Trojaner-Board - Avira hat TR/Crypt-XPACK.Gen7 entdeckt.

Wie oben beschrieben wurde Xpack 7gen gefunden von Avira
Ist leider kein Fehlalarm und ich bitte um Hilfe.

Hier ist noch OTl auswertung

OTL logfile created on: 23.10.2012 10:24:04 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Simon\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy

8,00 Gb Total Physical Memory | 5,83 Gb Available Physical Memory | 72,92% Memory free
15,99 Gb Paging File | 13,44 Gb Available in Paging File | 84,03% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,75 Gb Total Space | 294,60 Gb Free Space | 63,25% Space Free | Partition Type: NTFS

Computer Name: SIMON-PC | User Name: Simon | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Simon\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe ()
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\program files (x86)\avira\antivir desktop\avcenter.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\libglesv2.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\libegl.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avutil-51.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avformat-54.dll ()
MOD - C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll ()
MOD - C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
MOD - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\SiteSafety.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()

========== Services (SafeList) ==========

SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (vToolbarUpdater13.0.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.0.0\ToolbarUpdater.exe ()
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe (TuneUp Software)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (Netzmanager Service) -- C:\Programme\Netzmanager\NMInfraIS2\Netzmanager_Service.exe (Deutsche Telekom AG)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (UMVPFSrv) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Logitech Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys (TuneUp Software)
DRV - (WinRing0_1_2_0) -- C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys (OpenLibSys.org)
DRV - (TelekomNM6) -- C:\Programme\Netzmanager\NMInfraIS2\Driver\TelekomNM6.sys (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=hp
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://isearch.avg.com/?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=hp
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={EC53E7BE-7A7B-4CE1-8FBD-E8AA94C4F438}&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&lang=de&ds=tt014&pr=sa&d=2012-10-01 13:21:17&v=13.0.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "www.google.de"
FF - prefs.js..keyword.URL: "https://isearch.avg.com/search?cid=%7B203b5989-58af-4c50-918d-1440b09cdfa8%7D&mid=366020833dcb47d0a5cf81ac0fb1da08-e1c9f0f809f4da940f44958a7073e3530adace22&ds=tt014&v=13.0.0.7&lang=de&pr=sa&d=2012-10-01%2013%3A21%3A17&sap=ku&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Simon\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Simon\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\13.0.0.7 [2012.10.01 13:22:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.09.30 19:33:58 | 000,000,000 | ---D | M]

[2012.09.30 19:34:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Simon\AppData\Roaming\mozilla\Extensions
[2012.09.30 19:33:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011.09.29 09:09:51 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011.09.29 03:24:37 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2012.10.01 13:20:31 | 000,003,743 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2011.09.29 03:16:42 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011.09.29 03:24:37 | 000,001,153 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2011.09.29 03:24:37 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2011.09.29 03:24:37 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2011.09.29 03:24:37 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:se archFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.79\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Simon\AppData\Local\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.0.0\\npsitesafety.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Simon\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google-Suche = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: AVG Secure Search = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.0.0.7_0\
CHR - Extension: Battlefield Play4Free = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.80.5_0\
CHR - Extension: Google Mail = C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.0.0.7\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.0.0.7\AVG Secure Search_toolbar.dll ()
O3 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O3 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000..\Run: [Spotify Web Helper] C:\Users\Simon\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe ()
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [5JYZ1C4FVBYX7A6FRWHZXTIXHSQ] C:\gb45g2q434g\22E75E01859.exe /q File not found
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1624875233-4052887027-26170781-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30942007-DF08-4864-84E8-1845CA2582BE}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.0.0\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{5d1bf1ca-0d79-11e2-9538-50e5495533fb}\Shell - "" = AutoRun
O33 - MountPoints2\{5d1bf1ca-0d79-11e2-9538-50e5495533fb}\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

File not found -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neue Funktion 1
[2012.10.21 19:12:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Sierra Entertainment
[2012.10.21 19:12:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Empire Earth III
[2012.10.20 20:44:21 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2012.10.20 20:44:21 | 000,109,080 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2012.10.20 20:44:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2012.10.20 20:04:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Labtec
[2012.10.20 00:07:26 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Sierra
[2012.10.20 00:07:26 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
[2012.10.20 00:07:19 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2012.10.20 00:03:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Games Company
[2012.10.19 23:52:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Games Company
[2012.10.19 21:21:55 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Ubisoft
[2012.10.19 20:18:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2013
[2012.10.19 19:14:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012.10.19 19:14:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2012.10.14 19:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SWF Studio
[2012.10.14 19:01:12 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Roaming\.#
[2012.10.13 16:29:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Ubisoft Game Launcher
[2012.10.13 16:29:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
[2012.10.13 16:22:12 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\PunkBuster
[2012.10.13 16:06:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2012.10.13 10:10:43 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\fltk.org
[2012.10.13 10:10:43 | 000,000,000 | ---D | C] -- C:\ProgramData\fltk.org
[2012.10.13 10:10:41 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Amnesia
[2012.10.12 19:05:36 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\LogMeIn Hamachi
[2012.10.12 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PunkBuster
[2012.10.12 16:49:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Battlefield Play4Free
[2012.10.12 16:39:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
[2012.10.12 16:19:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Games
[2012.10.11 15:52:20 | 019,906,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.10.11 15:52:20 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.10.11 15:52:20 | 012,501,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.10.11 15:52:20 | 007,697,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.10.11 15:52:20 | 006,127,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012.10.11 15:52:20 | 002,574,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.10.11 15:52:20 | 001,867,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.10.11 14:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft XNA
[2012.10.10 20:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
[2012.10.10 14:28:11 | 003,914,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012.10.10 14:28:10 | 003,968,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012.10.10 14:28:03 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012.10.10 14:28:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012.10.10 14:28:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012.10.10 14:28:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012.10.10 14:28:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012.10.10 14:28:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012.10.10 14:28:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012.10.10 14:28:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012.10.10 14:28:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012.10.10 14:28:01 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012.10.10 14:28:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012.10.10 14:27:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\Prospekte
[2012.10.09 21:39:21 | 002,428,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.10.09 21:34:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SlimWare Utilities Inc
[2012.10.09 21:34:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
[2012.10.09 21:34:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SlimDrivers
[2012.10.09 21:34:09 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2012.10.09 20:03:07 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\wargaming.net
[2012.10.09 20:02:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2012.10.09 19:52:09 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\SCP-087-B
[2012.10.09 19:24:21 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Evernote
[2012.10.09 14:49:51 | 000,696,760 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.10.09 14:49:51 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.10.08 13:43:43 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012.10.07 21:35:24 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SniperV2
[2012.10.07 21:31:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rebellion
[2012.10.07 21:28:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rebellion
[2012.10.06 13:59:32 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\FW_DE_Installer_0.201.0
[2012.10.06 13:59:03 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PMB Files
[2012.10.06 13:59:02 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2012.10.05 20:11:39 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\German
[2012.10.05 19:02:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\SKIDROW
[2012.10.05 19:02:12 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\My Games
[2012.10.05 18:51:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\2K Games
[2012.10.04 20:19:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\logishrd
[2012.10.04 18:25:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3
[2012.10.04 18:25:24 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012.10.04 18:25:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2012.10.04 06:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012.10.04 06:47:02 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\DAEMON Tools Lite
[2012.10.04 06:47:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2012.10.04 06:46:37 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012.10.03 11:42:43 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Spotify
[2012.10.03 11:42:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Spotify
[2012.10.03 03:20:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\WinRAR
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.10.03 01:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012.10.02 23:01:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2012.10.02 21:51:24 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2012.10.02 21:51:24 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2012.10.02 14:30:56 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.10.02 14:30:56 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012.10.02 14:30:56 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012.10.02 14:30:56 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012.10.02 14:30:56 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012.10.02 14:30:56 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012.10.02 14:30:56 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012.10.02 14:30:56 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012.10.02 14:30:56 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012.10.02 14:30:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012.10.02 14:30:55 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012.10.02 14:30:55 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.10.02 14:30:55 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012.10.02 14:30:55 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012.10.02 14:30:55 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.10.02 14:30:55 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012.10.02 14:30:55 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.10.02 14:30:55 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012.10.02 14:30:55 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012.10.02 14:30:55 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012.10.02 14:30:55 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.10.02 14:30:55 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012.10.02 14:30:55 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012.10.02 14:30:55 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012.10.02 14:30:55 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012.10.02 14:30:55 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012.10.02 14:30:55 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.10.02 14:30:55 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012.10.02 14:30:55 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012.10.02 14:30:55 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012.10.02 14:30:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012.10.02 14:30:55 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012.10.02 13:15:52 | 000,430,952 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012.10.01 20:55:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012.10.01 20:52:50 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2012.10.01 20:52:49 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2012.10.01 20:52:49 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2012.10.01 20:52:48 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2012.10.01 20:52:42 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012.10.01 20:52:42 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012.10.01 20:52:42 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012.10.01 20:52:41 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012.10.01 20:52:41 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012.10.01 20:52:34 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012.10.01 20:52:24 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012.10.01 20:52:24 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012.10.01 20:52:04 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012.10.01 20:52:04 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012.10.01 20:51:56 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012.10.01 20:51:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2012.10.01 20:51:56 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012.10.01 20:51:52 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012.10.01 20:51:46 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012.10.01 20:51:46 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012.10.01 20:51:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2012.10.01 20:51:41 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012.10.01 20:51:41 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012.10.01 20:51:41 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012.10.01 20:51:41 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012.10.01 20:51:41 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012.10.01 20:51:31 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012.10.01 20:51:29 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2012.10.01 20:51:29 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2012.10.01 20:51:28 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2012.10.01 20:51:28 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2012.10.01 20:51:22 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2012.10.01 20:51:15 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2012.10.01 20:51:13 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012.10.01 20:51:11 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2012.10.01 20:51:09 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012.10.01 20:51:03 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012.10.01 20:51:03 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2012.10.01 20:51:01 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2012.10.01 20:46:48 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012.10.01 20:13:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012.10.01 19:24:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WSE
[2012.10.01 19:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Netzmanager
[2012.10.01 19:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netzmanager
[2012.10.01 19:24:19 | 000,000,000 | -H-D | C] -- C:\ProgramData\{87B61FE8-334F-4066-B7AA-68DC81782D4D}
[2012.10.01 19:24:09 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\PackageAware
[2012.10.01 19:10:11 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\ElevatedDiagnostics
[2012.10.01 19:01:51 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\LolClient
[2012.10.01 19:01:30 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2012.10.01 19:01:30 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2012.10.01 19:01:28 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2012.10.01 15:14:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon
[2012.10.01 15:10:02 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012.10.01 15:09:32 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Google
[2012.10.01 15:06:20 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\Dragonica
[2012.10.01 15:01:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012.10.01 15:01:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012.10.01 15:01:07 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012.10.01 14:57:07 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\NVIDIA
[2012.10.01 14:55:59 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\.minecraft
[2012.10.01 14:44:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Etron Technology
[2012.10.01 14:36:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2012.10.01 14:36:11 | 000,753,280 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll
[2012.10.01 14:36:09 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2012.10.01 14:36:08 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2012.10.01 14:36:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2012.10.01 14:35:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2012.10.01 14:33:46 | 000,000,000 | ---D | C] -- C:\temp
[2012.10.01 14:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012.10.01 14:33:03 | 015,309,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.10.01 14:26:33 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius
[2012.10.01 14:25:27 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2012.10.01 14:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2012.10.01 14:23:24 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\uTorrent
[2012.10.01 14:07:29 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\DragonicaSCB
[2012.10.01 13:57:28 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2012.10.01 13:56:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Avira
[2012.10.01 13:54:10 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Skype
[2012.10.01 13:53:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012.10.01 13:50:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2012.10.01 13:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2012.10.01 13:50:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2012.10.01 13:34:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2012.10.01 13:24:21 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\AVG Secure Search
[2012.10.01 13:23:24 | 000,021,344 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2012.10.01 13:23:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
[2012.10.01 13:22:57 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012.10.01 13:20:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search
[2012.10.01 13:20:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG Secure Search
[2012.10.01 13:18:20 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\TuneUp Software
[2012.10.01 13:16:03 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\League of Legends
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\MFAData
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012.10.01 13:14:31 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Avg2013
[2012.10.01 13:13:06 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2012.10.01 13:12:27 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012.10.01 13:12:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012.10.01 13:09:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Macromedia
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Macromedia
[2012.10.01 12:57:14 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Adobe
[2012.10.01 12:54:54 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2012.10.01 12:54:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2012.10.01 12:54:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
[2012.10.01 12:54:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DriverTuner
[2012.10.01 12:51:59 | 000,076,392 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2012.10.01 12:50:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2012.10.01 12:39:14 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2012.10.01 12:39:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2012.10.01 03:30:27 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012.10.01 03:28:20 | 000,000,000 | ---D | C] -- C:\Windows\de-DE
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\de-DE
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\de
[2012.10.01 03:28:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\0407
[2012.10.01 03:25:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\tcpip.sys.mui
[2012.10.01 03:25:53 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\bfe.dll.mui
[2012.10.01 03:25:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\scfilter.sys.mui
[2012.10.01 03:25:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\qwavedrv.sys.mui
[2012.10.01 03:25:46 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\pacer.sys.mui
[2012.10.01 03:25:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\de-DE\ndiscap.sys.mui
[2012.10.01 03:14:28 | 000,000,000 | ---D | C] -- C:\Windows\Windows.old
[2012.09.30 19:57:22 | 000,000,000 | ---D | C] -- C:\Users\Simon\Documents\DriverGenius
[2012.09.30 19:36:07 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2012.09.30 19:36:07 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2012.09.30 19:36:06 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2012.09.30 19:36:06 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2012.09.30 19:36:04 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2012.09.30 19:36:04 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2012.09.30 19:36:04 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2012.09.30 19:36:04 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2012.09.30 19:36:04 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2012.09.30 19:36:04 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2012.09.30 19:36:03 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2012.09.30 19:36:03 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2012.09.30 19:36:02 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2012.09.30 19:36:02 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2012.09.30 19:36:02 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2012.09.30 19:36:01 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2012.09.30 19:36:01 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2012.09.30 19:36:01 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2012.09.30 19:36:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2012.09.30 19:36:01 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2012.09.30 19:36:01 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2012.09.30 19:36:00 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2012.09.30 19:36:00 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2012.09.30 19:36:00 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2012.09.30 19:35:59 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2012.09.30 19:35:58 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2012.09.30 19:35:58 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2012.09.30 19:35:57 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2012.09.30 19:35:56 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2012.09.30 19:35:56 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2012.09.30 19:35:56 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2012.09.30 19:35:56 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2012.09.30 19:35:56 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2012.09.30 19:35:55 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2012.09.30 19:35:55 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2012.09.30 19:35:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2012.09.30 19:35:49 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2012.09.30 19:35:49 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2012.09.30 19:35:46 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2012.09.30 19:35:46 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2012.09.30 19:35:45 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2012.09.30 19:35:45 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2012.09.30 19:35:44 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2012.09.30 19:35:44 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2012.09.30 19:35:44 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2012.09.30 19:35:44 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2012.09.30 19:35:44 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2012.09.30 19:35:44 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2012.09.30 19:35:43 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2012.09.30 19:35:43 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2012.09.30 19:35:42 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2012.09.30 19:35:42 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2012.09.30 19:35:42 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2012.09.30 19:35:40 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2012.09.30 19:35:40 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2012.09.30 19:35:40 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2012.09.30 19:35:40 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2012.09.30 19:35:39 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2012.09.30 19:35:39 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2012.09.30 19:35:39 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2012.09.30 19:35:39 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2012.09.30 19:35:39 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2012.09.30 19:35:38 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2012.09.30 19:35:38 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2012.09.30 19:35:38 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2012.09.30 19:35:38 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2012.09.30 19:35:38 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2012.09.30 19:35:37 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2012.09.30 19:35:37 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2012.09.30 19:35:37 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2012.09.30 19:35:37 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2012.09.30 19:35:36 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2012.09.30 19:35:36 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2012.09.30 19:35:36 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2012.09.30 19:35:35 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2012.09.30 19:35:35 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2012.09.30 19:35:34 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2012.09.30 19:35:34 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2012.09.30 19:35:33 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2012.09.30 19:35:28 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2012.09.30 19:35:28 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2012.09.30 19:35:28 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2012.09.30 19:35:27 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2012.09.30 19:35:27 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2012.09.30 19:35:27 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2012.09.30 19:35:27 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2012.09.30 19:35:26 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2012.09.30 19:35:26 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2012.09.30 19:34:05 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Mozilla
[2012.09.30 19:34:05 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Mozilla
[2012.09.30 19:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012.09.30 18:59:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius Professional Edition
[2012.09.30 18:59:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2012.09.30 18:59:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012.09.30 18:59:09 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012.09.30 18:58:32 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012.09.30 18:55:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Programme
[2012.09.30 18:49:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2012.09.30 18:07:10 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Toribash
[2012.09.30 18:02:54 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Diagnostics
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\Searches
[2012.09.30 17:59:22 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012.09.30 17:59:13 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Identities
[2012.09.30 17:59:10 | 000,000,000 | R--D | C] -- C:\Users\Simon\Contacts
[2012.09.30 17:59:08 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\VirtualStore
[2012.09.30 17:58:50 | 000,000,000 | --SD | C] -- C:\Users\Simon\AppData\Roaming\Microsoft
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Videos
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Saved Games
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Pictures
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Music
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Links
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Favorites
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Downloads
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Documents
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\Desktop
[2012.09.30 17:58:50 | 000,000,000 | R--D | C] -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Vorlagen
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Verlauf
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Temporary Internet Files
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Startmenü
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\SendTo
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Recent
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Netzwerkumgebung
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Lokale Einstellungen
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Videos
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Musik
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Eigene Dateien
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Documents\Eigene Bilder
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Druckumgebung
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Cookies
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\AppData\Local\Anwendungsdaten
[2012.09.30 17:58:50 | 000,000,000 | -HSD | C] -- C:\Users\Simon\Anwendungsdaten
[2012.09.30 17:58:50 | 000,000,000 | -H-D | C] -- C:\Users\Simon\AppData
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Temp
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Local\Microsoft
[2012.09.30 17:58:50 | 000,000,000 | ---D | C] -- C:\Users\Simon\AppData\Roaming\Media Center Programs
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2012.09.30 17:58:35 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2012.09.30 17:35:06 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012.09.30 17:32:47 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012.09.26 22:34:44 | 000,000,000 | ---D | C] -- C:\Users\Simon\Desktop\Lavalon Dragonica
[2010.06.02 05:22:02 | 000,089,944 | ---- | C] (Microsoft Corporation) -- C:\Users\Simon\DSETUP.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012.10.23 10:19:00 | 000,001,120 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000UA.job
[2012.10.23 10:01:36 | 000,000,410 | ---- | M] () -- C:\Windows\tasks\SlimDrivers Startup.job
[2012.10.23 10:01:01 | 000,000,308 | ---- | M] () -- C:\Windows\tasks\RtlDashSrvStart.job
[2012.10.23 10:00:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.10.23 10:00:53 | 501,833,722 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012.10.23 09:31:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.22 15:19:00 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000Core.job
[2012.10.21 10:36:18 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012.10.21 10:36:18 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.10.20 21:41:35 | 001,160,505 | ---- | M] () -- C:\Users\Simon\Desktop\auge2.jpg
[2012.10.20 21:11:36 | 008,051,905 | ---- | M] () -- C:\Users\Simon\Desktop\ich liebe dich simon.jpg
[2012.10.20 20:44:21 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2012.10.20 20:44:21 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2012.10.20 20:30:10 | 009,172,364 | ---- | M] () -- C:\Users\Simon\Desktop\le prince charmant.jpg
[2012.10.20 20:03:32 | 003,085,702 | ---- | M] () -- C:\Users\Simon\Desktop\Ich liebe dich.jpg
[2012.10.20 01:09:33 | 000,281,288 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012.10.19 23:31:14 | 000,000,025 | ---- | M] () -- C:\Windows\SIERRA.INI
[2012.10.19 20:18:26 | 000,002,209 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2012.10.19 20:18:26 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
[2012.10.19 19:58:44 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.10.12 18:35:47 | 000,000,222 | ---- | M] () -- C:\Users\Simon\Desktop\APB Reloaded.url
[2012.10.12 14:52:31 | 000,305,016 | ---- | M] () -- C:\Users\Simon\Desktop\Video call snapshot 2.png
[2012.10.12 14:31:00 | 000,115,664 | ---- | M] () -- C:\Users\Simon\Desktop\lächeln.png
[2012.10.11 21:34:54 | 000,152,564 | ---- | M] () -- C:\Users\Simon\Desktop\schurr2.png
[2012.10.11 21:13:39 | 000,177,013 | ---- | M] () -- C:\Users\Simon\Desktop\mein verrückter schadz.png
[2012.10.11 14:45:35 | 000,000,222 | ---- | M] () -- C:\Users\Simon\Desktop\Terraria.url
[2012.10.11 14:20:37 | 000,002,445 | ---- | M] () -- C:\Users\Simon\Desktop\Google Chrome.lnk
[2012.10.10 20:35:05 | 000,000,769 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2012.10.10 15:05:15 | 000,033,041 | ---- | M] () -- C:\Users\Simon\Desktop\Prospekte.rar
[2012.10.09 21:34:10 | 000,002,467 | ---- | M] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2012.10.09 15:31:10 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012.10.09 15:31:10 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012.10.07 22:45:02 | 000,187,856 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft Modinstaller 1.3.2.jar
[2012.10.07 22:36:55 | 000,063,990 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft Mods.exe
[2012.10.07 21:31:46 | 000,002,221 | ---- | M] () -- C:\Users\Simon\Desktop\Sniper Elite V2.lnk
[2012.10.07 19:19:40 | 000,287,765 | ---- | M] () -- C:\Users\Simon\Desktop\thihihihi.jpg
[2012.10.05 19:39:47 | 000,116,873 | ---- | M] () -- C:\Users\Simon\Desktop\Video call snapshot 12.png
[2012.10.04 21:15:31 | 001,616,854 | ---- | M] () -- C:\Users\Simon\Desktop\schhaddddzzz.png
[2012.10.04 20:19:52 | 000,050,633 | ---- | M] () -- C:\Users\Simon\Desktop\ich liebe dich mein ein und alles.jpg
[2012.10.04 19:43:23 | 000,084,343 | ---- | M] () -- C:\Users\Simon\Desktop\IMG_1358.JPG
[2012.10.04 18:42:25 | 000,000,068 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft.bat
[2012.10.04 18:25:25 | 000,001,182 | ---- | M] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2012.10.04 18:25:25 | 000,001,170 | ---- | M] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
[2012.10.04 06:47:10 | 000,001,950 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012.10.03 21:03:31 | 000,093,905 | ---- | M] () -- C:\Users\Simon\Documents\schadzii2.png
[2012.10.03 20:57:56 | 011,595,503 | ---- | M] () -- C:\Users\Simon\Documents\scchhaddzz1234.png
[2012.10.03 11:42:43 | 000,001,805 | ---- | M] () -- C:\Users\Simon\Desktop\Spotify.lnk
[2012.10.03 00:21:00 | 019,906,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012.10.03 00:21:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012.10.03 00:21:00 | 015,309,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012.10.03 00:21:00 | 012,501,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012.10.03 00:21:00 | 007,697,768 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012.10.03 00:21:00 | 006,127,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012.10.03 00:21:00 | 002,574,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012.10.03 00:21:00 | 002,428,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012.10.03 00:21:00 | 001,867,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012.10.02 14:46:26 | 001,588,762 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.02 14:30:56 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012.10.02 14:30:56 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012.10.02 14:30:56 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012.10.02 14:30:56 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012.10.02 14:30:56 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012.10.02 14:30:56 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012.10.02 14:30:56 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012.10.02 14:30:56 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012.10.02 14:30:56 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012.10.02 14:30:56 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012.10.02 14:30:55 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012.10.02 14:30:55 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012.10.02 14:30:55 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012.10.02 14:30:55 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012.10.02 14:30:55 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012.10.02 14:30:55 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012.10.02 14:30:55 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012.10.02 14:30:55 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012.10.02 14:30:55 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012.10.02 14:30:55 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012.10.02 14:30:55 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012.10.02 14:30:55 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012.10.02 14:30:55 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012.10.02 14:30:55 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012.10.02 14:30:55 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012.10.02 14:30:55 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012.10.02 14:30:55 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012.10.02 14:30:55 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012.10.02 14:30:55 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012.10.02 14:30:55 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012.10.02 14:30:55 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012.10.02 14:30:55 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012.10.02 14:30:55 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012.10.02 13:15:52 | 000,430,952 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2012.10.01 19:24:30 | 000,001,003 | ---- | M] () -- C:\Users\Public\Desktop\Netzmanager.lnk
[2012.10.01 19:01:35 | 000,001,722 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends spielen .lnk
[2012.10.01 15:01:08 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012.10.01 14:54:12 | 000,263,186 | ---- | M] () -- C:\Users\Simon\Desktop\Minecraft.exe
[2012.10.01 14:25:14 | 000,001,207 | ---- | M] () -- C:\Users\Simon\Desktop\Driver Genius Professional Edition.lnk
[2012.10.01 14:23:46 | 000,000,943 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012.10.01 13:50:57 | 000,002,066 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012.10.01 12:54:08 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\DriverTuner.lnk
[2012.10.01 12:21:18 | 060,004,288 | ---- | M] () -- C:\Users\Simon\Desktop\PROWinx64.exe
[2012.10.01 03:30:15 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2012.09.30 20:01:01 | 000,000,000 | -H-- | M] () -- C:\Users\Simon\Documents\Default.rdp
[2012.09.30 19:34:00 | 000,001,138 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.30 19:31:48 | 000,001,842 | ---- | M] () -- C:\Users\Simon\Desktop\cnc3ep1 - Verknüpfung.lnk
[2012.09.30 18:59:01 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012.09.30 17:36:56 | 000,055,513 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012.10.20 21:41:10 | 001,160,505 | ---- | C] () -- C:\Users\Simon\Desktop\auge2.jpg
[2012.10.20 21:10:59 | 008,051,905 | ---- | C] () -- C:\Users\Simon\Desktop\ich liebe dich simon.jpg
[2012.10.20 20:29:31 | 009,172,364 | ---- | C] () -- C:\Users\Simon\Desktop\le prince charmant.jpg
[2012.10.20 20:02:56 | 003,085,702 | ---- | C] () -- C:\Users\Simon\Desktop\Ich liebe dich.jpg
[2012.10.19 23:26:05 | 000,000,025 | ---- | C] () -- C:\Windows\SIERRA.INI
[2012.10.12 18:35:47 | 000,000,222 | ---- | C] () -- C:\Users\Simon\Desktop\APB Reloaded.url
[2012.10.12 17:00:42 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012.10.12 16:39:36 | 000,281,288 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012.10.12 16:39:36 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012.10.12 16:39:35 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.10.12 14:52:09 | 000,305,016 | ---- | C] () -- C:\Users\Simon\Desktop\Video call snapshot 2.png
[2012.10.12 14:30:58 | 000,115,664 | ---- | C] () -- C:\Users\Simon\Desktop\lächeln.png
[2012.10.11 21:34:51 | 000,152,564 | ---- | C] () -- C:\Users\Simon\Desktop\schurr2.png
[2012.10.11 21:13:36 | 000,177,013 | ---- | C] () -- C:\Users\Simon\Desktop\mein verrückter schadz.png
[2012.10.11 14:45:35 | 000,000,222 | ---- | C] () -- C:\Users\Simon\Desktop\Terraria.url
[2012.10.10 20:35:05 | 000,000,769 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
[2012.10.10 15:05:15 | 000,033,041 | ---- | C] () -- C:\Users\Simon\Desktop\Prospekte.rar
[2012.10.09 21:34:17 | 000,000,410 | ---- | C] () -- C:\Windows\tasks\SlimDrivers Startup.job
[2012.10.09 21:34:10 | 000,002,467 | ---- | C] () -- C:\Users\Public\Desktop\SlimDrivers.lnk
[2012.10.09 14:49:52 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.10.08 13:43:41 | 501,833,722 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012.10.07 22:46:37 | 000,187,856 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft Modinstaller 1.3.2.jar
[2012.10.07 22:37:02 | 000,063,990 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft Mods.exe
[2012.10.07 21:31:46 | 000,002,221 | ---- | C] () -- C:\Users\Simon\Desktop\Sniper Elite V2.lnk
[2012.10.07 19:19:18 | 000,287,765 | ---- | C] () -- C:\Users\Simon\Desktop\thihihihi.jpg
[2012.10.05 19:39:29 | 000,116,873 | ---- | C] () -- C:\Users\Simon\Desktop\Video call snapshot 12.png
[2012.10.04 21:15:03 | 001,616,854 | ---- | C] () -- C:\Users\Simon\Desktop\schhaddddzzz.png
[2012.10.04 20:19:39 | 000,050,633 | ---- | C] () -- C:\Users\Simon\Desktop\ich liebe dich mein ein und alles.jpg
[2012.10.04 19:43:21 | 000,084,343 | ---- | C] () -- C:\Users\Simon\Desktop\IMG_1358.JPG
[2012.10.04 18:42:25 | 000,000,068 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft.bat
[2012.10.04 18:25:25 | 000,001,182 | ---- | C] () -- C:\Users\Public\Desktop\Switch to Gaming Mode.lnk
[2012.10.04 18:25:25 | 000,001,170 | ---- | C] () -- C:\Users\Public\Desktop\Game Booster 3.lnk
[2012.10.04 06:47:10 | 000,001,950 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012.10.03 21:03:15 | 000,093,905 | ---- | C] () -- C:\Users\Simon\Documents\schadzii2.png
[2012.10.03 20:57:13 | 011,595,503 | ---- | C] () -- C:\Users\Simon\Documents\scchhaddzz1234.png
[2012.10.03 11:42:43 | 000,001,805 | ---- | C] () -- C:\Users\Simon\Desktop\Spotify.lnk
[2012.10.03 11:42:43 | 000,001,791 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2012.10.02 21:57:55 | 000,000,308 | ---- | C] () -- C:\Windows\tasks\RtlDashSrvStart.job
[2012.10.02 14:30:55 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012.10.01 19:24:30 | 000,001,003 | ---- | C] () -- C:\Users\Public\Desktop\Netzmanager.lnk
[2012.10.01 19:01:35 | 000,001,722 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends spielen .lnk
[2012.10.01 15:10:03 | 000,002,445 | ---- | C] () -- C:\Users\Simon\Desktop\Google Chrome.lnk
[2012.10.01 15:09:34 | 000,001,120 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000UA.job
[2012.10.01 15:09:33 | 000,001,068 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1624875233-4052887027-26170781-1000Core.job
[2012.10.01 15:01:08 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012.10.01 14:54:12 | 000,263,186 | ---- | C] () -- C:\Users\Simon\Desktop\Minecraft.exe
[2012.10.01 14:23:46 | 000,000,943 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012.10.01 13:50:57 | 000,002,066 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012.10.01 13:40:16 | 001,588,762 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.01 13:23:23 | 000,002,209 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
[2012.10.01 13:23:23 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
[2012.10.01 13:23:20 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk
[2012.10.01 12:54:08 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\DriverTuner.lnk
[2012.10.01 12:24:54 | 060,004,288 | ---- | C] () -- C:\Users\Simon\Desktop\PROWinx64.exe
[2012.10.01 03:29:52 | 000,000,029 | RH-- | C] () -- C:\Windows\version
[2012.09.30 20:01:01 | 000,000,000 | -H-- | C] () -- C:\Users\Simon\Documents\Default.rdp
[2012.09.30 19:34:00 | 000,001,150 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012.09.30 19:34:00 | 000,001,138 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012.09.30 19:31:48 | 000,001,842 | ---- | C] () -- C:\Users\Simon\Desktop\cnc3ep1 - Verknüpfung.lnk
[2012.09.30 18:59:36 | 000,001,207 | ---- | C] () -- C:\Users\Simon\Desktop\Driver Genius Professional Edition.lnk
[2012.09.30 17:59:30 | 000,001,405 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2012.09.30 17:59:25 | 000,001,439 | ---- | C] () -- C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012.09.30 17:36:43 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012.09.30 17:36:29 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012.01.18 06:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll
[2012.01.18 06:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll
[2012.01.18 06:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe
[2010.06.02 05:22:54 | 001,412,902 | ---- | C] () -- C:\Users\Simon\OCT2006_d3dx9_31_x64.cab
[2010.06.02 05:22:54 | 001,127,217 | ---- | C] () -- C:\Users\Simon\OCT2006_d3dx9_31_x86.cab
[2010.06.02 05:22:54 | 000,273,960 | ---- | C] () -- C:\Users\Simon\Nov2008_XAudio_x64.cab
[2010.06.02 05:22:54 | 000,272,611 | ---- | C] () -- C:\Users\Simon\Nov2008_XAudio_x86.cab
[2010.06.02 05:22:54 | 000,182,361 | ---- | C] () -- C:\Users\Simon\OCT2006_XACT_x64.cab
[2010.06.02 05:22:54 | 000,138,017 | ---- | C] () -- C:\Users\Simon\OCT2006_XACT_x86.cab
[2010.06.02 05:22:54 | 000,086,037 | ---- | C] () -- C:\Users\Simon\Oct2005_xinput_x64.cab
[2010.06.02 05:22:54 | 000,045,359 | ---- | C] () -- C:\Users\Simon\Oct2005_xinput_x86.cab
[2010.06.02 05:22:52 | 001,906,878 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx9_40_x64.cab
[2010.06.02 05:22:52 | 001,550,796 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx9_40_x86.cab
[2010.06.02 05:22:52 | 000,965,421 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx10_40_x86.cab
[2010.06.02 05:22:52 | 000,121,794 | ---- | C] () -- C:\Users\Simon\Nov2008_XACT_x64.cab
[2010.06.02 05:22:52 | 000,092,684 | ---- | C] () -- C:\Users\Simon\Nov2008_XACT_x86.cab
[2010.06.02 05:22:52 | 000,054,522 | ---- | C] () -- C:\Users\Simon\Nov2008_X3DAudio_x64.cab
[2010.06.02 05:22:52 | 000,021,851 | ---- | C] () -- C:\Users\Simon\Nov2008_X3DAudio_x86.cab
[2010.06.02 05:22:50 | 000,994,154 | ---- | C] () -- C:\Users\Simon\Nov2008_d3dx10_40_x64.cab
[2010.06.02 05:22:50 | 000,196,762 | ---- | C] () -- C:\Users\Simon\NOV2007_XACT_x64.cab
[2010.06.02 05:22:50 | 000,148,264 | ---- | C] () -- C:\Users\Simon\NOV2007_XACT_x86.cab
[2010.06.02 05:22:50 | 000,046,144 | ---- | C] () -- C:\Users\Simon\NOV2007_X3DAudio_x64.cab
[2010.06.02 05:22:50 | 000,018,496 | ---- | C] () -- C:\Users\Simon\NOV2007_X3DAudio_x86.cab
[2010.06.02 05:22:48 | 001,802,058 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx9_36_x64.cab
[2010.06.02 05:22:48 | 001,709,360 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx9_36_x86.cab
[2010.06.02 05:22:48 | 000,864,600 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx10_36_x64.cab
[2010.06.02 05:22:48 | 000,803,884 | ---- | C] () -- C:\Users\Simon\Nov2007_d3dx10_36_x86.cab
[2010.06.02 05:22:48 | 000,273,018 | ---- | C] () -- C:\Users\Simon\Mar2009_XAudio_x86.cab
[2010.06.02 05:22:46 | 000,275,044 | ---- | C] () -- C:\Users\Simon\Mar2009_XAudio_x64.cab
[2010.06.02 05:22:46 | 000,121,506 | ---- | C] () -- C:\Users\Simon\Mar2009_XACT_x64.cab
[2010.06.02 05:22:46 | 000,092,740 | ---- | C] () -- C:\Users\Simon\Mar2009_XACT_x86.cab
[2010.06.02 05:22:38 | 000,054,600 | ---- | C] () -- C:\Users\Simon\Mar2009_X3DAudio_x64.cab
[2010.06.02 05:22:38 | 000,021,298 | ---- | C] () -- C:\Users\Simon\Mar2009_X3DAudio_x86.cab
[2010.06.02 05:22:36 | 001,973,702 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx9_41_x64.cab
[2010.06.02 05:22:36 | 001,612,446 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx9_41_x86.cab
[2010.06.02 05:22:36 | 001,067,160 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx10_41_x64.cab
[2010.06.02 05:22:36 | 001,040,745 | ---- | C] () -- C:\Users\Simon\Mar2009_d3dx10_41_x86.cab
[2010.06.02 05:22:36 | 000,251,194 | ---- | C] () -- C:\Users\Simon\Mar2008_XAudio_x64.cab
[2010.06.02 05:22:36 | 000,226,250 | ---- | C] () -- C:\Users\Simon\Mar2008_XAudio_x86.cab
[2010.06.02 05:22:36 | 000,122,336 | ---- | C] () -- C:\Users\Simon\Mar2008_XACT_x64.cab
[2010.06.02 05:22:36 | 000,093,734 | ---- | C] () -- C:\Users\Simon\Mar2008_XACT_x86.cab
[2010.06.02 05:22:34 | 001,769,862 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx9_37_x64.cab
[2010.06.02 05:22:34 | 001,443,282 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx9_37_x86.cab
[2010.06.02 05:22:34 | 000,818,260 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx10_37_x86.cab
[2010.06.02 05:22:34 | 000,055,058 | ---- | C] () -- C:\Users\Simon\Mar2008_X3DAudio_x64.cab
[2010.06.02 05:22:34 | 000,021,867 | ---- | C] () -- C:\Users\Simon\Mar2008_X3DAudio_x86.cab
[2010.06.02 05:22:32 | 000,937,246 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx9_43_x64.cab
[2010.06.02 05:22:32 | 000,844,884 | ---- | C] () -- C:\Users\Simon\Mar2008_d3dx10_37_x64.cab
[2010.06.02 05:22:32 | 000,768,036 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx9_43_x86.cab
[2010.06.02 05:22:32 | 000,278,060 | ---- | C] () -- C:\Users\Simon\Jun2010_XAudio_x86.cab
[2010.06.02 05:22:32 | 000,277,338 | ---- | C] () -- C:\Users\Simon\Jun2010_XAudio_x64.cab
[2010.06.02 05:22:32 | 000,124,596 | ---- | C] () -- C:\Users\Simon\Jun2010_XACT_x64.cab
[2010.06.02 05:22:32 | 000,093,686 | ---- | C] () -- C:\Users\Simon\Jun2010_XACT_x86.cab
[2010.06.02 05:22:30 | 000,762,188 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dcsx_43_x86.cab
[2010.06.02 05:22:30 | 000,235,955 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx10_43_x64.cab
[2010.06.02 05:22:30 | 000,197,283 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx10_43_x86.cab
[2010.06.02 05:22:30 | 000,138,205 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx11_43_x64.cab
[2010.06.02 05:22:30 | 000,109,445 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dx11_43_x86.cab
[2010.06.02 05:22:28 | 000,944,460 | ---- | C] () -- C:\Users\Simon\Jun2010_D3DCompiler_43_x64.cab
[2010.06.02 05:22:28 | 000,931,471 | ---- | C] () -- C:\Users\Simon\Jun2010_D3DCompiler_43_x86.cab
[2010.06.02 05:22:28 | 000,752,783 | ---- | C] () -- C:\Users\Simon\Jun2010_d3dcsx_43_x64.cab
[2010.06.02 05:22:20 | 000,269,024 | ---- | C] () -- C:\Users\Simon\JUN2008_XAudio_x86.cab
[2010.06.02 05:22:18 | 001,792,608 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx9_38_x64.cab
[2010.06.02 05:22:18 | 001,463,878 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx9_38_x86.cab
[2010.06.02 05:22:18 | 000,867,828 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx10_38_x64.cab
[2010.06.02 05:22:18 | 000,849,919 | ---- | C] () -- C:\Users\Simon\JUN2008_d3dx10_38_x86.cab
[2010.06.02 05:22:18 | 000,269,628 | ---- | C] () -- C:\Users\Simon\JUN2008_XAudio_x64.cab
[2010.06.02 05:22:18 | 000,152,909 | ---- | C] () -- C:\Users\Simon\JUN2007_XACT_x86.cab
[2010.06.02 05:22:18 | 000,121,054 | ---- | C] () -- C:\Users\Simon\JUN2008_XACT_x64.cab
[2010.06.02 05:22:18 | 000,093,128 | ---- | C] () -- C:\Users\Simon\JUN2008_XACT_x86.cab
[2010.06.02 05:22:18 | 000,055,154 | ---- | C] () -- C:\Users\Simon\JUN2008_X3DAudio_x64.cab
[2010.06.02 05:22:18 | 000,021,905 | ---- | C] () -- C:\Users\Simon\JUN2008_X3DAudio_x86.cab
[2010.06.02 05:22:16 | 001,607,774 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx9_34_x64.cab
[2010.06.02 05:22:16 | 001,607,286 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx9_34_x86.cab
[2010.06.02 05:22:16 | 001,064,925 | ---- | C] () -- C:\Users\Simon\Jun2005_d3dx9_26_x86.cab
[2010.06.02 05:22:16 | 000,699,044 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx10_34_x64.cab
[2010.06.02 05:22:16 | 000,698,472 | ---- | C] () -- C:\Users\Simon\JUN2007_d3dx10_34_x86.cab
[2010.06.02 05:22:16 | 000,197,122 | ---- | C] () -- C:\Users\Simon\JUN2007_XACT_x64.cab
[2010.06.02 05:22:16 | 000,180,785 | ---- | C] () -- C:\Users\Simon\JUN2006_XACT_x64.cab
[2010.06.02 05:22:16 | 000,133,671 | ---- | C] () -- C:\Users\Simon\JUN2006_XACT_x86.cab
[2010.06.02 05:22:14 | 001,336,002 | ---- | C] () -- C:\Users\Simon\Jun2005_d3dx9_26_x64.cab
[2010.06.02 05:22:14 | 000,277,191 | ---- | C] () -- C:\Users\Simon\Feb2010_XAudio_x86.cab
[2010.06.02 05:22:14 | 000,276,960 | ---- | C] () -- C:\Users\Simon\Feb2010_XAudio_x64.cab
[2010.06.02 05:22:14 | 000,122,446 | ---- | C] () -- C:\Users\Simon\Feb2010_XACT_x64.cab
[2010.06.02 05:22:14 | 000,093,180 | ---- | C] () -- C:\Users\Simon\Feb2010_XACT_x86.cab
[2010.06.02 05:22:12 | 000,194,675 | ---- | C] () -- C:\Users\Simon\FEB2007_XACT_x64.cab
[2010.06.02 05:22:12 | 000,147,983 | ---- | C] () -- C:\Users\Simon\FEB2007_XACT_x86.cab
[2010.06.02 05:22:12 | 000,054,678 | ---- | C] () -- C:\Users\Simon\Feb2010_X3DAudio_x64.cab
[2010.06.02 05:22:12 | 000,020,713 | ---- | C] () -- C:\Users\Simon\Feb2010_X3DAudio_x86.cab
[2010.06.02 05:22:10 | 000,178,359 | ---- | C] () -- C:\Users\Simon\Feb2006_XACT_x64.cab
[2010.06.02 05:22:10 | 000,132,409 | ---- | C] () -- C:\Users\Simon\Feb2006_XACT_x86.cab
[2010.06.02 05:22:04 | 001,084,720 | ---- | C] () -- C:\Users\Simon\Feb2006_d3dx9_29_x86.cab
[2010.06.02 05:22:02 | 001,801,048 | ---- | C] () -- C:\Users\Simon\dsetup32.dll
[2010.06.02 05:22:02 | 001,574,376 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx9_32_x86.cab
[2010.06.02 05:22:02 | 001,362,796 | ---- | C] () -- C:\Users\Simon\Feb2006_d3dx9_29_x64.cab
[2010.06.02 05:22:02 | 001,247,499 | ---- | C] () -- C:\Users\Simon\Feb2005_d3dx9_24_x64.cab
[2010.06.02 05:22:02 | 001,013,225 | ---- | C] () -- C:\Users\Simon\Feb2005_d3dx9_24_x86.cab
[2010.06.02 05:22:02 | 000,537,432 | ---- | C] () -- C:\Users\Simon\DXSETUP.exe
[2010.06.02 05:22:02 | 000,192,475 | ---- | C] () -- C:\Users\Simon\DEC2006_XACT_x64.cab
[2010.06.02 05:22:02 | 000,145,599 | ---- | C] () -- C:\Users\Simon\DEC2006_XACT_x86.cab
[2010.06.02 05:22:02 | 000,094,011 | ---- | C] () -- C:\Users\Simon\dxupdate.cab
[2010.06.02 05:22:02 | 000,042,410 | ---- | C] () -- C:\Users\Simon\dxdllreg_x86.cab
[2010.06.02 05:22:00 | 001,571,154 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx9_32_x64.cab
[2010.06.02 05:22:00 | 001,357,976 | ---- | C] () -- C:\Users\Simon\Dec2005_d3dx9_28_x64.cab
[2010.06.02 05:22:00 | 001,079,456 | ---- | C] () -- C:\Users\Simon\Dec2005_d3dx9_28_x86.cab
[2010.06.02 05:22:00 | 000,273,264 | ---- | C] () -- C:\Users\Simon\Aug2009_XAudio_x64.cab
[2010.06.02 05:22:00 | 000,272,642 | ---- | C] () -- C:\Users\Simon\Aug2009_XAudio_x86.cab
[2010.06.02 05:22:00 | 000,212,807 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx10_00_x64.cab
[2010.06.02 05:22:00 | 000,191,720 | ---- | C] () -- C:\Users\Simon\DEC2006_d3dx10_00_x86.cab
[2010.06.02 05:22:00 | 000,122,408 | ---- | C] () -- C:\Users\Simon\Aug2009_XACT_x64.cab
[2010.06.02 05:22:00 | 000,093,106 | ---- | C] () -- C:\Users\Simon\Aug2009_XACT_x86.cab
[2010.06.02 05:21:58 | 000,930,116 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx9_42_x64.cab
[2010.06.02 05:21:58 | 000,728,456 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx9_42_x86.cab
[2010.06.02 05:21:58 | 000,232,635 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx10_42_x64.cab
[2010.06.02 05:21:58 | 000,192,131 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx10_42_x86.cab
[2010.06.02 05:21:58 | 000,136,301 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx11_42_x64.cab
[2010.06.02 05:21:58 | 000,105,044 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dx11_42_x86.cab
[2010.06.02 05:21:56 | 003,319,740 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dcsx_42_x86.cab
[2010.06.02 05:21:56 | 003,112,111 | ---- | C] () -- C:\Users\Simon\Aug2009_d3dcsx_42_x64.cab
[2010.06.02 05:21:56 | 000,900,598 | ---- | C] () -- C:\Users\Simon\Aug2009_D3DCompiler_42_x86.cab
[2010.06.02 05:21:46 | 000,919,044 | ---- | C] () -- C:\Users\Simon\Aug2009_D3DCompiler_42_x64.cab
[2010.06.02 05:21:46 | 000,271,412 | ---- | C] () -- C:\Users\Simon\Aug2008_XAudio_x64.cab
[2010.06.02 05:21:46 | 000,271,038 | ---- | C] () -- C:\Users\Simon\Aug2008_XAudio_x86.cab
[2010.06.02 05:21:44 | 001,794,084 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx9_39_x64.cab
[2010.06.02 05:21:44 | 001,464,672 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx9_39_x86.cab
[2010.06.02 05:21:44 | 000,849,167 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx10_39_x86.cab
[2010.06.02 05:21:44 | 000,198,096 | ---- | C] () -- C:\Users\Simon\AUG2007_XACT_x64.cab
[2010.06.02 05:21:44 | 000,153,012 | ---- | C] () -- C:\Users\Simon\AUG2007_XACT_x86.cab
[2010.06.02 05:21:44 | 000,121,772 | ---- | C] () -- C:\Users\Simon\Aug2008_XACT_x64.cab
[2010.06.02 05:21:44 | 000,092,996 | ---- | C] () -- C:\Users\Simon\Aug2008_XACT_x86.cab
[2010.06.02 05:21:42 | 001,800,160 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx9_35_x64.cab
[2010.06.02 05:21:42 | 001,708,152 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx9_35_x86.cab
[2010.06.02 05:21:42 | 000,867,612 | ---- | C] () -- C:\Users\Simon\Aug2008_d3dx10_39_x64.cab
[2010.06.02 05:21:42 | 000,852,286 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx10_35_x64.cab
[2010.06.02 05:21:42 | 000,796,867 | ---- | C] () -- C:\Users\Simon\AUG2007_d3dx10_35_x86.cab
[2010.06.02 05:21:40 | 001,350,542 | ---- | C] () -- C:\Users\Simon\Aug2005_d3dx9_27_x64.cab
[2010.06.02 05:21:40 | 001,077,644 | ---- | C] () -- C:\Users\Simon\Aug2005_d3dx9_27_x86.cab
[2010.06.02 05:21:40 | 000,182,903 | ---- | C] () -- C:\Users\Simon\AUG2006_XACT_x64.cab
[2010.06.02 05:21:40 | 000,137,235 | ---- | C] () -- C:\Users\Simon\AUG2006_XACT_x86.cab
[2010.06.02 05:21:40 | 000,087,142 | ---- | C] () -- C:\Users\Simon\AUG2006_xinput_x64.cab
[2010.06.02 05:21:40 | 000,053,302 | ---- | C] () -- C:\Users\Simon\APR2007_xinput_x86.cab
[2010.06.02 05:21:40 | 000,046,058 | ---- | C] () -- C:\Users\Simon\AUG2006_xinput_x86.cab
[2010.06.02 05:21:38 | 001,606,039 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx9_33_x86.cab
[2010.06.02 05:21:38 | 000,195,766 | ---- | C] () -- C:\Users\Simon\APR2007_XACT_x64.cab
[2010.06.02 05:21:38 | 000,151,225 | ---- | C] () -- C:\Users\Simon\APR2007_XACT_x86.cab
[2010.06.02 05:21:38 | 000,096,817 | ---- | C] () -- C:\Users\Simon\APR2007_xinput_x64.cab
[2010.06.02 05:21:36 | 001,607,358 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx9_33_x64.cab
[2010.06.02 05:21:36 | 000,698,612 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx10_33_x64.cab
[2010.06.02 05:21:36 | 000,695,865 | ---- | C] () -- C:\Users\Simon\APR2007_d3dx10_33_x86.cab
[2010.06.02 05:21:34 | 000,046,010 | ---- | C] () -- C:\Users\Simon\Apr2006_xinput_x86.cab
[2010.06.02 05:21:20 | 000,087,101 | ---- | C] () -- C:\Users\Simon\Apr2006_xinput_x64.cab
[2010.06.02 05:21:18 | 004,162,630 | ---- | C] () -- C:\Users\Simon\Apr2006_MDX1_x86_Archive.cab
[2010.06.02 05:21:18 | 000,916,430 | ---- | C] () -- C:\Users\Simon\Apr2006_MDX1_x86.cab
[2010.06.02 05:21:18 | 000,179,133 | ---- | C] () -- C:\Users\Simon\Apr2006_XACT_x64.cab
[2010.06.02 05:21:18 | 000,133,103 | ---- | C] () -- C:\Users\Simon\Apr2006_XACT_x86.cab
[2010.06.02 05:21:16 | 001,397,830 | ---- | C] () -- C:\Users\Simon\Apr2006_d3dx9_30_x64.cab
[2010.06.02 05:21:16 | 001,347,354 | ---- | C] () -- C:\Users\Simon\Apr2005_d3dx9_25_x64.cab
[2010.06.02 05:21:16 | 001,115,221 | ---- | C] () -- C:\Users\Simon\Apr2006_d3dx9_30_x86.cab
[2010.06.02 05:21:16 | 001,078,962 | ---- | C] () -- C:\Users\Simon\Apr2005_d3dx9_25_x86.cab

========== ZeroAccess Check ==========

[2012.10.08 13:20:03 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\l.class
[2012.10.08 13:20:03 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\n.class
[2012.10.08 13:20:03 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R2OSUZK\u.class
[2012.10.07 22:38:00 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\l.class
[2012.10.07 22:38:00 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\n.class
[2012.10.07 22:38:00 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R3R2HL4\u.class
[2012.10.08 13:27:10 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\l.class
[2012.10.08 13:27:10 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\n.class
[2012.10.08 13:27:10 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R8NK9YW\u.class
[2012.10.08 13:09:56 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\l.class
[2012.10.08 13:09:56 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\n.class
[2012.10.08 13:09:56 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$R9S7IAL\ModLoader\u.class
[2012.10.07 22:42:07 | 000,001,458 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\l.class
[2012.10.07 22:42:07 | 000,003,265 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\n.class
[2012.10.07 22:42:07 | 000,002,219 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-1624875233-4052887027-26170781-1000\$RNIF4SY\ModLoader\u.class
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >