2013-04-08 23:52 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2013-07-07 17:07 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-07-07 17:07 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2013-07-07 17:07 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2013-07-07 17:02 - 2013-04-16 04:34 - 01455368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-07-07 17:01 - 2013-05-16 00:35 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-07-07 17:01 - 2013-05-04 09:45 - 02233600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-07-07 17:01 - 2013-04-27 07:20 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2013-07-07 17:01 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2013-07-07 17:01 - 2013-04-24 01:12 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-07-07 17:01 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2013-07-07 17:01 - 2013-04-24 00:55 - 01889280 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-07-07 17:01 - 2013-04-11 08:40 - 06987528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-07-07 17:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2013-07-07 17:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2013-07-07 17:01 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-07-07 17:01 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-07-07 17:01 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2013-07-07 17:01 - 2013-03-06 09:10 - 00112872 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2013-07-07 17:01 - 2013-03-06 08:31 - 19758592 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-07-07 17:01 - 2013-03-06 08:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-07-07 17:01 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-07-07 17:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2013-07-07 17:01 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-07-07 17:01 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2013-07-07 17:00 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2013-07-07 17:00 - 2013-05-16 00:36 - 14320640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 19230720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2013-07-07 17:00 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-07-07 17:00 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-07-07 17:00 - 2013-04-29 00:30 - 13760512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 02877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 02046976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-07-07 17:00 - 2013-04-29 00:30 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 03958784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 02241024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-07-07 17:00 - 2013-04-29 00:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-07-07 17:00 - 2013-04-29 00:27 - 15404544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-07-07 17:00 - 2013-04-29 00:27 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-07-07 17:00 - 2013-04-29 00:27 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2013-07-07 17:00 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-02 15:38 - 2013-07-02 17:51 - 00586240 _____ C:\Users\Denis\Downloads\1_Internet-Protokolle.ppt
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:14 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:09 - 2013-07-01 16:09 - 01120013 _____ C:\Users\Denis\Downloads\Google.pptx
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 21:21 - 2013-06-30 22:00 - 117461232 _____ C:\Users\Denis\Downloads\The Nexus (Deluxe).rar
2013-06-30 21:20 - 2013-06-30 21:48 - 121036020 _____ C:\Users\Denis\Downloads\amrnte_amrnte.rar
2013-06-30 12:10 - 2013-06-30 12:11 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:42 - 2013-06-29 12:41 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:39 - 2013-06-29 12:39 - 00903080 _____ (Oracle Corporation) C:\Users\Denis\Downloads\chromeinstall-7u25.exe
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 19:16 - 2013-06-28 20:09 - 159884183 _____ C:\Users\Denis\Downloads\Bullet For My Valentine - Scream Aim Fire (Deluxe Edition) (2008).rar
2013-06-28 19:14 - 2013-06-28 19:43 - 126003927 _____ C:\Users\Denis\Downloads\BFMV_Fever.2010.rar
2013-06-28 19:14 - 2013-06-28 19:14 - 65059225 _____ C:\Users\Denis\Downloads\BFMV_Temper_Temper_2013.rar
2013-06-26 18:27 - 2013-06-26 18:37 - 167641015 _____ C:\Users\Denis\Downloads\TESVSDra181510DeuAud.rar
2013-06-26 18:11 - 2013-06-26 18:11 - 00457617 _____ C:\Users\Denis\Downloads\SexLab_LoversComfort_v20130604.zip
2013-06-26 18:03 - 2013-06-26 18:03 - 00026367 _____ C:\Users\Denis\Downloads\SexLabRomance.7z
2013-06-26 13:23 - 2013-06-26 13:56 - 142299628 _____ C:\Users\Denis\Downloads\TESVSGU13.rar
2013-06-26 13:21 - 2013-06-26 13:21 - 00000160 _____ C:\Users\Denis\Downloads\utorrent(torrent,remote.utorrent.com^2Ftiny^2FxOOAhf).exe
2013-06-26 13:20 - 2013-06-26 13:20 - 00001776 _____ C:\Users\Denis\Downloads\The_Elder_Scrolls_V_Skyrim_Update_13_1.9.32.0.8_F_r_die_Deutsche_Version_-fowf4kmfy68pl.dlc
2013-06-26 13:18 - 2013-06-26 13:22 - 00000000 ____D C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2013-06-26 13:16 - 2013-06-26 13:16 - 01045072 _____ (BitTorrent Inc.) C:\Users\Denis\Downloads\utorrent_3.3.0.29677.exe
2013-06-26 12:25 - 2013-06-26 12:29 - 68829391 _____ C:\Users\Denis\Downloads\SexLabFramework.v101b.zip
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:18 - 2013-06-26 12:18 - 00266051 _____ C:\Users\Denis\Downloads\skse_1_06_16_installer.exe
2013-06-26 12:06 - 2012-08-25 22:44 - 00001595 _____ C:\Users\Denis\Desktop\Skyrim.lnk
2013-06-26 12:00 - 2013-06-26 12:01 - 08785718 _____ C:\Users\Denis\Downloads\Animated Prostitution-10748-3-06.7z
2013-06-25 22:48 - 2013-07-07 17:54 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-06-25 22:38 - 2013-06-25 22:40 - 00000000 ____D C:\Users\Denis\Desktop\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED
2013-06-25 21:08 - 2013-06-25 22:38 - 1206656174 _____ C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED (1).rar
2013-06-25 20:12 - 2013-06-25 20:14 - 11584038 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft  64x MC15.zip
2013-06-25 19:58 - 2013-06-25 20:01 - 28616684 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft 128x MC15.zip
2013-06-25 19:57 - 2013-06-25 19:57 - 00377138 _____ C:\Users\Denis\Downloads\OptiFine_1.5.2_HD_U_D5.zip
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-24 17:57 - 2013-06-25 18:11 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 17:49 - 2013-06-24 17:49 - 00156672 _____ (Microsoft) C:\Users\Denis\Downloads\InstallIW4M (1).exe
2013-06-24 17:41 - 2013-06-24 17:42 - 03794238 _____ C:\Users\Denis\Downloads\iw4Clientv1.4.2012d (1).rar
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:39 - 2013-06-24 15:40 - 00000000 ____D C:\Users\Denis\Desktop\Spiele

==================== One Month Modified Files and Folders =======

2013-07-21 23:14 - 2013-07-21 21:00 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:13 - 2012-07-26 12:27 - 03477468 _____ C:\WINDOWS\system32\perfh007.dat
2013-07-21 23:13 - 2012-07-26 12:27 - 01010572 _____ C:\WINDOWS\system32\perfc007.dat
2013-07-21 23:13 - 2012-07-26 09:28 - 00006988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:07 - 2013-06-11 16:31 - 00001230 _____ C:\WINDOWS\Tasks\Object Browser-updater.job
2013-07-21 23:07 - 2012-08-05 16:18 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-21 23:07 - 2012-08-04 13:00 - 00000000 ____D C:\Users\Denis\AppData\Local\LogMeIn Hamachi
2013-07-21 23:06 - 2013-07-21 23:06 - 00001814 _____ C:\WINDOWS\PFRO.log
2013-07-21 23:06 - 2013-07-21 22:07 - 00044216 _____ C:\WINDOWS\setupact.log
2013-07-21 23:06 - 2013-06-11 16:30 - 00001948 _____ C:\WINDOWS\Tasks\Object Browser-chromeinstaller.job
2013-07-21 23:06 - 2013-06-11 16:30 - 00001134 _____ C:\WINDOWS\Tasks\Object Browser-enabler.job
2013-07-21 23:06 - 2013-02-02 16:58 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-21 23:06 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-07-21 23:05 - 2012-07-26 07:26 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-07-21 23:04 - 2013-07-21 23:03 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:04 - 2013-07-21 23:03 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 23:03 - 2013-02-02 16:58 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-21 23:02 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\sru
2013-07-21 22:40 - 2013-07-21 22:34 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:39 - 2012-08-02 22:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Skype
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 22:27 - 2013-02-03 20:56 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA.job
2013-07-21 22:07 - 2013-07-21 22:07 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-07-21 22:06 - 2008-01-01 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 20:59 - 2013-07-21 20:59 - 01779345 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-21 20:40 - 2013-07-21 19:54 - 00013277 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-21 19:47 - 2012-08-02 23:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Tobit
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00344672 _____ C:\Users\Denis\Downloads\iSafe.exe
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-21 12:27 - 2013-02-03 20:56 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core.job
2013-07-20 18:11 - 2012-08-06 14:53 - 00000000 ____D C:\Users\Denis\AppData\Roaming\TS3Client
2013-07-20 11:13 - 2012-08-03 15:23 - 00000024 _____ C:\Users\Denis\random.dat
2013-07-20 10:30 - 2012-08-03 15:23 - 00000044 _____ C:\Users\Denis\jagex_cl_runescape_LIVE.dat
2013-07-20 09:31 - 2012-08-02 16:41 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:28 - 2013-07-20 09:27 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:28 - 2013-07-20 09:27 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:28 - 2012-01-25 22:13 - 01093032 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2013-07-20 09:28 - 2011-07-18 23:14 - 00972712 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-07-20 09:26 - 2013-07-20 09:25 - 33150376 _____ (Oracle Corporation) C:\Users\Denis\Downloads\jre-7u25-windows-x64.exe
2013-07-19 20:19 - 2012-09-26 12:40 - 00000000 ____D C:\Users\Denis\Documents\FIFA 13
2013-07-19 19:46 - 2012-09-19 12:26 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-18 17:40 - 2012-11-06 01:20 - 00867656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2013-07-18 17:40 - 2012-11-06 01:20 - 00527176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\Users\Denis\AppData\Local\PMB Files
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\ProgramData\PMB Files
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ____D C:\ProgramData\Skype
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Origin
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Local\Origin
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 16:08 - 2013-03-24 19:39 - 00189936 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 01030952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:52 - 2013-07-16 15:51 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-16 15:50 - 2013-07-16 15:48 - 34888568 _____ (Riot Games) C:\Users\Denis\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-15 19:32 - 2012-11-01 22:00 - 00000000 ____D C:\Users\Denis
2013-07-15 15:51 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-07-14 22:27 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Denis\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-14 22:20 - 2013-07-14 22:20 - 02828552 _____ (AVAST Software) C:\Users\Denis\Downloads\avast-browser-cleanup_8.0.1484.29.exe
2013-07-14 13:05 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2013-07-14 11:29 - 2013-02-03 20:58 - 00002368 _____ C:\Users\Denis\Desktop\Google Chrome.lnk
2013-07-13 12:22 - 2013-02-03 20:56 - 00004084 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA
2013-07-13 12:22 - 2013-02-03 20:56 - 00003704 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core
2013-07-12 19:57 - 2012-08-02 21:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\.minecraft
2013-07-10 16:41 - 2012-08-25 21:27 - 00000000 ____D C:\Program Files (x86)\The Elder Scrolls V- Skyrim
2013-07-10 15:24 - 2012-08-25 22:37 - 00000000 ____D C:\Users\Denis\Documents\Nexus Mod Manager
2013-07-10 15:24 - 2012-08-25 21:07 - 00000000 ____D C:\Users\Denis\AppData\Local\Skyrim
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 17:37 - 2013-07-09 17:35 - 38657799 _____ C:\Users\Denis\Downloads\Cube World V2.zip
2013-07-09 17:37 - 2013-07-09 17:35 - 34810001 _____ C:\Users\Denis\Downloads\Cube World V1.rar
2013-07-09 14:28 - 2012-12-27 21:23 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-07-09 14:28 - 2012-12-27 21:23 - 00281520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-07-09 14:28 - 2012-09-20 20:38 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-09 13:39 - 2013-07-09 13:39 - 00317952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-07-09 13:38 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\servicing
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-07-07 21:42 - 2012-10-10 17:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Dropbox
2013-07-07 19:46 - 2012-10-10 17:13 - 00000000 ___RD C:\Users\Denis\Dropbox
2013-07-07 19:18 - 2012-11-01 22:40 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-446083895-2330232980-1348218028-1002
2013-07-07 17:54 - 2013-06-25 22:48 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-07-07 17:54 - 2012-08-25 22:36 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-07-07 17:51 - 2013-02-25 18:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Audacity
2013-07-05 13:24 - 2013-06-11 16:30 - 00000000 ____D C:\Program Files (x86)\Object Browser
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-03 11:44 - 2013-05-26 12:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-02 20:39 - 2013-06-11 16:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\uTorrent
2013-07-02 20:39 - 2013-05-28 11:00 - 00000000 ____D C:\Users\Denis\AppData\Local\Unity
2013-07-02 17:51 - 2013-07-02 15:38 - 00586240 _____ C:\Users\Denis\Downloads\1_Internet-Protokolle.ppt
2013-07-01 16:14 - 2013-07-01 16:09 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:09 - 01120013 _____ C:\Users\Denis\Downloads\Google.pptx
2013-06-30 22:00 - 2013-06-30 21:21 - 117461232 _____ C:\Users\Denis\Downloads\The Nexus (Deluxe).rar
2013-06-30 21:48 - 2013-06-30 21:20 - 121036020 _____ C:\Users\Denis\Downloads\amrnte_amrnte.rar
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:11 - 2013-06-30 12:10 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:43 - 2013-04-01 22:37 - 00000068 _____ C:\Users\Denis\Desktop\Minecraft.bat
2013-06-29 12:41 - 2013-06-29 12:42 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-29 12:41 - 2012-01-25 22:13 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npdeployJava1.dll
2013-06-29 12:41 - 2011-07-18 23:13 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2013-06-29 12:39 - 2013-06-29 12:39 - 00903080 _____ (Oracle Corporation) C:\Users\Denis\Downloads\chromeinstall-7u25.exe
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 20:09 - 2013-06-28 19:16 - 159884183 _____ C:\Users\Denis\Downloads\Bullet For My Valentine - Scream Aim Fire (Deluxe Edition) (2008).rar
2013-06-28 19:43 - 2013-06-28 19:14 - 126003927 _____ C:\Users\Denis\Downloads\BFMV_Fever.2010.rar
2013-06-28 19:14 - 2013-06-28 19:14 - 65059225 _____ C:\Users\Denis\Downloads\BFMV_Temper_Temper_2013.rar
2013-06-28 18:49 - 2012-08-02 22:18 - 00000000 ____D C:\Users\Denis\AppData\Local\Akamai
2013-06-27 19:43 - 2012-10-10 21:09 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Spotify
2013-06-27 18:03 - 2012-10-10 21:10 - 00000000 ____D C:\Users\Denis\AppData\Local\Spotify
2013-06-26 18:37 - 2013-06-26 18:27 - 167641015 _____ C:\Users\Denis\Downloads\TESVSDra181510DeuAud.rar
2013-06-26 18:11 - 2013-06-26 18:11 - 00457617 _____ C:\Users\Denis\Downloads\SexLab_LoversComfort_v20130604.zip
2013-06-26 18:03 - 2013-06-26 18:03 - 00026367 _____ C:\Users\Denis\Downloads\SexLabRomance.7z
2013-06-26 13:56 - 2013-06-26 13:23 - 142299628 _____ C:\Users\Denis\Downloads\TESVSGU13.rar
2013-06-26 13:33 - 2012-08-06 14:52 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 13:22 - 2013-06-26 13:18 - 00000000 ____D C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Update.13-RELOADED
2013-06-26 13:21 - 2013-06-26 13:21 - 00000160 _____ C:\Users\Denis\Downloads\utorrent(torrent,remote.utorrent.com^2Ftiny^2FxOOAhf).exe
2013-06-26 13:20 - 2013-06-26 13:20 - 00001776 _____ C:\Users\Denis\Downloads\The_Elder_Scrolls_V_Skyrim_Update_13_1.9.32.0.8_F_r_die_Deutsche_Version_-fowf4kmfy68pl.dlc
2013-06-26 13:18 - 2013-06-11 16:31 - 00004234 _____ C:\WINDOWS\System32\Tasks\Object Browser-updater
2013-06-26 13:18 - 2013-06-11 16:30 - 00004138 _____ C:\WINDOWS\System32\Tasks\Object Browser-enabler
2013-06-26 13:16 - 2013-06-26 13:16 - 01045072 _____ (BitTorrent Inc.) C:\Users\Denis\Downloads\utorrent_3.3.0.29677.exe
2013-06-26 12:29 - 2013-06-26 12:25 - 68829391 _____ C:\Users\Denis\Downloads\SexLabFramework.v101b.zip
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:18 - 2013-06-26 12:18 - 00266051 _____ C:\Users\Denis\Downloads\skse_1_06_16_installer.exe
2013-06-26 12:01 - 2013-06-26 12:00 - 08785718 _____ C:\Users\Denis\Downloads\Animated Prostitution-10748-3-06.7z
2013-06-25 22:40 - 2013-06-25 22:38 - 00000000 ____D C:\Users\Denis\Desktop\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED
2013-06-25 22:38 - 2013-06-25 21:08 - 1206656174 _____ C:\Users\Denis\Downloads\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED (1).rar
2013-06-25 20:14 - 2013-06-25 20:12 - 11584038 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft  64x MC15.zip
2013-06-25 20:01 - 2013-06-25 19:58 - 28616684 _____ C:\Users\Denis\Downloads\Sphax PureBDcraft 128x MC15.zip
2013-06-25 19:57 - 2013-06-25 19:57 - 00377138 _____ C:\Users\Denis\Downloads\OptiFine_1.5.2_HD_U_D5.zip
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-25 18:11 - 2013-06-24 17:57 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 18:01 - 2013-06-17 12:26 - 00001156 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play IW4M (Modern Warfare 2).lnk
2013-06-24 18:01 - 2013-06-17 12:26 - 00000000 ____D C:\Users\Denis\AppData\Local\IW4M
2013-06-24 17:49 - 2013-06-24 17:49 - 00156672 _____ (Microsoft) C:\Users\Denis\Downloads\InstallIW4M (1).exe
2013-06-24 17:42 - 2013-06-24 17:41 - 03794238 _____ C:\Users\Denis\Downloads\iw4Clientv1.4.2012d (1).rar
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:40 - 2013-06-24 15:39 - 00000000 ____D C:\Users\Denis\Desktop\Spiele
2013-06-23 20:20 - 2012-10-22 18:01 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2013-07-21 20:02

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Vielen Dank für die Hilfe. Es scheint Momentan so das Instant Savings weg ist.

Sehr netter support von dir finde ich echt klasse. Danke nochmals


Alt 22.07.2013, 09:07   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Onlinescan und Reste entfernen, dann sind wir durch


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST Log bitte. Noch Probleme?
__________________
--> Bitte um Hilfe beim entfernen von Instant Savings

Alt 22.07.2013, 14:27   #7
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Ok ich werde das jetzt machen. ich wollte nur sagen, dass es so scheint das instant savings immer noch vorhanden ist. Auf Facebook wird auf jeden fall noch angezeigt ads by Instant Savings. Und danke für die Hilfe. Sobald ich die schritte abgearbetet geb ich hier alles rein.

Alt 22.07.2013, 17:29   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



ok
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.07.2013, 12:40   #9
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Hier ist der ESET-Log
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=8cc0eddbbc549f4aaf1c974fa3970efe
# engine=14497
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-22 11:22:28
# local_time=2013-07-23 01:22:28 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode=774 16777213 85 91 311126 151245220 0 0
# compatibility_mode=5893 16776574 100 94 9379090 15124447 0 0
# scanned=437034
# found=2
# cleaned=0
# scan_time=10137
sh=F4E1A0B30C2633EC3585AEDEB8E3164CF1D0694F ft=0 fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.AAH trojan" ac=I fn="C:\Users\Denis\Desktop\The.Elder.Scrolls.V.Skyrim.Dragonborn.Addon.DLC-RELOADED\rld-tesvskdb.iso"
sh=A0AC50CE60FFE962C625A8A2D1566815BF80D1C5 ft=0 fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.AAH trojan" ac=I fn="D:\Isos\de-aoe2hd.iso"
         
Und hier von Security Check
Code:
ATTFilter
 Results of screen317's Security Check version 0.99.70  
   x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
avast! Antivirus   
Windows Defender   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java(TM) 6 Update 26  
 Java(TM) 6 Update 45  
 Java 7 Update 25  
 Adobe Flash Player 	11.7.700.224  
 Adobe Reader 10.1.6 Adobe Reader out of Date!  
 Google Chrome 28.0.1500.71  
 Google Chrome 28.0.1500.72  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         
Und hier FRST

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-07-2013 01
Ran by Denis (administrator) on 23-07-2013 13:38:58
Running from C:\Users\Denis\Desktop
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\WINDOWS\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Wsys Co., Ltd.) C:\ProgramData\eSafe\eGdpSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4396.1016_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452968 2012-03-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3549528 2013-07-16] (Electronic Arts)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Denis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-06-27] (Spotify Ltd)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1672616 2013-07-10] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19876456 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Spotify] - C:\Users\Denis\AppData\Roaming\Spotify\spotify.exe [4643328 2013-06-27] (Spotify Ltd)
MountPoints2: K - "K:\setup.exe" 
MountPoints2: {b24643dc-eea1-11e1-a1ec-8c89a5e0bc15} - "K:\setup.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-06-28] (LogMeIn Inc.)
HKLM-x32\...\Run: [YTDownloader] - "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot [x]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\watchmi tray.lnk
ShortcutTarget: watchmi tray.lnk -> C:\Windows\Installer\{F0559C5E-7912-4391-B1A0-6B975F0E5064}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe (Acresso Software Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Denis\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyServer: scorpion.premiumize.me:80
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {9C63174C-4ED2-4D45-82CF-484D25760093} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Denis\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (FB Refresh) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0
CHR Extension: (YouTube Options) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdokagampppgbnjfdlkfpphniapiiifn\1.8.125_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (avast! Online Security) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Akatsuki Clouds) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgankgbmohecnigpfaimapoedpabiojf\1.0.0.3_0
CHR Extension: (Object Browser) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan\1.23.13_0
CHR Extension: (Facebook Ads Hider) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\leeebdddeggoocipdjiokmjcpidnmoah\1.2.5_0

==================== Services (Whitelisted) =================

S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-15] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-28] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [744856 2012-11-14] (Tunngle.net GmbH)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2012-01-31] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [376896 2013-07-21] (Wsys Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-16] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-16] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-16] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-21] (Advanced Micro Devices)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S2 APXACC; \SystemRoot\system32\DRIVERS\appexDrv.sys [x]
U3 idsvc; 
S3 X6va008; \??\C:\WINDOWS\SysWOW64\Drivers\X6va008 [x]
S3 X6va011; \??\C:\WINDOWS\SysWOW64\Drivers\X6va011 [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-23 13:38 - 2013-07-23 13:37 - 01779447 _____ (Farbar) C:\Users\Denis\Desktop\FRST64.exe
2013-07-23 13:36 - 2013-07-23 13:37 - 01779447 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-22 22:02 - 2013-07-22 22:02 - 00003826 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2013-07-22 18:31 - 2013-07-22 18:31 - 00000000 ____D C:\WINDOWS\.jagex_cache_32
2013-07-22 18:30 - 2013-07-22 18:40 - 00000023 _____ C:\Users\Denis\jagexappletviewer.preferences
2013-07-22 18:30 - 2013-07-22 18:30 - 00002052 _____ C:\Users\Denis\Desktop\RuneScape.lnk
2013-07-22 18:30 - 2013-07-22 18:30 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2013-07-22 15:33 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-07-22 15:33 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-07-22 15:33 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-07-22 15:33 - 2013-06-01 13:33 - 02233600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-07-22 15:33 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-07-22 15:33 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-07-22 15:33 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-07-22 15:33 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2013-07-22 15:33 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-07-22 15:33 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2013-07-22 15:33 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2013-07-22 15:33 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-07-22 15:33 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2013-07-22 15:33 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2013-07-22 15:33 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-07-22 15:33 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2013-07-22 15:33 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2013-07-22 15:33 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2013-07-22 15:33 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2013-07-22 15:33 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-07-22 15:33 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-07-22 15:33 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-07-22 15:33 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-07-22 15:33 - 2013-05-20 02:08 - 00386642 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Downloads\SecurityCheck.exe
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Desktop\SecurityCheck.exe
2013-07-22 15:28 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-07-22 15:21 - 2013-07-22 15:21 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-22 15:20 - 2013-07-22 15:21 - 02347384 _____ (ESET) C:\Users\Denis\Downloads\esetsmartinstaller_enu.exe
2013-07-22 15:20 - 2013-06-01 11:25 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2013-07-22 15:20 - 2013-06-01 11:21 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2013-07-22 15:20 - 2013-05-31 01:14 - 04036096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-07-22 15:20 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2013-07-22 15:20 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-07-22 15:19 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-07-22 15:19 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-07-22 15:19 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-07-22 15:19 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2013-07-22 15:19 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:06 - 2013-07-23 13:23 - 00003336 _____ C:\WINDOWS\PFRO.log
2013-07-21 23:03 - 2013-07-21 23:04 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:03 - 2013-07-21 23:04 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 22:34 - 2013-07-21 22:40 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 22:07 - 2013-07-23 13:24 - 00088432 _____ C:\WINDOWS\setupact.log
2013-07-21 22:07 - 2013-07-21 22:07 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-07-21 21:00 - 2013-07-21 23:15 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 19:54 - 2013-07-23 03:35 - 00416452 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:27 - 2013-07-20 09:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:27 - 2013-07-20 09:28 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:51 - 2013-07-16 15:52 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 13:38 - 2013-06-28 00:04 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-07-09 13:38 - 2013-06-28 00:04 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-07 17:12 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-07-07 17:12 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-07-07 17:12 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2013-07-07 17:12 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2013-07-07 17:12 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2013-07-07 17:12 - 2013-03-02 04:45 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-07-07 17:11 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-07-07 17:11 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-07-07 17:11 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-07-07 17:11 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-07-07 17:11 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2013-07-07 17:11 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2013-07-07 17:11 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2013-07-07 17:11 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-07-07 17:11 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-07-07 17:11 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2013-07-07 17:11 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-07-07 17:11 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2013-07-07 17:11 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2013-07-07 17:11 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2013-07-07 17:10 - 2013-03-02 12:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2013-07-07 17:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00148712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00495336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00327912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-07-07 17:10 - 2013-03-02 10:23 - 01338880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 05091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:45 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2013-07-07 17:10 - 2013-03-02 04:44 - 05978624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2013-07-07 17:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2013-07-07 17:09 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2013-07-07 17:09 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2013-07-07 17:08 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2013-07-07 17:08 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2013-07-07 17:08 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2013-07-07 17:08 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll
2013-07-07 17:08 - 2013-04-09 07:17 - 01829408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-07-07 17:08 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2013-07-07 17:08 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2013-07-07 17:08 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2013-07-07 17:08 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-07-07 17:08 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-07-07 17:08 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2013-07-07 17:08 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-07-07 17:08 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2013-07-07 17:08 - 2013-04-09 01:39 - 01408896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2013-07-07 17:08 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2013-07-07 17:08 - 2013-03-02 04:43 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-07-07 17:07 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2013-07-07 17:07 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2013-07-07 17:07 - 2013-04-09 04:34 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-07-07 17:07 - 2013-04-09 04:34 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2013-07-07 17:07 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2013-07-07 17:07 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2013-07-07 17:07 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2013-07-07 17:07 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-07-07 17:07 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2013-07-07 17:07 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2013-07-07 17:02 - 2013-04-16 04:34 - 01455368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-07-07 17:01 - 2013-05-16 00:35 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-07-07 17:01 - 2013-04-27 07:20 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2013-07-07 17:01 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2013-07-07 17:01 - 2013-04-24 01:12 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-07-07 17:01 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2013-07-07 17:01 - 2013-04-24 00:55 - 01889280 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-07-07 17:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2013-07-07 17:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2013-07-07 17:01 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-07-07 17:01 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-07-07 17:01 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2013-07-07 17:01 - 2013-03-06 09:10 - 00112872 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2013-07-07 17:01 - 2013-03-06 08:31 - 19758592 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-07-07 17:01 - 2013-03-06 08:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-07-07 17:01 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-07-07 17:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2013-07-07 17:01 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-07-07 17:01 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2013-07-07 17:00 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2013-07-07 17:00 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-07-07 17:00 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-07-07 17:00 - 2013-04-29 00:28 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2013-07-07 17:00 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:14 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:10 - 2013-06-30 12:11 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:42 - 2013-06-29 12:41 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:06 - 2012-08-25 22:44 - 00001595 _____ C:\Users\Denis\Desktop\Skyrim.lnk
2013-06-25 22:48 - 2013-07-07 17:54 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-24 17:57 - 2013-06-25 18:11 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:39 - 2013-06-24 15:40 - 00000000 ____D C:\Users\Denis\Desktop\Spiele

==================== One Month Modified Files and Folders =======

2013-07-23 13:37 - 2013-07-23 13:38 - 01779447 _____ (Farbar) C:\Users\Denis\Desktop\FRST64.exe
2013-07-23 13:37 - 2013-07-23 13:36 - 01779447 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-23 13:32 - 2012-07-26 12:27 - 03492010 _____ C:\WINDOWS\system32\perfh007.dat
2013-07-23 13:32 - 2012-07-26 12:27 - 01015090 _____ C:\WINDOWS\system32\perfc007.dat
2013-07-23 13:32 - 2012-07-26 09:28 - 00006988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-07-23 13:27 - 2013-02-03 20:56 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA.job
2013-07-23 13:26 - 2012-08-05 16:18 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-23 13:25 - 2013-06-11 16:31 - 00001230 _____ C:\WINDOWS\Tasks\Object Browser-updater.job
2013-07-23 13:25 - 2013-06-11 16:30 - 00001948 _____ C:\WINDOWS\Tasks\Object Browser-chromeinstaller.job
2013-07-23 13:25 - 2013-06-11 16:30 - 00001134 _____ C:\WINDOWS\Tasks\Object Browser-enabler.job
2013-07-23 13:25 - 2013-02-02 16:58 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-23 13:24 - 2013-07-21 22:07 - 00088432 _____ C:\WINDOWS\setupact.log
2013-07-23 13:24 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-07-23 13:23 - 2013-07-21 23:06 - 00003336 _____ C:\WINDOWS\PFRO.log
2013-07-23 13:23 - 2013-04-05 11:51 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-23 13:23 - 2013-04-05 11:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-23 03:36 - 2012-07-26 07:26 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-07-23 03:35 - 2013-07-21 19:54 - 00416452 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-23 03:35 - 2012-07-26 12:29 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-23 03:35 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-07-23 03:06 - 2008-01-01 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-07-23 03:03 - 2013-02-02 16:58 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-23 02:00 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\sru
2013-07-23 01:50 - 2011-07-18 22:31 - 78185248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-07-23 01:22 - 2012-11-01 22:40 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-446083895-2330232980-1348218028-1002
2013-07-22 22:28 - 2012-08-02 22:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Skype
2013-07-22 22:02 - 2013-07-22 22:02 - 00003826 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2013-07-22 19:55 - 2012-08-03 15:23 - 00000024 _____ C:\Users\Denis\random.dat
2013-07-22 19:29 - 2012-08-03 15:23 - 00000044 _____ C:\Users\Denis\jagex_cl_runescape_LIVE.dat
2013-07-22 18:40 - 2013-07-22 18:30 - 00000023 _____ C:\Users\Denis\jagexappletviewer.preferences
2013-07-22 18:31 - 2013-07-22 18:31 - 00000000 ____D C:\WINDOWS\.jagex_cache_32
2013-07-22 18:30 - 2013-07-22 18:30 - 00002052 _____ C:\Users\Denis\Desktop\RuneScape.lnk
2013-07-22 18:30 - 2013-07-22 18:30 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2013-07-22 18:30 - 2013-05-27 16:12 - 00002082 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
2013-07-22 18:30 - 2012-11-01 22:00 - 00000000 ____D C:\Users\Denis
2013-07-22 18:30 - 2012-08-03 15:23 - 00000000 ____D C:\Users\Denis\jagexcache
2013-07-22 17:40 - 2012-08-06 14:53 - 00000000 ____D C:\Users\Denis\AppData\Roaming\TS3Client
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Downloads\SecurityCheck.exe
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Desktop\SecurityCheck.exe
2013-07-22 15:21 - 2013-07-22 15:21 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-22 15:21 - 2013-07-22 15:20 - 02347384 _____ (ESET) C:\Users\Denis\Downloads\esetsmartinstaller_enu.exe
2013-07-21 23:15 - 2013-07-21 21:00 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:07 - 2012-08-04 13:00 - 00000000 ____D C:\Users\Denis\AppData\Local\LogMeIn Hamachi
2013-07-21 23:04 - 2013-07-21 23:03 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:04 - 2013-07-21 23:03 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 22:40 - 2013-07-21 22:34 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 22:07 - 2013-07-21 22:07 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 19:47 - 2012-08-02 23:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Tobit
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-21 12:27 - 2013-02-03 20:56 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core.job
2013-07-20 09:31 - 2012-08-02 16:41 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:28 - 2013-07-20 09:27 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:28 - 2013-07-20 09:27 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:28 - 2012-01-25 22:13 - 01093032 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2013-07-20 09:28 - 2011-07-18 23:14 - 00972712 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-07-19 20:19 - 2012-09-26 12:40 - 00000000 ____D C:\Users\Denis\Documents\FIFA 13
2013-07-19 19:46 - 2012-09-19 12:26 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-18 17:40 - 2012-11-06 01:20 - 00867656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2013-07-18 17:40 - 2012-11-06 01:20 - 00527176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\Users\Denis\AppData\Local\PMB Files
2013-07-17 18:20 - 2012-08-03 16:23 - 00000000 ____D C:\ProgramData\PMB Files
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ____D C:\ProgramData\Skype
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Origin
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Local\Origin
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 16:08 - 2013-03-24 19:39 - 00189936 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 01030952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:52 - 2013-07-16 15:51 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-15 15:51 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 13:05 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2013-07-14 11:29 - 2013-02-03 20:58 - 00002368 _____ C:\Users\Denis\Desktop\Google Chrome.lnk
2013-07-13 12:22 - 2013-02-03 20:56 - 00004084 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA
2013-07-13 12:22 - 2013-02-03 20:56 - 00003704 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core
2013-07-12 19:57 - 2012-08-02 21:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\.minecraft
2013-07-10 16:41 - 2012-08-25 21:27 - 00000000 ____D C:\Program Files (x86)\The Elder Scrolls V- Skyrim
2013-07-10 15:24 - 2012-08-25 22:37 - 00000000 ____D C:\Users\Denis\Documents\Nexus Mod Manager
2013-07-10 15:24 - 2012-08-25 21:07 - 00000000 ____D C:\Users\Denis\AppData\Local\Skyrim
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 14:28 - 2012-12-27 21:23 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-07-09 14:28 - 2012-12-27 21:23 - 00281520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-07-09 14:28 - 2012-09-20 20:38 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-09 13:38 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\servicing
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-07-07 21:42 - 2012-10-10 17:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Dropbox
2013-07-07 19:46 - 2012-10-10 17:13 - 00000000 ___RD C:\Users\Denis\Dropbox
2013-07-07 17:54 - 2013-06-25 22:48 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-07-07 17:54 - 2012-08-25 22:36 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-07-07 17:51 - 2013-02-25 18:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Audacity
2013-07-05 13:24 - 2013-06-11 16:30 - 00000000 ____D C:\Program Files (x86)\Object Browser
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-03 11:44 - 2013-05-26 12:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-02 20:39 - 2013-06-11 16:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\uTorrent
2013-07-02 20:39 - 2013-05-28 11:00 - 00000000 ____D C:\Users\Denis\AppData\Local\Unity
2013-07-01 16:14 - 2013-07-01 16:09 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:11 - 2013-06-30 12:10 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:43 - 2013-04-01 22:37 - 00000068 _____ C:\Users\Denis\Desktop\Minecraft.bat
2013-06-29 12:41 - 2013-06-29 12:42 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-29 12:41 - 2012-01-25 22:13 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npdeployJava1.dll
2013-06-29 12:41 - 2011-07-18 23:13 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 18:49 - 2012-08-02 22:18 - 00000000 ____D C:\Users\Denis\AppData\Local\Akamai
2013-06-28 00:04 - 2013-07-09 13:38 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-06-28 00:04 - 2013-07-09 13:38 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-27 19:43 - 2012-10-10 21:09 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Spotify
2013-06-27 18:03 - 2012-10-10 21:10 - 00000000 ____D C:\Users\Denis\AppData\Local\Spotify
2013-06-26 13:33 - 2012-08-06 14:52 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 13:18 - 2013-06-11 16:31 - 00004234 _____ C:\WINDOWS\System32\Tasks\Object Browser-updater
2013-06-26 13:18 - 2013-06-11 16:30 - 00004138 _____ C:\WINDOWS\System32\Tasks\Object Browser-enabler
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-25 18:11 - 2013-06-24 17:57 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 18:01 - 2013-06-17 12:26 - 00001156 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play IW4M (Modern Warfare 2).lnk
2013-06-24 18:01 - 2013-06-17 12:26 - 00000000 ____D C:\Users\Denis\AppData\Local\IW4M
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:40 - 2013-06-24 15:39 - 00000000 ____D C:\Users\Denis\Desktop\Spiele
2013-06-23 20:20 - 2012-10-22 18:01 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-07-22 15:33] - [2013-06-01 13:34] - 2391280 ____A (Microsoft Corporation) 0E8E6463F81C80AFBED533E0F1F8895D

C:\Windows\SysWOW64\explorer.exe
[2013-07-22 15:33] - [2013-06-01 12:24] - 2106176 ____A (Microsoft Corporation) EAFE46B0292D2BD2467835E2ACF717CC

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2013-07-22 15:33] - [2013-06-01 13:26] - 0327936 ____A (Microsoft Corporation) 78A5BBA3819FFFC62FFEC3E2220D102D



testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2013-07-23 03:01

==================== End Of Log ============================
         
--- --- ---

Instant Savings ist aber anscheinend immer noch auf dem Rechner. Auf manchen Internetseiten wie Facebook sieht mann immer noch stehen "ads by Instant Savings"

Alt 23.07.2013, 14:02   #10
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Firefox deinstallieren, keine Daten behalten, neu installieren, dann ein frisches FRST log bitte.

Adobe Reader bitte updaten.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.07.2013, 15:55   #11
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Meinst du Google Chrome? Hab kein Firefox

meinste Google chrome? hab kein firefox

Alt 23.07.2013, 18:53   #12
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Jo, sorry
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.07.2013, 21:55   #13
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Also der Virus ist entfernt. Vielen Dank für die Hilfe. War echt top.
Und hier noch der FRST-Log

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-07-2013 01
Ran by Denis (administrator) on 24-07-2013 22:54:38
Running from C:\Users\Denis\Desktop
Windows 8 Pro (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Wsys Co., Ltd.) C:\ProgramData\eSafe\eGdpSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
() C:\WINDOWS\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AMD) C:\WINDOWS\system32\atiesrxx.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4396.1016_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Denis\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452968 2012-03-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Denis\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3549528 2013-07-16] (Electronic Arts)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Denis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-06-27] (Spotify Ltd)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1672616 2013-07-10] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19876456 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Spotify] - C:\Users\Denis\AppData\Roaming\Spotify\spotify.exe [4643328 2013-06-27] (Spotify Ltd)
MountPoints2: K - "K:\setup.exe" 
MountPoints2: {b24643dc-eea1-11e1-a1ec-8c89a5e0bc15} - "K:\setup.exe" 
HKLM-x32\...\Run: [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-06-28] (LogMeIn Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\watchmi tray.lnk
ShortcutTarget: watchmi tray.lnk -> C:\Windows\Installer\{F0559C5E-7912-4391-B1A0-6B975F0E5064}\SHCT_TRAY_PROGRAMG_A10D8603999C4E9488776EF2533C58C9.exe (Acresso Software Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Denis\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyServer: scorpion.premiumize.me:80
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {9C63174C-4ED2-4D45-82CF-484D25760093} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=512435&p={searchTerms}
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Denis\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Denis\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Docs) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (FB Refresh) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdlfdaajmclngiomogmleihllaejcnni\2.0.1_0
CHR Extension: (YouTube Options) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdokagampppgbnjfdlkfpphniapiiifn\1.8.126_0
CHR Extension: (YouTube) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Photo Zoom for Facebook) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0
CHR Extension: (AdBlock) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (avast! Online Security) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Akatsuki Clouds) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgankgbmohecnigpfaimapoedpabiojf\1.0.0.3_0
CHR Extension: (Facebook Ads Hider) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\leeebdddeggoocipdjiokmjcpidnmoah\1.2.5_0
CHR Extension: (Gmail) - C:\Users\Denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-15] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25088 2012-07-26] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-28] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [744856 2012-11-14] (Tunngle.net GmbH)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [471552 2012-07-26] (Microsoft Corporation)
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2012-01-31] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
R2 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [376896 2013-07-21] (Wsys Co., Ltd.)

==================== Drivers (Whitelisted) ====================

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-16] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-16] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-16] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [94208 2013-04-24] (Advanced Micro Devices)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [185856 2012-07-26] (Microsoft Corporation)
S3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S2 APXACC; \SystemRoot\system32\DRIVERS\appexDrv.sys [x]
U3 idsvc; 
S3 X6va008; \??\C:\WINDOWS\SysWOW64\Drivers\X6va008 [x]
S3 X6va011; \??\C:\WINDOWS\SysWOW64\Drivers\X6va011 [x]
R3 X6va012; \??\C:\WINDOWS\SysWOW64\Drivers\X6va012 [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-24 22:51 - 2013-07-24 22:51 - 00002368 _____ C:\Users\Denis\Desktop\Google Chrome.lnk
2013-07-24 22:50 - 2013-07-24 22:50 - 00015441 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-24 22:37 - 2013-07-24 22:51 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-24 22:34 - 2013-07-24 22:35 - 34887288 _____ (Google Inc.) C:\Users\Denis\Downloads\Chrome28StandaloneSetup.exe
2013-07-24 19:44 - 2013-07-24 19:44 - 00001818 _____ C:\Users\Public\Desktop\S4League.lnk
2013-07-24 19:42 - 2013-07-24 19:42 - 00000000 ____D C:\Program Files (x86)\alaplaya
2013-07-24 19:23 - 2013-07-24 19:40 - 00000000 ____D C:\Users\Denis\Desktop\ALaplaYa
2013-07-24 19:23 - 2013-07-24 19:23 - 00000000 ____D C:\ProgramData\Solid State Networks
2013-07-24 19:22 - 2013-07-24 19:22 - 01245184 _____ (ProSiebenSat.1 Games) C:\Users\Denis\Downloads\s4league-dlm.exe
2013-07-23 15:26 - 2013-07-23 15:26 - 00000000 ____D C:\WINDOWS\LastGood
2013-07-23 15:24 - 2013-07-23 15:24 - 00000000 ____D C:\AMD
2013-07-23 15:05 - 2013-07-23 15:11 - 187640832 _____ (AMD Inc.) C:\Users\Denis\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-23 15:03 - 2013-07-23 15:03 - 00792704 _____ (AMD) C:\Users\Denis\Downloads\amddriverdownloader.exe
2013-07-23 13:38 - 2013-07-23 13:37 - 01779447 _____ (Farbar) C:\Users\Denis\Desktop\FRST64.exe
2013-07-23 13:36 - 2013-07-23 13:37 - 01779447 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-22 22:02 - 2013-07-22 22:02 - 00003826 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2013-07-22 18:31 - 2013-07-22 18:31 - 00000000 ____D C:\WINDOWS\.jagex_cache_32
2013-07-22 18:30 - 2013-07-22 18:40 - 00000023 _____ C:\Users\Denis\jagexappletviewer.preferences
2013-07-22 18:30 - 2013-07-22 18:30 - 00002052 _____ C:\Users\Denis\Desktop\RuneScape.lnk
2013-07-22 18:30 - 2013-07-22 18:30 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2013-07-22 15:33 - 2013-06-01 13:54 - 00194816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-07-22 15:33 - 2013-06-01 13:54 - 00125184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-07-22 15:33 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-07-22 15:33 - 2013-06-01 13:33 - 02233600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-07-22 15:33 - 2013-06-01 13:29 - 00337152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-07-22 15:33 - 2013-06-01 13:29 - 00213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-07-22 15:33 - 2013-06-01 13:26 - 06987008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-07-22 15:33 - 2013-06-01 13:26 - 00327936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2013-07-22 15:33 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-07-22 15:33 - 2013-06-01 11:25 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2013-07-22 15:33 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-07-22 15:33 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2013-07-22 15:33 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-07-22 15:33 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2013-07-22 15:33 - 2013-06-01 11:22 - 00523264 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2013-07-22 15:33 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2013-07-22 15:33 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-07-22 15:33 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-07-22 15:33 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2013-07-22 15:33 - 2013-06-01 11:19 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2013-07-22 15:33 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2013-07-22 15:33 - 2013-06-01 05:08 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2013-07-22 15:33 - 2013-05-25 00:09 - 01403296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-07-22 15:33 - 2013-05-25 00:09 - 01271584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-07-22 15:33 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-07-22 15:33 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-07-22 15:33 - 2013-05-20 02:08 - 00386642 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Downloads\SecurityCheck.exe
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Desktop\SecurityCheck.exe
2013-07-22 15:28 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-07-22 15:21 - 2013-07-22 15:21 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-22 15:20 - 2013-07-22 15:21 - 02347384 _____ (ESET) C:\Users\Denis\Downloads\esetsmartinstaller_enu.exe
2013-07-22 15:20 - 2013-06-01 11:25 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2013-07-22 15:20 - 2013-06-01 11:21 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2013-07-22 15:20 - 2013-05-31 01:14 - 04036096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-07-22 15:20 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2013-07-22 15:20 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-07-22 15:19 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-07-22 15:19 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-07-22 15:19 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-07-22 15:19 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-07-22 15:19 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-07-22 15:19 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-07-22 15:19 - 2013-05-04 08:59 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2013-07-22 15:19 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:03 - 2013-07-21 23:04 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:03 - 2013-07-21 23:04 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 22:34 - 2013-07-21 22:40 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 21:00 - 2013-07-21 23:15 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:27 - 2013-07-20 09:28 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:27 - 2013-07-20 09:28 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:51 - 2013-07-16 15:52 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 22:28 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 13:38 - 2013-06-28 00:04 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-07-09 13:38 - 2013-06-28 00:04 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-07 17:12 - 2013-05-04 09:34 - 00446720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-07-07 17:12 - 2013-05-04 09:34 - 00284416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-07-07 17:12 - 2013-05-04 08:59 - 13644288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-07-07 17:12 - 2013-05-04 08:59 - 01483776 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2013-07-07 17:12 - 2013-05-04 08:59 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 10116096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2013-07-07 17:12 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 02305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2013-07-07 17:12 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:58 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 10788864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 08857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-07-07 17:12 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-07-07 17:12 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2013-07-07 17:12 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2013-07-07 17:12 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2013-07-07 17:12 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2013-07-07 17:12 - 2013-03-02 04:45 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-07-07 17:11 - 2013-05-31 01:24 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-07-07 17:11 - 2013-05-31 01:08 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-07-07 17:11 - 2013-05-24 01:01 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-07-07 17:11 - 2013-05-24 00:27 - 01022464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-07-07 17:11 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2013-07-07 17:11 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2013-07-07 17:11 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2013-07-07 17:11 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2013-07-07 17:11 - 2013-05-04 09:30 - 00058312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-07-07 17:11 - 2013-05-04 08:59 - 01619968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-07-07 17:11 - 2013-05-04 08:59 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-07-07 17:11 - 2013-05-04 08:58 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2013-07-07 17:11 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2013-07-07 17:11 - 2013-05-04 06:58 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-07-07 17:11 - 2013-05-04 06:58 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-07-07 17:11 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2013-07-07 17:11 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2013-07-07 17:11 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\biwinrt.dll
2013-07-07 17:11 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2013-07-07 17:11 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2013-07-07 17:11 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2013-07-07 17:10 - 2013-03-02 12:57 - 00332520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2013-07-07 17:10 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2013-07-07 17:10 - 2013-03-02 12:45 - 00148712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00495336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2013-07-07 17:10 - 2013-03-02 12:39 - 00327912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-07-07 17:10 - 2013-03-02 10:23 - 01338880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 05091840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-07-07 17:10 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2013-07-07 17:10 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:45 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2013-07-07 17:10 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2013-07-07 17:10 - 2013-03-02 04:44 - 05978624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2013-07-07 17:10 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2013-07-07 17:10 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2013-07-07 17:10 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2013-07-07 17:09 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2013-07-07 17:09 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2013-07-07 17:08 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-07-07 17:08 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2013-07-07 17:08 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2013-07-07 17:08 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2013-07-07 17:08 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdvm.dll
2013-07-07 17:08 - 2013-04-09 07:17 - 01829408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-07-07 17:08 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-09 06:52 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2013-07-07 17:08 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2013-07-07 17:08 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 01285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2013-07-07 17:08 - 2013-04-09 06:50 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2013-07-07 17:08 - 2013-04-09 06:48 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2013-07-07 17:08 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2013-07-07 17:08 - 2013-04-09 04:33 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-07-07 17:08 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2013-07-07 17:08 - 2013-04-09 04:31 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-07-07 17:08 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2013-07-07 17:08 - 2013-04-09 01:39 - 01408896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2013-07-07 17:08 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2013-07-07 17:08 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2013-07-07 17:08 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2013-07-07 17:08 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-07-07 17:08 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2013-07-07 17:08 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2013-07-07 17:08 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2013-07-07 17:08 - 2013-03-02 04:43 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-07-07 17:07 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenuineCenter.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2013-07-07 17:07 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2013-07-07 17:07 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2013-07-07 17:07 - 2013-04-09 04:34 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-07-07 17:07 - 2013-04-09 04:34 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2013-07-07 17:07 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2013-07-07 17:07 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2013-07-07 17:07 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fmifs.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2013-07-07 17:07 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2013-07-07 17:07 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-07-07 17:07 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2013-07-07 17:07 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2013-07-07 17:02 - 2013-04-16 04:34 - 01455368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-07-07 17:01 - 2013-05-16 00:35 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-07-07 17:01 - 2013-04-27 07:20 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2013-07-07 17:01 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2013-07-07 17:01 - 2013-04-24 01:12 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-07-07 17:01 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2013-07-07 17:01 - 2013-04-24 00:55 - 01889280 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2013-07-07 17:01 - 2013-04-24 00:55 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-07-07 17:01 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdlg.dll
2013-07-07 17:01 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2013-07-07 17:01 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-07-07 17:01 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-07-07 17:01 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2013-07-07 17:01 - 2013-03-06 09:10 - 00112872 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2013-07-07 17:01 - 2013-03-06 08:31 - 19758592 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-07-07 17:01 - 2013-03-06 08:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-07-07 17:01 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-07-07 17:01 - 2013-03-06 07:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-07-07 17:01 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2013-07-07 17:01 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-07-07 17:01 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2013-07-07 17:00 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2013-07-07 17:00 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2013-07-07 17:00 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-07-07 17:00 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-07-07 17:00 - 2013-04-29 00:28 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2013-07-07 17:00 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2013-07-07 17:00 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2013-07-07 17:00 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-07-01 16:09 - 2013-07-01 16:14 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:10 - 2013-06-30 12:11 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:42 - 2013-06-29 12:41 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-26 12:06 - 2012-08-25 22:44 - 00001595 _____ C:\Users\Denis\Desktop\Skyrim.lnk
2013-06-25 22:48 - 2013-07-07 17:54 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-24 17:57 - 2013-06-25 18:11 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:39 - 2013-06-24 15:40 - 00000000 ____D C:\Users\Denis\Desktop\Spiele

==================== One Month Modified Files and Folders =======

2013-07-24 22:52 - 2012-08-02 22:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Skype
2013-07-24 22:51 - 2013-07-24 22:51 - 00002368 _____ C:\Users\Denis\Desktop\Google Chrome.lnk
2013-07-24 22:51 - 2013-07-24 22:50 - 00015441 _____ C:\WINDOWS\WindowsUpdate.log
2013-07-24 22:51 - 2013-07-24 22:37 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-24 22:43 - 2012-08-05 16:18 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-24 22:43 - 2012-08-04 13:00 - 00000000 ____D C:\Users\Denis\AppData\Local\LogMeIn Hamachi
2013-07-24 22:35 - 2013-07-24 22:34 - 34887288 _____ (Google Inc.) C:\Users\Denis\Downloads\Chrome28StandaloneSetup.exe
2013-07-24 22:28 - 2012-08-03 16:23 - 00000000 ____D C:\Users\Denis\AppData\Local\PMB Files
2013-07-24 22:28 - 2012-08-03 16:23 - 00000000 ____D C:\ProgramData\PMB Files
2013-07-24 22:27 - 2013-02-03 20:56 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA.job
2013-07-24 22:06 - 2008-01-01 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-07-24 22:03 - 2013-02-02 16:58 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-24 21:00 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\system32\sru
2013-07-24 20:01 - 2012-09-26 12:40 - 00000000 ____D C:\Users\Denis\Documents\FIFA 13
2013-07-24 19:58 - 2012-09-19 12:26 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-24 19:44 - 2013-07-24 19:44 - 00001818 _____ C:\Users\Public\Desktop\S4League.lnk
2013-07-24 19:42 - 2013-07-24 19:42 - 00000000 ____D C:\Program Files (x86)\alaplaya
2013-07-24 19:42 - 2013-07-24 19:23 - 00000000 ____D C:\ProgramData\Solid State Networks
2013-07-24 19:42 - 2011-07-18 23:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-24 19:40 - 2013-07-24 19:23 - 00000000 ____D C:\Users\Denis\Desktop\ALaplaYa
2013-07-24 19:23 - 2013-06-11 16:30 - 00001948 _____ C:\WINDOWS\Tasks\Object Browser-chromeinstaller.job
2013-07-24 19:22 - 2013-07-24 19:22 - 01245184 _____ (ProSiebenSat.1 Games) C:\Users\Denis\Downloads\s4league-dlm.exe
2013-07-24 19:18 - 2013-06-11 16:31 - 00001230 _____ C:\WINDOWS\Tasks\Object Browser-updater.job
2013-07-24 19:18 - 2013-06-11 16:30 - 00001134 _____ C:\WINDOWS\Tasks\Object Browser-enabler.job
2013-07-24 16:03 - 2013-02-02 16:58 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-23 15:26 - 2013-07-23 15:26 - 00000000 ____D C:\WINDOWS\LastGood
2013-07-23 15:26 - 2013-04-13 16:59 - 00000000 ____D C:\ProgramData\Package Cache
2013-07-23 15:24 - 2013-07-23 15:24 - 00000000 ____D C:\AMD
2013-07-23 15:11 - 2013-07-23 15:05 - 187640832 _____ (AMD Inc.) C:\Users\Denis\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-23 15:03 - 2013-07-23 15:03 - 00792704 _____ (AMD) C:\Users\Denis\Downloads\amddriverdownloader.exe
2013-07-23 13:54 - 2012-08-06 14:53 - 00000000 ____D C:\Users\Denis\AppData\Roaming\TS3Client
2013-07-23 13:37 - 2013-07-23 13:38 - 01779447 _____ (Farbar) C:\Users\Denis\Desktop\FRST64.exe
2013-07-23 13:37 - 2013-07-23 13:36 - 01779447 _____ (Farbar) C:\Users\Denis\Downloads\FRST64.exe
2013-07-23 13:32 - 2012-07-26 12:27 - 03492010 _____ C:\WINDOWS\system32\perfh007.dat
2013-07-23 13:32 - 2012-07-26 12:27 - 01015090 _____ C:\WINDOWS\system32\perfc007.dat
2013-07-23 13:32 - 2012-07-26 09:28 - 00006988 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-07-23 13:24 - 2012-07-26 09:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-07-23 13:23 - 2013-04-05 11:51 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-23 13:23 - 2013-04-05 11:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-23 03:36 - 2012-07-26 07:26 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-07-23 03:35 - 2012-07-26 12:29 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-23 03:35 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-07-23 01:50 - 2011-07-18 22:31 - 78185248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-07-23 01:22 - 2012-11-01 22:40 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-446083895-2330232980-1348218028-1002
2013-07-22 22:02 - 2013-07-22 22:02 - 00003826 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2013-07-22 19:55 - 2012-08-03 15:23 - 00000024 _____ C:\Users\Denis\random.dat
2013-07-22 19:29 - 2012-08-03 15:23 - 00000044 _____ C:\Users\Denis\jagex_cl_runescape_LIVE.dat
2013-07-22 18:40 - 2013-07-22 18:30 - 00000023 _____ C:\Users\Denis\jagexappletviewer.preferences
2013-07-22 18:31 - 2013-07-22 18:31 - 00000000 ____D C:\WINDOWS\.jagex_cache_32
2013-07-22 18:30 - 2013-07-22 18:30 - 00002052 _____ C:\Users\Denis\Desktop\RuneScape.lnk
2013-07-22 18:30 - 2013-07-22 18:30 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape
2013-07-22 18:30 - 2013-05-27 16:12 - 00002082 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RuneScape.lnk
2013-07-22 18:30 - 2012-11-01 22:00 - 00000000 ____D C:\Users\Denis
2013-07-22 18:30 - 2012-08-03 15:23 - 00000000 ____D C:\Users\Denis\jagexcache
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Downloads\SecurityCheck.exe
2013-07-22 15:28 - 2013-07-22 15:28 - 00891062 _____ C:\Users\Denis\Desktop\SecurityCheck.exe
2013-07-22 15:21 - 2013-07-22 15:21 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-22 15:21 - 2013-07-22 15:20 - 02347384 _____ (ESET) C:\Users\Denis\Downloads\esetsmartinstaller_enu.exe
2013-07-21 23:15 - 2013-07-21 21:00 - 00000000 ____D C:\Users\Denis\Desktop\FRST
2013-07-21 23:13 - 2013-07-21 23:13 - 00002407 _____ C:\Users\Denis\Desktop\JRT.txt
2013-07-21 23:10 - 2013-07-21 23:10 - 00000000 ____D C:\WINDOWS\ERUNT
2013-07-21 23:04 - 2013-07-21 23:03 - 00008839 _____ C:\AdwCleaner[S1].txt
2013-07-21 23:04 - 2013-07-21 23:03 - 00000088 _____ C:\WINDOWS\DeleteOnReboot.bat
2013-07-21 22:40 - 2013-07-21 22:34 - 00001061 _____ C:\Users\Denis\Desktop\Neues Textdokument (2).txt
2013-07-21 22:33 - 2013-07-21 22:33 - 00666633 _____ C:\Users\Denis\Desktop\adwcleaner.exe
2013-07-21 22:33 - 2013-07-21 22:33 - 00559550 _____ (Oleg N. Scherbakov) C:\Users\Denis\Desktop\JRT.exe
2013-07-21 21:00 - 2013-07-21 21:00 - 00000000 ____D C:\FRST
2013-07-21 19:47 - 2012-08-02 23:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Tobit
2013-07-21 19:44 - 2013-07-21 19:44 - 00000000 ____D C:\Users\Denis\AppData\Roaming\eCyber
2013-07-21 19:43 - 2013-07-21 19:43 - 00000000 ____D C:\WINDOWS\system32\log
2013-07-21 19:42 - 2013-07-21 19:42 - 00000000 ____D C:\ProgramData\eSafe
2013-07-21 12:27 - 2013-02-03 20:56 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core.job
2013-07-20 09:31 - 2012-08-02 16:41 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2013-07-20 09:28 - 2013-07-20 09:28 - 00312232 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-07-20 09:28 - 2013-07-20 09:28 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-07-20 09:28 - 2013-07-20 09:27 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-07-20 09:28 - 2013-07-20 09:27 - 00188840 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-07-20 09:28 - 2012-01-25 22:13 - 01093032 _____ (Oracle Corporation) C:\WINDOWS\system32\npdeployJava1.dll
2013-07-20 09:28 - 2011-07-18 23:14 - 00972712 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2013-07-18 17:40 - 2012-11-06 01:20 - 00867656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2013-07-18 17:40 - 2012-11-06 01:20 - 00527176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2013-07-17 15:54 - 2013-07-17 15:54 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-07-17 15:54 - 2012-08-02 22:20 - 00000000 ____D C:\ProgramData\Skype
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Origin
2013-07-16 17:32 - 2012-09-19 12:28 - 00000000 ____D C:\Users\Denis\AppData\Local\Origin
2013-07-16 16:25 - 2013-07-16 16:25 - 00000219 _____ C:\Users\Denis\Desktop\Left 4 Dead 2.url
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2013-07-16 16:08 - 2013-07-16 16:08 - 00000175 _____ C:\WINDOWS\system32\Drivers\aswSnx.sys.sum
2013-07-16 16:08 - 2013-03-24 19:39 - 00189936 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 01030952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00378944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2013-07-16 16:08 - 2012-08-02 16:41 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2013-07-16 15:52 - 2013-07-16 15:52 - 00001613 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-07-16 15:52 - 2013-07-16 15:52 - 00000000 ____D C:\Riot Games
2013-07-16 15:52 - 2013-07-16 15:51 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Riot Games
2013-07-15 19:32 - 2013-07-15 19:32 - 00000045 _____ C:\Users\Denis\jagex_cl_runescape_LIVE1.dat
2013-07-15 19:32 - 2013-07-15 19:32 - 00000000 ____D C:\Users\Denis\jagexcache1
2013-07-15 15:51 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-07-14 22:28 - 2013-07-14 22:28 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-14 22:28 - 2013-07-14 22:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-14 13:05 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\rescache
2013-07-13 12:22 - 2013-02-03 20:56 - 00004084 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002UA
2013-07-13 12:22 - 2013-02-03 20:56 - 00003704 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-446083895-2330232980-1348218028-1002Core
2013-07-12 19:57 - 2012-08-02 21:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\.minecraft
2013-07-10 16:41 - 2012-08-25 21:27 - 00000000 ____D C:\Program Files (x86)\The Elder Scrolls V- Skyrim
2013-07-10 15:24 - 2012-08-25 22:37 - 00000000 ____D C:\Users\Denis\Documents\Nexus Mod Manager
2013-07-10 15:24 - 2012-08-25 21:07 - 00000000 ____D C:\Users\Denis\AppData\Local\Skyrim
2013-07-09 17:40 - 2013-07-09 17:40 - 00000000 ____D C:\Users\Denis\Desktop\Cube World V2
2013-07-09 14:28 - 2012-12-27 21:23 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-07-09 14:28 - 2012-12-27 21:23 - 00281520 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-07-09 14:28 - 2012-09-20 20:38 - 00291088 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-09 13:41 - 2012-08-02 15:37 - 00000000 ___RD C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-09 13:38 - 2012-07-26 07:37 - 00000000 ____D C:\WINDOWS\servicing
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\WinStore
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-07-08 22:57 - 2012-07-26 07:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-07-07 21:42 - 2012-10-10 17:12 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Dropbox
2013-07-07 19:46 - 2012-10-10 17:13 - 00000000 ___RD C:\Users\Denis\Dropbox
2013-07-07 17:54 - 2013-06-25 22:48 - 00000894 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2013-07-07 17:54 - 2012-08-25 22:36 - 00000000 ____D C:\Program Files\Nexus Mod Manager
2013-07-07 17:51 - 2013-02-25 18:20 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Audacity
2013-07-05 13:24 - 2013-06-11 16:30 - 00000000 ____D C:\Program Files (x86)\Object Browser
2013-07-03 11:44 - 2013-07-03 11:44 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-03 11:44 - 2013-05-26 12:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-02 20:39 - 2013-06-11 16:29 - 00000000 ____D C:\Users\Denis\AppData\Roaming\uTorrent
2013-07-02 20:39 - 2013-05-28 11:00 - 00000000 ____D C:\Users\Denis\AppData\Local\Unity
2013-07-01 16:14 - 2013-07-01 16:09 - 00000000 ____D C:\Users\Denis\Desktop\Neuer Ordner
2013-07-01 16:10 - 2013-07-01 16:10 - 00000000 _____ C:\Users\Denis\Desktop\Neues Textdokument.txt
2013-06-30 21:22 - 2013-06-30 21:22 - 00000000 _____ C:\Users\Denis\Desktop\320k.in.txt
2013-06-30 12:11 - 2013-06-30 12:10 - 00000146 _____ C:\Users\Denis\Desktop\programming.txt
2013-06-29 12:43 - 2013-04-01 22:37 - 00000068 _____ C:\Users\Denis\Desktop\Minecraft.bat
2013-06-29 12:41 - 2013-06-29 12:42 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-06-29 12:41 - 2013-06-29 12:41 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-06-29 12:41 - 2013-05-26 12:26 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-29 12:41 - 2012-01-25 22:13 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\npdeployJava1.dll
2013-06-29 12:41 - 2011-07-18 23:13 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\deployJava1.dll
2013-06-29 12:36 - 2013-06-29 12:36 - 00000705 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2013-06-28 18:49 - 2012-08-02 22:18 - 00000000 ____D C:\Users\Denis\AppData\Local\Akamai
2013-06-28 00:04 - 2013-07-09 13:38 - 00693112 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-06-28 00:04 - 2013-07-09 13:38 - 00078200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-27 19:43 - 2012-10-10 21:09 - 00000000 ____D C:\Users\Denis\AppData\Roaming\Spotify
2013-06-27 18:03 - 2012-10-10 21:10 - 00000000 ____D C:\Users\Denis\AppData\Local\Spotify
2013-06-26 13:33 - 2012-08-06 14:52 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 13:18 - 2013-06-11 16:31 - 00004234 _____ C:\WINDOWS\System32\Tasks\Object Browser-updater
2013-06-26 13:18 - 2013-06-11 16:30 - 00004138 _____ C:\WINDOWS\System32\Tasks\Object Browser-enabler
2013-06-26 12:19 - 2013-06-26 12:19 - 00002087 _____ C:\Users\Denis\Desktop\Skyrim (SKSE).lnk
2013-06-25 19:53 - 2013-06-25 19:53 - 00263186 _____ C:\Users\Denis\Desktop\Minecraft.exe
2013-06-25 18:11 - 2013-06-24 17:57 - 00000000 ____D C:\Users\Denis\Desktop\Modern Warfare 2 - Multiplayer
2013-06-24 18:01 - 2013-06-17 12:26 - 00001156 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play IW4M (Modern Warfare 2).lnk
2013-06-24 18:01 - 2013-06-17 12:26 - 00000000 ____D C:\Users\Denis\AppData\Local\IW4M
2013-06-24 17:39 - 2013-06-24 17:39 - 00001135 _____ C:\Users\Denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iw4mp.lnk
2013-06-24 15:40 - 2013-06-24 15:39 - 00000000 ____D C:\Users\Denis\Desktop\Spiele

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2013-07-22 15:33] - [2013-06-01 13:34] - 2391280 ____A (Microsoft Corporation) 0E8E6463F81C80AFBED533E0F1F8895D

C:\Windows\SysWOW64\explorer.exe
[2013-07-22 15:33] - [2013-06-01 12:24] - 2106176 ____A (Microsoft Corporation) EAFE46B0292D2BD2467835E2ACF717CC

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2013-07-22 15:33] - [2013-06-01 13:26] - 0327936 ____A (Microsoft Corporation) 78A5BBA3819FFFC62FFEC3E2220D102D



testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2013-07-23 03:01

==================== End Of Log ============================
         
--- --- ---

Vielen Dank kann geschlossen werden

Alt 25.07.2013, 07:39   #14
schrauber
/// the machine
/// TB-Ausbilder
 

Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Fertig

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.


Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 25.07.2013, 10:40   #15
Ceregon
 
Bitte um Hilfe beim entfernen von Instant Savings - Standard

Bitte um Hilfe beim entfernen von Instant Savings



Ok, hab jetzt alles gemacht. Virus ist weg und danke nochmals. Du hast mir sehr geholfen. Fragen habe ich auch keine mehr danke.

Antwort

Themen zu Bitte um Hilfe beim entfernen von Instant Savings
angezeigt, betriebssystem, browser, deinstallieren, dringend, einfach, entfernen, fehler, festplatte, frage, google, guten, hilfe, instant savings, malwarebytes, nenne, platte, plugin, programme, programmen, scan, scannt, start, systemsteuerung, thread, virus, windows



Ähnliche Themen: Bitte um Hilfe beim entfernen von Instant Savings


  1. Win7: Instant Savings Virus
    Log-Analyse und Auswertung - 24.10.2013 (7)
  2. Instant Savings Werbung und hohe CPU Auslastung
    Plagegeister aller Art und deren Bekämpfung - 30.09.2013 (12)
  3. Instant Savings - überall Werbung
    Plagegeister aller Art und deren Bekämpfung - 01.09.2013 (5)
  4. Instant Savings in Firefox - Flashplayer Plugin
    Log-Analyse und Auswertung - 19.08.2013 (32)
  5. instant savings Trojaner/Virus
    Log-Analyse und Auswertung - 15.08.2013 (17)
  6. Instant Savings in allen Browsern
    Plagegeister aller Art und deren Bekämpfung - 06.08.2013 (17)
  7. Instant Savings im Browser (bei FB, ebay ...)
    Plagegeister aller Art und deren Bekämpfung - 28.07.2013 (19)
  8. Instant Savings auf den Internetseiten
    Plagegeister aller Art und deren Bekämpfung - 21.07.2013 (13)
  9. TR/AGent.131072.V Trojaner bitte hilfe beim Entfernen!!!
    Plagegeister aller Art und deren Bekämpfung - 19.07.2013 (5)
  10. Instant Savings auf Facebook google und co
    Plagegeister aller Art und deren Bekämpfung - 15.07.2013 (13)
  11. Instant Savings auf Facebook, Ebay und CO.
    Plagegeister aller Art und deren Bekämpfung - 03.07.2013 (17)
  12. Click Compare, Instant Savings etc. Probleme bei Firefox
    Plagegeister aller Art und deren Bekämpfung - 19.06.2013 (5)
  13. Hilfe! Savings Sidekick entfernen..aber wie?
    Plagegeister aller Art und deren Bekämpfung - 05.11.2012 (12)
  14. Goingonearth auch bei mir ... bitte um Hilfe beim entfernen
    Plagegeister aller Art und deren Bekämpfung - 18.07.2011 (18)
  15. Windows Diagnostic - BITTE Hilfe beim entfernen
    Plagegeister aller Art und deren Bekämpfung - 14.04.2011 (23)
  16. Benötige bitte Hilfe beim kompletten Entfernen von worm.win32.netbooster
    Plagegeister aller Art und deren Bekämpfung - 01.05.2008 (31)
  17. dialer instant acces gefunde bitte um hilfe
    Log-Analyse und Auswertung - 15.03.2008 (0)

Zum Thema Bitte um Hilfe beim entfernen von Instant Savings - Guten Tag, hier ist ein Trojaner-Board- Neuling am Start, deswegen Fehler bitte nicht so übel nehmen. Ich habe mir nun Instant Savings eingefangen. In der Systemsteuerung bei den Programmen wird - Bitte um Hilfe beim entfernen von Instant Savings...
Archiv
Du betrachtest: Bitte um Hilfe beim entfernen von Instant Savings auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.