Guten Tag ryder,
vielen Dank für Deine Hilfe.
Wie ich erst gerade gelesen habe, gehöre ich zu der Personengruppe, der hier nur in Ausnahmefällen geholfen wird. Ich bin selbständig in meiner kleinen Ein-Mann-Firma, habe also keinen Mitarbeiter, geschweige denn eine IT-Abteilung. Über eine eventuell fällige Spende können wir aber gerne per PN verhandeln, falls Du mir dennoch weiterhilfst, bzw. natürlich auch, wenn die Infektion meines Rechners bereits jetzt Geschichte ist.
Ich habe die Programme, die oben aufgelistet sind, gelöscht. Außer TuneUp hatte ich nichts was auf der Liste steht, Java habe ich, aber in der aktuellsten Version -also Java7 Update 17- das habe ich nicht deinstalliert, da explizit von Java 6 die Rede ist.
Irgendwelche Toolbars habe ich nicht zu beichten und auch keine Registry Cleaner(zumindest habe ich nichts entdeckt, was ich in diese Kategorie einordnen würde).
Nun also die LogFiles (ich hoffe in der richtigen Weise)
AdwCleaner Code:
# AdwCleaner v2.200 - Datei am 04/04/2013 um 19:12:37 erstellt
# Aktualisiert am 02/04/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzer : stroedl - STROEDL-BUERO
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\stroedl\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
Gestoppt & Gelöscht : BrowserProtect
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gelöscht : C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\searchplugins\delta.xml
Gelöscht mit Neustart : C:\ProgramData\BrowserProtect
Ordner Gelöscht : C:\Program Files (x86)\Optimizer Pro
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\Users\stroedl\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\stroedl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect
Ordner Gelöscht : C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\jetpack
Ordner Gelöscht : C:\Users\stroedl\AppData\Roaming\OpenCandy
***** [Registrierungsdatenbank] *****
Daten Gelöscht : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\d578bddb468ed12
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\d578bddb468ed12
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16521
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=hp&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed.snap.do/?publisher=SnapdoEMonYB&dpid=SnapdoEMonYB&co=DE&userid=af09d1e4-39ca-4e59-b459-56bdbc6a19cb&searchtype=ds&q={searchTerms}&installDate=02/03/2013 --> hxxp://www.google.com
-\\ Mozilla Firefox v19.0.2 (de)
Datei : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\jhp0eo8s.default\prefs.js
[OK] Die Datei ist sauber.
Datei : C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\prefs.js
C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\user.js ... Gelöscht !
Gelöscht : user_pref("avg.install.userHPSettings", "hxxp://www.delta-search.com/?affID=1215612&babsrc=HP_ss&mnt[...]
Gelöscht : user_pref("avg.install.userSPSettings", "Delta Search");
Gelöscht : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=1215612&babsrc=NT_ss&mntrId=FAE4[...]
Gelöscht : user_pref("browser.search.order.1", "Delta Search");
Gelöscht : user_pref("extensions.delta.admin", false);
Gelöscht : user_pref("extensions.delta.aflt", "babsst");
Gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Gelöscht : user_pref("extensions.delta.dfltLng", "en");
Gelöscht : user_pref("extensions.delta.excTlbr", false);
Gelöscht : user_pref("extensions.delta.id", "fae40d1c0000000000003085a93c8f8f");
Gelöscht : user_pref("extensions.delta.instlDay", "15799");
Gelöscht : user_pref("extensions.delta.instlRef", "sst");
Gelöscht : user_pref("extensions.delta.newTab", false);
Gelöscht : user_pref("extensions.delta.prdct", "delta");
Gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Gelöscht : user_pref("extensions.delta.rvrt", "false");
Gelöscht : user_pref("extensions.delta.smplGrp", "none");
Gelöscht : user_pref("extensions.delta.tlbrId", "base");
Gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Gelöscht : user_pref("extensions.delta.vrsn", "1.8.10.0");
Gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.10.013:25:55");
Gelöscht : user_pref("extensions.delta.vrsni", "1.8.10.0");
*************************
AdwCleaner[S1].txt - [7113 octets] - [04/04/2013 19:12:37]
########## EOF - C:\AdwCleaner[S1].txt - [7173 octets] ########## Als nächstes der Attach Editor
[code]
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.DDS Logfile:
DDS Logfile: Code:
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 01.03.2013 13:17:19
System Uptime: 04.04.2013 19:13:49 (0 hours ago)
.
Motherboard: ASUSTeK COMPUTER INC. | | M5A99X EVO
Processor: AMD FX(tm)-6100 Six-Core Processor | AM3r2 | 3300/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 112 GiB total, 48,234 GiB free.
D: is FIXED (NTFS) - 128 GiB total, 59,335 GiB free.
E: is FIXED (NTFS) - 117 GiB total, 39,183 GiB free.
F: is FIXED (NTFS) - 229 GiB total, 104,043 GiB free.
G: is FIXED (NTFS) - 457 GiB total, 233,703 GiB free.
H: is FIXED (NTFS) - 128 GiB total, 69,641 GiB free.
I: is FIXED (NTFS) - 117 GiB total, 33,965 GiB free.
J: is FIXED (NTFS) - 229 GiB total, 113,47 GiB free.
K: is FIXED (NTFS) - 457 GiB total, 349,289 GiB free.
L: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP32: 01.04.2013 00:00:01 - Geplanter Prüfpunkt
RP33: 04.04.2013 19:01:23 - TuneUp Utilities 2011 wird entfernt
RP34: 04.04.2013 19:02:28 - TuneUp Utilities Language Pack (de-DE) wird entfernt
.
==== Installed Programs ======================
.
"Nero SoundTrax Help
Adobe AIR
Adobe Flash Player 11 Plugin
Advertising Center
AI Suite II
AMD APP SDK Runtime
AMD Catalyst Install Manager
Artweaver Free 3.1
Asmedia ASM104x USB 3.0 Host Controller Driver
Audacity 2.0.3
Audiograbber 1.83 SE
Audiograbber MP3-Plugin
Avira Antivirus Premium
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon Inkjet Printer/Scanner/Fax Extended Survey Program
Canon MG5300 series Benutzerregistrierung
Canon MG5300 series MP Drivers
Canon MG5300 series On-screen Manual
Canon MP Navigator EX 5.0
Canon My Printer
Canon Solution Menu EX
DolbyFiles
FileZilla Client 3.6.0.2
FormatFactory 3.0.1
Foxit Reader
GoPro CineForm Studio 1.3.2
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
ImagXpress
IPTInstaller
Java 7 Update 17
Java Auto Updater
Knoll Light Factory EZ Studio 15
LAME v3.99.3 (for Windows)
LaserJet 1018
LibreOffice 4.0 Help Pack (German)
LibreOffice 4.0.1.2
Malwarebytes Anti-Malware Version 1.70.0.1100
Menu Templates - Starter Kit
Microsoft-Maus- und Tastatur-Center
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile DEU Language Pack
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Movie Templates - Starter Kit
Mozilla Firefox 19.0.2 (x86 de)
Mozilla Maintenance Service
Mozilla Thunderbird 17.0.4 (x86 de)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2758694)
MyPhoneExplorer
Nero 9
Nero BurningROM
Nero BurnRights
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DriveSpeed
Nero Express
Nero InfoTool
Nero Installer
Nero Live
Nero Live Help
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero Rescue Agent
Nero RescueAgent Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero Vision
Nero WaveEditor
Nero WaveEditor Help
NeroBurningROM
NeroExpress
neroxml
NVIDIA 3D Vision Controller-Treiber 314.22
NVIDIA 3D Vision Treiber 314.22
NVIDIA Grafiktreiber 314.22
NVIDIA HD-Audiotreiber 1.3.23.1
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX-Systemsoftware 9.12.1031
NVIDIA Stereoscopic 3D Driver
NVIDIA Systemsteuerung 314.22
NVIDIA Update 1.12.12
NVIDIA Update Components
Pinnacle Studio 15
Pinnacle Studio 15 Ultimate Plugins
Pinnacle Video Treiber
Realtek Ethernet Controller Driver
Red Giant ToonIt Studio 15
Secure Eraser
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
SoundTrax
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
VLC media player 2.0.5
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 )
WinRAR 4.20 (64-Bit)
.
==== End Of File =========================== und zum Schluss der DDS Editor Code:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16521 BrowserJavaVersion: 10.17.2
Run by stroedl at 19:20:03 on 2013-04-04
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.8137.6330 [GMT 2:00]
.
AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
uSearch Page = hxxp://www.google.com
uSearchAssistant = hxxp://www.google.com
mWinlogon: Userinit = userinit.exe
BHO: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
EB: Canon Easy-WebPrint EX: {21347690-EC41-4F9A-8887-1F4AEE672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mRun: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
StartupFolder: C:\Users\stroedl\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LIBREO~1.LNK - C:\Program Files (x86)\LibreOffice 4.0\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CINEFO~1.LNK - C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
LSP: C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{2C8DB019-2468-42F5-A1E5-E64421E506CF} : DHCPNameServer = 192.168.1.1 192.168.1.1
AppInit_DLLs= c:\progra~3\browse~1\261125~1.80\{c16c1~1\browse~1.dll
SSODL: WebCheck - <orphaned>
x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.wdr.de, www.rechenkraft.net, www.come-on.de,
FF - plugin: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-03-03 18:55; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-03-03 18:57; {73a6fe31-595d-460b-a920-fcc0f8843232}; C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-03-03 18:57; {5546F97E-11A5-46b0-9082-32AD74AAA920}; C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\extensions\{5546F97E-11A5-46b0-9082-32AD74AAA920}.xpi
FF - ExtSQL: 2013-03-05 08:00; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\stroedl\AppData\Roaming\Mozilla\Firefox\Profiles\6yaeouup.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2013-3-1 82560]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2013-3-1 42624]
R1 avkmgr;avkmgr;C:\Windows\System32\drivers\avkmgr.sys [2013-3-29 28600]
R2 AntiVirMailService;Avira Email Schutz;C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe [2013-3-1 374496]
R2 AntiVirSchedulerService;Avira Planer;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-3-1 86752]
R2 AntiVirService;Avira Echtzeit-Scanner;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-3-1 110816]
R2 AntiVirWebService;Avira Browser-Schutz;C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe [2013-3-1 565472]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2013-3-1 920736]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2013-3-1 951936]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2013-3-1 149120]
R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2013-3-29 100712]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-4-4 398184]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-4-4 682344]
R2 PassThru Service;Internet Pass-Through Service;C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2013-3-2 167424]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-9-14 129000]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-9-14 394216]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-4-4 24176]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-3-1 565352]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2013-3-1 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-3-14 383264]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2009-11-2 33736]
S3 htcnprot;HTC NDIS Protocol Driver;C:\Windows\System32\drivers\htcnprot.sys [2012-12-7 36928]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-3-6 19456]
S3 StorSvc;Speicherdienst;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-3-6 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-3-6 30208]
.
=============== Created Last 30 ================
.
2013-04-04 17:12:52 97 ----a-w- C:\Windows\DeleteOnReboot.bat
2013-04-04 15:57:47 -------- d-----w- C:\Users\stroedl\AppData\Local\Mozilla Firefox
2013-04-04 12:45:23 -------- d-----w- C:\Users\stroedl\AppData\Roaming\Malwarebytes
2013-04-04 12:45:20 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-04-04 12:45:20 -------- d-----w- C:\ProgramData\Malwarebytes
2013-04-04 12:45:20 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-04-04 11:26:03 -------- d-----w- C:\ProgramData\BrowserProtect
2013-04-04 11:25:37 -------- d-----w- C:\ProgramData\Freemake
2013-04-04 11:25:31 -------- d-----w- C:\Program Files (x86)\Freemake
2013-04-04 08:32:52 -------- d-----w- C:\Users\stroedl\AppData\Local\Diagnostics
2013-04-01 23:00:14 -------- d-----w- C:\Users\stroedl\AppData\Local\Nero
2013-04-01 16:35:51 -------- d-----w- C:\Users\stroedl\AppData\Roaming\Acoustica
2013-04-01 16:01:49 -------- d-----w- C:\Program Files (x86)\RonyaSoft
2013-04-01 16:00:22 -------- d-----w- C:\Users\stroedl\AppData\Local\Temp926666dcbde73ea0cf3acd54cf033fd5
2013-04-01 15:49:54 -------- d--h--w- C:\ProgramData\CanonIJEGV
2013-04-01 15:36:08 -------- d-----w- C:\Users\stroedl\AppData\Local\Canon Easy-PhotoPrint EX
2013-04-01 15:35:52 -------- d--h--w- C:\ProgramData\CanonIJEPPEX
2013-03-29 16:57:01 28600 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
2013-03-29 16:57:01 100712 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2013-03-24 19:28:59 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-24 11:49:13 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-03-24 11:49:13 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-03-20 14:24:27 -------- d-----w- C:\Program Files (x86)\Nero
2013-03-20 14:24:11 -------- d-----w- C:\ProgramData\Nero
2013-03-15 08:22:31 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-03-14 21:07:52 559904 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2013-03-12 13:39:37 263064 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
2013-03-12 09:27:37 -------- d-----w- C:\Users\stroedl\AppData\Roaming\Foxit Software
2013-03-12 07:11:37 -------- d-----w- C:\Users\stroedl\AppData\Roaming\temp
2013-03-11 14:07:17 -------- d-----w- C:\Program Files (x86)\LibreOffice 4.0
2013-03-09 14:24:19 -------- d-----w- C:\ProgramData\CanonIJ
2013-03-09 14:23:01 -------- d-----w- C:\ProgramData\CanonIJPLM
2013-03-09 14:22:38 -------- d--h--w- C:\ProgramData\CanonIJScan
2013-03-09 14:20:50 -------- d--h--w- C:\ProgramData\CanonIJSolutionMenuEX
2013-03-09 14:20:47 -------- d--h--w- C:\ProgramData\CanonIJEPPEX2
2013-03-09 14:20:47 -------- d--h--w- C:\ProgramData\CanonEPP
2013-03-09 14:20:45 -------- d--h--w- C:\ProgramData\CanonIJMyPrinter
2013-03-09 14:16:06 -------- d-----w- C:\Program Files\Common Files\CANON
2013-03-09 14:15:59 -------- d-----w- C:\ProgramData\CanonIJWSpt
2013-03-09 14:14:47 -------- d-----w- C:\Program Files\Canon
2013-03-09 14:13:18 38400 ----a-w- C:\Windows\System32\CNMN6UI.DLL
2013-03-09 14:13:18 355840 ----a-w- C:\Windows\System32\CNMN6PPM.DLL
2013-03-09 14:13:18 -------- d-----w- C:\Windows\System32\STRING
2013-03-09 14:12:23 -------- d-----w- C:\Program Files (x86)\Canon
2013-03-07 08:54:13 99840 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPPAT.DLL
2013-03-07 08:54:13 30208 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPDAT.DLL
2013-03-07 08:53:59 385024 ----a-w- C:\Windows\System32\CNMLMAT.DLL
2013-03-07 08:53:16 323584 ----a-w- C:\Windows\SysWow64\CNC_ATL.dll
2013-03-07 08:53:16 302080 ----a-w- C:\Windows\System32\CNC_ATC.dll
2013-03-07 08:53:16 15872 ----a-w- C:\Windows\SysWow64\CNHMCA.dll
2013-03-07 08:53:16 114688 ----a-w- C:\Windows\SysWow64\CNC_ATU.dll
2013-03-07 08:53:16 112128 ----a-w- C:\Windows\System32\CNC_ATI.dll
2013-03-07 08:53:15 373248 ----a-w- C:\Windows\System32\CNC_ATL.dll
2013-03-07 08:53:15 17920 ----a-w- C:\Windows\System32\CNHMCA6.dll
2013-03-07 06:52:03 96768 ----a-w- C:\Windows\System32\fsutil.exe
2013-03-07 06:52:03 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2013-03-07 06:52:03 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2013-03-07 06:52:03 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2013-03-07 06:52:03 2565632 ----a-w- C:\Windows\System32\esent.dll
2013-03-07 06:52:03 189824 ----a-w- C:\Windows\System32\drivers\storport.sys
2013-03-07 06:52:03 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2013-03-07 06:52:03 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2013-03-07 06:52:03 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2013-03-07 06:52:03 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2013-03-07 06:48:41 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2013-03-07 06:48:41 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys
2013-03-07 06:48:41 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2013-03-07 06:48:41 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2013-03-07 06:48:41 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2013-03-07 06:48:41 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2013-03-07 06:48:41 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2013-03-06 09:06:01 -------- d-----w- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-03-06 08:46:19 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2013-03-06 08:25:24 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-03-06 08:25:24 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2013-03-06 08:25:24 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-03-06 08:25:23 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2013-03-06 08:25:23 5120 ----a-w- C:\Windows\System32\wmi.dll
2013-03-06 08:23:11 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-03-06 08:23:11 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-03-06 08:23:11 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-03-06 08:23:11 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-03-06 08:23:11 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-03-06 08:23:11 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-03-06 08:21:55 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2013-03-06 08:21:55 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2013-03-06 08:21:55 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2013-03-06 08:21:34 642944 ----a-w- C:\Windows\System32\winload.efi
2013-03-06 08:21:34 605552 ----a-w- C:\Windows\System32\winload.exe
2013-03-06 08:21:34 566208 ----a-w- C:\Windows\System32\winresume.efi
2013-03-06 08:21:34 518672 ----a-w- C:\Windows\System32\winresume.exe
2013-03-06 08:21:34 20352 ----a-w- C:\Windows\System32\kdusb.dll
2013-03-06 08:21:34 19328 ----a-w- C:\Windows\System32\kd1394.dll
2013-03-06 08:21:34 17792 ----a-w- C:\Windows\System32\kdcom.dll
2013-03-06 08:20:51 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-03-06 08:20:51 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-03-06 08:20:33 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2013-03-06 08:20:33 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2013-03-06 08:16:32 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2013-03-06 08:16:31 -------- d-----w- C:\Windows\System32\wbem\en-US
2013-03-06 07:53:47 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2013-03-06 07:53:47 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-03-06 07:53:47 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-03-06 07:53:47 2560 ----a-w- C:\Windows\System32\drivers\de-DE\wdf01000.sys.mui
2013-03-06 07:28:42 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2013-03-06 07:28:42 46080 ----a-w- C:\Windows\System32\atmlib.dll
2013-03-06 07:28:42 367616 ----a-w- C:\Windows\System32\atmfd.dll
2013-03-06 07:28:42 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2013-03-06 07:28:42 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2013-03-06 07:28:42 100864 ----a-w- C:\Windows\System32\fontsub.dll
2013-03-06 07:28:29 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2013-03-06 07:28:29 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2013-03-06 07:28:29 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2013-03-06 07:28:29 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2013-03-06 07:28:28 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2013-03-06 07:28:28 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2013-03-06 07:28:28 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2013-03-06 06:39:19 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-03-06 06:37:38 46592 ----a-w- C:\Windows\SysWow64\fpb.rs
2013-03-06 06:36:40 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-03-06 06:36:40 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-03-06 06:35:57 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2013-03-06 06:32:56 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-03-06 06:31:59 2871808 ----a-w- C:\Windows\explorer.exe
2013-03-06 06:30:37 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2013-03-06 06:30:30 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2013-03-06 06:30:30 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2013-03-06 06:30:30 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2013-03-06 06:30:30 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2013-03-06 06:30:30 1389568 ----a-w- C:\Windows\SysWow64\msxml6.dll
2013-03-06 06:30:30 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2013-03-06 06:30:23 395776 ----a-w- C:\Windows\System32\webio.dll
2013-03-06 06:30:23 314880 ----a-w- C:\Windows\SysWow64\webio.dll
2013-03-06 06:30:10 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2013-03-06 06:30:10 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2013-03-06 06:30:10 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2013-03-06 06:30:10 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2013-03-06 06:29:04 1572864 ----a-w- C:\Windows\System32\quartz.dll
2013-03-06 06:29:04 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2013-03-06 06:27:52 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2013-03-06 06:27:41 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2013-03-06 06:27:41 366592 ----a-w- C:\Windows\System32\qdvd.dll
2013-03-06 06:27:39 503808 ----a-w- C:\Windows\System32\srcore.dll
2013-03-06 06:27:39 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2013-03-06 06:27:36 68608 ----a-w- C:\Windows\System32\taskhost.exe
2013-03-06 06:25:24 723456 ----a-w- C:\Windows\System32\EncDec.dll
2013-03-06 06:25:24 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
.
==================== Find3M ====================
.
2013-03-29 11:49:18 73432 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-29 11:49:18 693976 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-03-15 05:53:06 968408 ----a-w- C:\Windows\SysWow64\nvumdshim.dll
2013-03-15 04:16:18 3477280 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-03-15 04:16:17 6398240 ----a-w- C:\Windows\System32\nvcpl.dll
2013-03-15 04:16:10 877856 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-03-15 04:16:10 63776 ----a-w- C:\Windows\System32\nvshext.dll
2013-03-15 04:16:10 2555680 ----a-w- C:\Windows\System32\nvsvcr.dll
2013-03-15 04:16:10 237856 ----a-w- C:\Windows\System32\nvmctray.dll
2013-03-13 16:24:01 3065455 ----a-w- C:\Windows\System32\nvcoproc.bin
2013-03-01 12:54:30 16896 ----a-w- C:\Windows\AsTaskSched.dll
2013-02-24 12:11:46 82560 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2013-02-24 12:11:46 56448 ----a-w- C:\Windows\System32\drivers\usbfilter.sys
2013-02-24 12:11:46 42624 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2013-02-21 15:07:08 929844 ------w- C:\Windows\SysWow64\drivers\MFDLL\MFC42D.DLL
2013-02-21 15:07:08 385100 ------w- C:\Windows\SysWow64\drivers\MFDLL\MSVCRTD.DLL
2013-02-21 15:07:08 343040 ------w- C:\Windows\SysWow64\drivers\MFDLL\msvcrt.dll
2013-02-21 15:07:08 28672 ----a-w- C:\Windows\SysWow64\AsIO.dll
2013-02-21 15:07:08 15232 ----a-w- C:\Windows\SysWow64\drivers\AsIO.sys
2013-02-21 15:07:08 14464 ----a-w- C:\Windows\SysWow64\drivers\AsUpIO.sys
2013-02-21 15:07:08 11832 ------w- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
2013-02-21 15:07:08 1028096 ------w- C:\Windows\SysWow64\drivers\MFDLL\MFC42.DLL
2013-02-21 15:07:08 10216 ------w- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-02-10 03:25:27 1807136 ----a-w- C:\Windows\System32\nvdispco6420294.dll
2013-02-10 03:25:27 1510176 ----a-w- C:\Windows\System32\nvdispgenco6420162.dll
2013-01-29 17:15:06 862664 ----a-w- C:\Windows\SysWow64\msvcr110.dll
2013-01-29 17:15:06 828872 ----a-w- C:\Windows\System32\msvcr110.dll
2013-01-29 17:15:06 661448 ----a-w- C:\Windows\System32\msvcp110.dll
2013-01-29 17:15:06 534480 ----a-w- C:\Windows\SysWow64\msvcp110.dll
2013-01-29 17:15:06 354264 ----a-w- C:\Windows\System32\vccorlib110.dll
2013-01-29 17:15:06 251864 ----a-w- C:\Windows\SysWow64\vccorlib110.dll
2013-01-29 17:15:04 50800 ----a-w- C:\Windows\System32\drivers\point64.sys
2013-01-21 10:12:12 2177664 ----a-w- C:\Windows\System32\coin93.dll
2013-01-13 21:17:03 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 21:17:02 2560 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 21:16:42 10752 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 21:12:46 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 21:11:21 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 21:11:08 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 21:11:07 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:35:31 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 20:35:31 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 20:35:18 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 20:32:07 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 20:31:48 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 20:31:41 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 20:31:40 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 20:31:40 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:31:00 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-01-13 20:22:22 1988096 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2013-01-13 20:20:31 293376 ----a-w- C:\Windows\SysWow64\dxgi.dll
2013-01-13 20:09:00 249856 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2013-01-13 20:08:43 220160 ----a-w- C:\Windows\SysWow64\d3d10core.dll
2013-01-13 20:08:35 1504768 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-01-13 19:59:04 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-01-13 19:58:28 1175552 ----a-w- C:\Windows\System32\FntCache.dll
2013-01-13 19:54:01 604160 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2013-01-13 19:53:58 207872 ----a-w- C:\Windows\SysWow64\WindowsCodecsExt.dll
2013-01-13 19:53:14 187392 ----a-w- C:\Windows\SysWow64\UIAnimation.dll
2013-01-13 19:51:30 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2013-01-13 19:49:17 363008 ----a-w- C:\Windows\System32\dxgi.dll
2013-01-13 19:48:47 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2013-01-13 19:46:25 1080832 ----a-w- C:\Windows\SysWow64\d3d10.dll
2013-01-13 19:43:21 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-01-13 19:38:39 333312 ----a-w- C:\Windows\System32\d3d10_1core.dll
2013-01-13 19:38:32 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-01-13 19:38:21 296960 ----a-w- C:\Windows\System32\d3d10core.dll
2013-01-13 19:37:57 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2013-01-13 19:25:04 245248 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll
2013-01-13 19:24:33 648192 ----a-w- C:\Windows\System32\d3d10level9.dll
2013-01-13 19:24:30 221184 ----a-w- C:\Windows\System32\UIAnimation.dll
2013-01-13 19:20:42 194560 ----a-w- C:\Windows\System32\d3d10_1.dll
2013-01-13 19:20:04 1238528 ----a-w- C:\Windows\System32\d3d10.dll
2013-01-13 19:15:40 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-01-13 19:10:36 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2013-01-13 19:02:06 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-01-13 18:34:58 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-01-13 18:32:43 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-01-13 18:09:52 522752 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-01-13 17:26:42 1158144 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2013-01-13 17:05:09 1682432 ----a-w- C:\Windows\System32\XpsPrint.dll
2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
.
============= FINISH: 19:20:20,87 =============== --- --- ---
--- --- --- |