Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Größere Zahl an Viren auf dem PC, nervende Nebenwirkungen. (https://www.trojaner-board.de/143596-groessere-zahl-viren-pc-nervende-nebenwirkungen.html)

Phoenix88 26.10.2013 12:57
Größere Zahl an Viren auf dem PC, nervende Nebenwirkungen.
 
Liebe Community, ich habe glaube ich mehrere Viren/Adware auf meine PC nein eigl. bin ich mir sicher. Avira findet ca. 106 Verdächtige datei (das was unter Funde steht) und auch einige Warnungen. Nartürlich kann avira mit diesem ganzen müll nicht alleine aufräumen, deswegen bitte ich hier um Hlife. Jetzt lege ich aber mal die Fakten auf den Tisch :D. Also die Symptome: Das komplette System hängt für einige viele Sekunden, der Grafikkartentreiber stürtzt ab, seltene Bluescreens, Hänger aller art und über all, komische Bildfehler z.B. Firefox stellt das interface farblos dar, Programm abstürtze und ein dubioser "LMIGuardian" prozess ist offen (keine Ahnung ob das was heiß hab ich nur zuvor noch nicht gesehen.

Danke schonmal für die Hilfe. Die Logs kommen gleich.

Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-10-26 13:46:17
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 WDC_WD3200AAJS-00L7A0 rev.01.03E01 298,09GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Markus\AppData\Local\Temp\pwdiypoc.sys


---- Kernel code sections - GMER 2.1 ----

.text  C:\Windows\system32\drivers\USBPORT.SYS!DllUnload                                                                                                    fffff8800591ed8c 12 bytes {MOV RAX, 0xfffffa80095e72a0; JMP RAX}

---- User code sections - GMER 2.1 ----

.text  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[1368] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                0000000076301465 2 bytes [30, 76]
.text  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[1368] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe[372] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69  0000000076301465 2 bytes [30, 76]
.text  C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe[372] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155  00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                              0000000076301465 2 bytes [30, 76]
.text  C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                              00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2340] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                0000000076301465 2 bytes [30, 76]
.text  C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2340] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155              00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                              000000006dac1a22 2 bytes [AC, 6D]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                              000000006dac1ad0 2 bytes [AC, 6D]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                              000000006dac1b08 2 bytes [AC, 6D]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                              000000006dac1bba 2 bytes [AC, 6D]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                              000000006dac1bda 2 bytes [AC, 6D]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                        0000000076301465 2 bytes [30, 76]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2376] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                      00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[2940] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                        0000000076301465 2 bytes [30, 76]
.text  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[2940] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                      00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2
.text  C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe[3144] C:\Windows\syswow64\PsApi.dll!GetModuleInformation + 69                                0000000076301465 2 bytes [30, 76]
.text  C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe[3144] C:\Windows\syswow64\PsApi.dll!GetModuleInformation + 155                                00000000763014bb 2 bytes [30, 76]
.text  ...                                                                                                                                                  * 2

---- Kernel IAT/EAT - GMER 2.1 ----

IAT    C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoAttachDeviceToDeviceStack]                                                                        [fffff88001069650] \SystemRoot\System32\Drivers\spbl.sys [unknown section]
IAT    C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoDetachDevice]                                                                                      [fffff880010695dc] \SystemRoot\System32\Drivers\spbl.sys [unknown section]
IAT    C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort]                                                                        [fffff8800103435c] \SystemRoot\System32\Drivers\spbl.sys [unknown section]
IAT    C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar]                                                                              [fffff88001034224] \SystemRoot\System32\Drivers\spbl.sys [unknown section]
IAT    C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar]                                                                              [fffff88001034a24] \SystemRoot\System32\Drivers\spbl.sys [unknown section]
IAT    C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort]                                                                      [fffff88001034ba0] \SystemRoot\System32\Drivers\spbl.sys [unknown section]

---- Devices - GMER 2.1 ----

Device  \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-4                                                                                                          fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdePort0                                                                                                                    fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-5                                                                                                          fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdePort1                                                                                                                    fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdePort2                                                                                                                    fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-1                                                                                                          fffffa8007ec22c0
Device  \Driver\atapi \Device\Ide\IdePort3                                                                                                                    fffffa8007ec22c0
Device  \Driver\ao8mwf0j \Device\Scsi\ao8mwf0j1Port4Path0Target0Lun0                                                                                          fffffa800964a2c0
Device  \Driver\ao8mwf0j \Device\Scsi\ao8mwf0j1                                                                                                              fffffa800964a2c0
Device  \Driver\ao8mwf0j \Device\Scsi\ao8mwf0j1Port4Path0Target1Lun0                                                                                          fffffa800964a2c0
Device  \FileSystem\Ntfs \Ntfs                                                                                                                                fffffa8007ec62c0
Device  \Driver\usbehci \Device\USBPDO-1                                                                                                                      fffffa80096442c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{5720CC9D-F360-4F98-8471-E300F4ED3852}                                                                              fffffa80092cc2c0
Device  \Driver\cdrom \Device\CdRom0                                                                                                                          fffffa80091b12c0
Device  \Driver\cdrom \Device\CdRom1                                                                                                                          fffffa80091b12c0
Device  \Driver\cdrom \Device\CdRom2                                                                                                                          fffffa80091b12c0
Device  \Driver\usbehci \Device\USBFDO-0                                                                                                                      fffffa80096442c0
Device  \Driver\usbehci \Device\USBFDO-1                                                                                                                      fffffa80096442c0
Device  \Driver\volmgr \Device\HarddiskVolume1                                                                                                                fffffa8007ebe2c0
Device  \Driver\volmgr \Device\FtControl                                                                                                                      fffffa8007ebe2c0
Device  \Driver\volmgr \Device\VolMgrControl                                                                                                                  fffffa8007ebe2c0
Device  \Driver\volmgr \Device\HarddiskVolume2                                                                                                                fffffa8007ebe2c0
Device  \Driver\volmgr \Device\HarddiskVolume3                                                                                                                fffffa8007ebe2c0
Device  \Driver\volmgr \Device\HarddiskVolume4                                                                                                                fffffa8007ebe2c0
Device  \Driver\NetBT \Device\NetBt_Wins_Export                                                                                                              fffffa80092cc2c0
Device  \Driver\atapi \Device\ScsiPort0                                                                                                                      fffffa8007ec22c0
Device  \Driver\usbehci \Device\USBPDO-0                                                                                                                      fffffa80096442c0
Device  \Driver\atapi \Device\ScsiPort1                                                                                                                      fffffa8007ec22c0
Device  \Driver\atapi \Device\ScsiPort2                                                                                                                      fffffa8007ec22c0
Device  \Driver\atapi \Device\ScsiPort3                                                                                                                      fffffa8007ec22c0
Device  \Driver\NetBT \Device\NetBT_Tcpip_{30AEC8B6-1023-4A4A-A48C-C8905FC665CE}                                                                              fffffa80092cc2c0
Device  \Driver\ao8mwf0j \Device\ScsiPort4                                                                                                                    fffffa800964a2c0

---- Trace I/O - GMER 2.1 ----

Trace  ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa8007ec22c0]<< spbl.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys            fffffa8007ec22c0
Trace  1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800908d060]                                                                                      fffffa800908d060
Trace  3 CLASSPNP.SYS[fffff88001b4243f] -> nt!IofCallDriver -> [0xfffffa8008d52520]                                                                          fffffa8008d52520
Trace  5 ACPI.sys[fffff880011707a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-1[0xfffffa8008d4e680]                                                fffffa8008d4e680
Trace  \Driver\atapi[0xfffffa8008d16e70] -> IRP_MJ_CREATE -> 0xfffffa8007ec22c0                                                                              fffffa8007ec22c0

---- Modules - GMER 2.1 ----

Module  \SystemRoot\System32\Drivers\ao8mwf0j.SYS                                                                                                            fffff88005985000-fffff880059ca000 (282624 bytes)

---- Registry - GMER 2.1 ----

Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1                                                                                                    771343423
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2                                                                                                    285507792
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0                                                                                                    1
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                                                     
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                  C:\Program Files (x86)\DAEMON Tools Lite\
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                  0x00 0x00 0x00 0x00 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                  0
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                0xEE 0x7B 0xF8 0x5C ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                                                           
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                          0x20 0x01 0x00 0x00 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                      0xDF 0xBD 0x8C 0x7E ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                                                       
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                  0x8D 0x95 0xCF 0xC8 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1                                                       
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                                                  0x2E 0x12 0x79 0xA8 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                                                 
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                      C:\Program Files (x86)\DAEMON Tools Lite\
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                      0x00 0x00 0x00 0x00 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                      0
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                    0xEE 0x7B 0xF8 0x5C ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)                                       
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                              0x20 0x01 0x00 0x00 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                          0xDF 0xBD 0x8C 0x7E ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)                                   
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                      0x8D 0x95 0xCF 0xC8 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet)                                   
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12                                                      0x2E 0x12 0x79 0xA8 ...

---- EOF - GMER 2.1 ----
GMER LOG!!!!


FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-10-2013
Ran by Markus (administrator) on MARKUS-PC on 26-10-2013 13:55:36
Running from C:\Users\Markus\Desktop\Adware
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(BitTorrent Inc.) C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKCU\...\Run: [Steam] - G:\Steam\steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKCU\...\Run: [BitTorrent] - C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe [1119056 2013-07-26] (BitTorrent Inc.)
MountPoints2: {7e50c2e1-069e-11e3-b7ae-806e6f6e6963} - E:\0data\cbs.exe
MountPoints2: {f653ce4e-074a-11e3-8e21-3085a9b33d43} - F:\iStudio.exe
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x71F5E46AB79ACE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{2DFA82E2-B872-46D3-A252-3F3BAA2C6C05}: [NameServer]192.168.178.2

FireFox:
========
FF ProfilePath: C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: SciLorsGrooveUnlocker - C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\Extensions\SciLorsGrooveUnlocker@scilor.com.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Extension: (Google Docs) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [163608 2012-03-06] (Intel Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-16] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [769024 2010-04-20] (Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-17] (Avira Operations GmbH & Co. KG)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-08-17] ()
U3 ao8mwf0j; C:\Windows\System32\Drivers\ao8mwf0j.sys [0 ] (Microsoft Corporation)
S3 MSICDSetup; \??\E:\CDriver64.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
U3 pwdiypoc; \??\C:\Users\Markus\AppData\Local\Temp\pwdiypoc.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-26 13:46 - 2013-10-26 13:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-26 12:09 - 2013-10-26 12:09 - 00312104 _____ C:\Windows\Minidump\102613-16723-01.dmp
2013-10-22 21:39 - 2013-10-22 21:39 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-22 15:55 - 2013-10-22 15:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-22 00:32 - 2013-10-26 12:43 - 00002408 _____ C:\Windows\setupact.log
2013-10-22 00:32 - 2013-10-22 00:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 22:17 - 2013-10-21 22:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 22:17 - 2013-10-21 22:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 22:17 - 2013-10-21 22:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 22:16 - 2013-10-21 22:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 21:31 - 2013-10-22 16:33 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-21 21:31 - 2013-10-21 21:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-21 21:07 - 2013-10-21 21:07 - 00000201 _____ C:\Users\Markus\Desktop\Stronghold Crusader HD.url
2013-10-20 15:35 - 2013-10-20 15:48 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 16:19 - 2013-10-19 16:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 23:37 - 2013-10-18 23:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 23:37 - 2013-10-18 23:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 21:41 - 2013-10-19 19:31 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-18 21:16 - 2013-10-18 21:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Trinity.url
2013-10-18 21:16 - 2013-10-18 21:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Rebellion.url
2013-10-16 19:34 - 2013-10-16 19:34 - 00040209 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-10-15 21:43 - 2013-10-16 15:08 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 21:43 - 2013-10-15 21:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 21:43 - 2013-10-15 21:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 18:53 - 2013-10-15 22:22 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-13 17:38 - 2013-10-13 17:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 17:38 - 2013-10-13 17:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 17:35 - 2013-10-13 17:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 17:33 - 2013-10-13 17:32 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 17:33 - 2013-10-13 17:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 17:33 - 2013-10-13 17:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 17:33 - 2013-10-13 17:32 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 17:32 - 2013-10-13 17:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 17:24 - 2013-10-13 17:25 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 16:44 - 2013-10-13 16:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 16:22 - 2013-10-13 16:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-12 21:35 - 2013-10-12 21:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 21:34 - 2013-10-12 21:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 21:33 - 2013-10-12 21:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 14:51 - 2013-10-11 14:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 14:51 - 2013-10-11 14:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 14:37 - 2013-10-11 14:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-10 00:19 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 00:19 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 00:19 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-10 00:19 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 00:19 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 00:19 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 00:19 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 00:19 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 00:19 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 00:19 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 00:19 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 00:19 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-09 14:51 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-09 14:51 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-09 14:51 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-09 14:51 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-09 14:51 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 14:51 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 14:51 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-09 14:51 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 14:51 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-09 14:51 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-09 14:51 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-09 14:51 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-09 14:51 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-09 14:51 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 14:51 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 14:51 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 14:51 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-09 14:51 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-09 14:51 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-09 14:51 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 14:51 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-09 14:51 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-09 14:51 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-09 14:51 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 14:51 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-09 14:51 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-09 14:50 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:50 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-09 14:50 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-09 14:50 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-09 14:50 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-09 14:50 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-09 14:50 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-09 14:50 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-09 14:50 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-09 14:50 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-09 14:50 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-09 14:50 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-09 14:50 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-09 14:50 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-09 14:50 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-09 14:50 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 14:50 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 14:50 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:50 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:46 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 14:46 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 14:34 - 2013-10-09 14:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 21:39 - 2013-10-08 21:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 15:04 - 2013-10-08 15:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 15:02 - 2013-10-08 15:03 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 14:51 - 2013-10-08 14:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 21:56 - 2013-10-07 21:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 21:56 - 2013-10-07 21:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe
2013-10-06 18:54 - 2013-10-06 18:54 - 01186885 _____ (Easy2Convert Software                                      ) C:\Users\Markus\Downloads\dds2jpg.exe
2013-10-06 18:54 - 2013-10-06 18:54 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Easy2Convert
2013-10-06 18:54 - 2013-10-06 18:54 - 00000000 ____D C:\Program Files (x86)\Easy2Convert Software
2013-10-06 18:48 - 2013-10-06 18:48 - 00065367 _____ C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1.zip
2013-10-06 18:48 - 2013-10-06 18:48 - 00000000 ____D C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1
2013-10-06 15:03 - 2013-10-06 15:03 - 04123248 _____ (Black Tree Gaming                                          ) C:\Users\Markus\Downloads\Nexus Mod Manager-0.45.6.exe
2013-10-05 18:52 - 2013-10-06 19:21 - 00059573 _____ C:\Users\Markus\Documents\Siege.wlmp
2013-10-05 13:27 - 2013-10-05 13:27 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-05 13:26 - 2013-10-05 13:26 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-05 13:26 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-05 13:26 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-05 13:24 - 2013-10-05 13:24 - 00000000 ____D C:\NVIDIA
2013-10-05 13:24 - 2013-09-12 10:58 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-10-05 13:24 - 2013-09-12 10:58 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 01222824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-10-05 13:24 - 2013-09-12 10:58 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-10-05 13:24 - 2013-08-20 15:33 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-10-05 13:24 - 2013-08-20 15:32 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2013-10-05 13:24 - 2013-08-20 15:32 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-10-05 13:24 - 2013-06-16 14:38 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-10-05 13:24 - 2013-06-16 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-10-05 13:24 - 2013-01-29 10:35 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2013-10-05 13:20 - 2013-10-05 13:23 - 242200864 _____ (NVIDIA Corporation) C:\Users\Markus\Downloads\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-05 11:49 - 2013-10-05 11:49 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn
2013-10-05 11:49 - 2013-10-05 11:49 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-04 20:11 - 2013-10-04 20:11 - 00001307 _____ C:\Users\Markus\Desktop\skse_loader.exe - Verknüpfung.lnk
2013-10-04 16:24 - 2013-10-04 16:24 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-10-03 23:15 - 2013-10-03 23:15 - 00000224 _____ C:\Users\Markus\aaaaaaaaaa.py
2013-10-03 22:57 - 2013-10-03 22:58 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-03 22:57 - 2013-10-03 22:57 - 17842526 _____ C:\Users\Markus\Downloads\avidemux_2.6.6_win32.exe
2013-10-03 13:28 - 2013-10-03 13:28 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119 (1).exe
2013-10-03 13:27 - 2013-10-03 13:27 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-09-30 22:03 - 2013-09-30 22:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 20:29 - 2013-09-30 20:29 - 00300850 _____ C:\Users\Markus\Downloads\mp3DC219.exe
2013-09-29 15:27 - 2013-09-29 15:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Sony Online Entertainment
2013-09-28 18:46 - 2013-09-28 18:46 - 00001319 _____ C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2013-09-28 18:45 - 2013-09-28 18:45 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2013-09-28 18:03 - 2013-09-28 18:03 - 03819328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_118.exe
2013-09-28 15:00 - 2013-09-28 15:00 - 00000000 ____D C:\Windows\System32\Tasks\Games

==================== One Month Modified Files and Folders =======

2013-10-26 13:55 - 2013-08-26 02:10 - 00000000 ____D C:\Users\Markus\Desktop\Adware
2013-10-26 13:54 - 2013-08-16 20:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\BitTorrent
2013-10-26 13:51 - 2013-08-16 22:35 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-26 13:46 - 2013-10-26 13:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-26 13:35 - 2013-08-16 21:42 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-26 12:50 - 2009-07-14 06:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-26 12:50 - 2009-07-14 06:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-26 12:47 - 2013-08-16 20:15 - 02080665 _____ C:\Windows\WindowsUpdate.log
2013-10-26 12:47 - 2009-07-14 19:58 - 00696832 _____ C:\Windows\system32\perfh007.dat
2013-10-26 12:47 - 2009-07-14 19:58 - 00148128 _____ C:\Windows\system32\perfc007.dat
2013-10-26 12:47 - 2009-07-14 07:13 - 01613340 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-26 12:44 - 2013-09-06 23:45 - 00003026 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-10-26 12:43 - 2013-10-22 00:32 - 00002408 _____ C:\Windows\setupact.log
2013-10-26 12:43 - 2013-08-16 22:35 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-26 12:43 - 2013-08-16 21:56 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn Hamachi
2013-10-26 12:43 - 2013-08-16 21:21 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-26 12:43 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-26 12:09 - 2013-10-26 12:09 - 00312104 _____ C:\Windows\Minidump\102613-16723-01.dmp
2013-10-26 12:09 - 2013-08-25 14:14 - 00000000 ____D C:\Windows\Minidump
2013-10-25 18:54 - 2013-08-16 22:38 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-10-25 18:54 - 2013-08-16 22:16 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-25 18:54 - 2013-08-16 22:16 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-22 21:39 - 2013-10-22 21:39 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-22 21:21 - 2013-08-16 20:32 - 00000000 ____D C:\Users\Markus\AppData\Roaming\vlc
2013-10-22 16:33 - 2013-10-21 21:31 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-22 15:55 - 2013-10-22 15:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-22 00:32 - 2013-10-22 00:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 22:17 - 2013-10-21 22:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 22:17 - 2013-10-21 22:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 22:17 - 2013-10-21 22:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 22:16 - 2013-10-21 22:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 21:31 - 2013-10-21 21:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-21 21:31 - 2013-08-20 00:01 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 21:09 - 2013-08-16 20:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\DAEMON Tools Lite
2013-10-21 21:08 - 2013-08-16 21:05 - 00000000 ____D C:\Windows\Panther
2013-10-21 21:07 - 2013-10-21 21:07 - 00000201 _____ C:\Users\Markus\Desktop\Stronghold Crusader HD.url
2013-10-21 21:07 - 2013-08-17 01:34 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-10-20 15:48 - 2013-10-20 15:35 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 19:31 - 2013-10-18 21:41 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-19 16:19 - 2013-10-19 16:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 23:48 - 2013-08-16 21:38 - 00000000 ____D C:\Users\Markus\Documents\my games
2013-10-18 23:37 - 2013-10-18 23:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 23:37 - 2013-10-18 23:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 21:16 - 2013-10-18 21:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Trinity.url
2013-10-18 21:16 - 2013-10-18 21:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Rebellion.url
2013-10-18 15:34 - 2013-08-16 20:17 - 00000000 ____D C:\Users\Markus\Downloads\Die drei Fragezeichen
2013-10-18 15:21 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-16 19:34 - 2013-10-16 19:34 - 00040209 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-10-16 19:34 - 2013-08-16 20:18 - 00000000 ____D C:\Users\Markus\.gimp-2.8
2013-10-16 15:08 - 2013-10-15 21:43 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 22:22 - 2013-10-15 18:53 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-15 21:43 - 2013-10-15 21:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 21:43 - 2013-10-15 21:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 21:43 - 2013-08-16 20:25 - 00000000 ____D C:\Users\Markus\AppData\Local\Adobe
2013-10-15 21:34 - 2013-08-17 18:58 - 00000000 ____D C:\Users\Markus\Documents\Command and Conquer Generals Zero Hour Data
2013-10-13 17:38 - 2013-10-13 17:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 17:38 - 2013-10-13 17:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 17:38 - 2013-08-16 20:15 - 00000000 ____D C:\Users\Markus\AppData\Local\VirtualStore
2013-10-13 17:35 - 2013-10-13 17:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 17:32 - 2013-10-13 17:33 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 17:32 - 2013-10-13 17:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 17:32 - 2013-10-13 17:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 17:32 - 2013-10-13 17:33 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 17:32 - 2013-10-13 17:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 17:32 - 2013-08-17 15:51 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-13 17:32 - 2013-08-17 15:51 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-10-13 17:25 - 2013-10-13 17:24 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 16:44 - 2013-10-13 16:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 16:44 - 2013-08-16 20:22 - 00003619 _____ C:\Users\Markus\Downloads\info.xml
2013-10-13 16:22 - 2013-10-13 16:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-13 13:58 - 2013-08-16 20:22 - 03369836 _____ C:\Users\Markus\Downloads\extract_201.exe
2013-10-13 13:46 - 2013-08-16 20:19 - 00000000 ___RD C:\Users\Markus\Desktop\Games
2013-10-13 13:46 - 2013-08-16 20:19 - 00000000 ____D C:\Users\Markus\Desktop\programme
2013-10-13 13:45 - 2013-08-16 20:19 - 00000000 ____D C:\Users\Markus\Desktop\Müll
2013-10-13 13:11 - 2013-08-16 20:49 - 00000000 ____D C:\Users\Markus\Downloads\Skyrim
2013-10-13 11:46 - 2013-08-16 22:35 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-13 11:46 - 2013-08-16 22:35 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-12 21:35 - 2013-10-12 21:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 21:34 - 2013-10-12 21:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 21:33 - 2013-10-12 21:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 22:30 - 2013-08-16 20:30 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Skype
2013-10-11 17:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 14:51 - 2013-10-11 14:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 14:51 - 2013-10-11 14:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 14:37 - 2013-10-11 14:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-10 18:37 - 2009-07-14 06:45 - 00334280 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 00:19 - 2013-08-17 14:27 - 01590298 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-09 23:35 - 2013-08-16 21:42 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 23:35 - 2013-08-16 21:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 23:35 - 2013-08-16 21:42 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 14:34 - 2013-10-09 14:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 21:39 - 2013-10-08 21:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 19:31 - 2013-08-16 20:36 - 00000000 ____D C:\Users\Markus\AppData\Local\Skyrim
2013-10-08 15:04 - 2013-10-08 15:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 15:03 - 2013-10-08 15:02 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 14:51 - 2013-10-08 14:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 21:56 - 2013-10-07 21:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 21:56 - 2013-10-07 21:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe
2013-10-06 19:21 - 2013-10-05 18:52 - 00059573 _____ C:\Users\Markus\Documents\Siege.wlmp
2013-10-06 18:54 - 2013-10-06 18:54 - 01186885 _____ (Easy2Convert Software                                      ) C:\Users\Markus\Downloads\dds2jpg.exe
2013-10-06 18:54 - 2013-10-06 18:54 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Easy2Convert
2013-10-06 18:54 - 2013-10-06 18:54 - 00000000 ____D C:\Program Files (x86)\Easy2Convert Software
2013-10-06 18:48 - 2013-10-06 18:48 - 00065367 _____ C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1.zip
2013-10-06 18:48 - 2013-10-06 18:48 - 00000000 ____D C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1
2013-10-06 15:06 - 2013-08-17 23:24 - 00000000 ____D C:\Users\Markus\Documents\Nexus Mod Manager
2013-10-06 15:04 - 2013-08-16 20:25 - 00000000 ____D C:\Users\Markus\AppData\Local\Black_Tree_Gaming
2013-10-06 15:03 - 2013-10-06 15:03 - 04123248 _____ (Black Tree Gaming                                          ) C:\Users\Markus\Downloads\Nexus Mod Manager-0.45.6.exe
2013-10-05 18:02 - 2013-08-16 20:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\avidemux
2013-10-05 13:28 - 2013-08-16 21:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-05 13:28 - 2013-08-16 21:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-05 13:27 - 2013-10-05 13:27 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-05 13:27 - 2013-08-16 21:20 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-05 13:26 - 2013-10-05 13:26 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-05 13:26 - 2013-10-05 13:26 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-05 13:24 - 2013-10-05 13:24 - 00000000 ____D C:\NVIDIA
2013-10-05 13:23 - 2013-10-05 13:20 - 242200864 _____ (NVIDIA Corporation) C:\Users\Markus\Downloads\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-05 11:49 - 2013-10-05 11:49 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn
2013-10-05 11:49 - 2013-10-05 11:49 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-04 20:11 - 2013-10-04 20:11 - 00001307 _____ C:\Users\Markus\Desktop\skse_loader.exe - Verknüpfung.lnk
2013-10-04 16:26 - 2013-08-16 21:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-04 16:24 - 2013-10-04 16:24 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-10-03 23:16 - 2013-09-14 02:08 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64bits
2013-10-03 23:15 - 2013-10-03 23:15 - 00000224 _____ C:\Users\Markus\aaaaaaaaaa.py
2013-10-03 23:15 - 2013-08-16 20:15 - 00000000 ____D C:\Users\Markus
2013-10-03 23:06 - 2013-08-31 16:49 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-10-03 23:06 - 2013-08-16 20:25 - 00000000 ____D C:\Users\Markus\AppData\Roaming\DVDVideoSoft
2013-10-03 22:58 - 2013-10-03 22:57 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-03 22:57 - 2013-10-03 22:57 - 17842526 _____ C:\Users\Markus\Downloads\avidemux_2.6.6_win32.exe
2013-10-03 21:37 - 2013-08-16 20:18 - 00000000 ____D C:\Users\Markus\Downloads\ROw
2013-10-03 13:28 - 2013-10-03 13:28 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119 (1).exe
2013-10-03 13:27 - 2013-10-03 13:27 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-03 13:27 - 2013-08-16 22:38 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-10-01 14:35 - 2013-08-16 22:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-30 22:36 - 2013-08-16 20:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Mozilla
2013-09-30 22:03 - 2013-09-30 22:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 20:29 - 2013-09-30 20:29 - 00300850 _____ C:\Users\Markus\Downloads\mp3DC219.exe
2013-09-29 15:27 - 2013-09-29 15:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Sony Online Entertainment
2013-09-29 00:55 - 2013-08-16 20:24 - 00000000 ____D C:\Users\Markus\Downloads\cnc
2013-09-28 18:46 - 2013-09-28 18:46 - 00001319 _____ C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2013-09-28 18:45 - 2013-09-28 18:45 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2013-09-28 18:03 - 2013-09-28 18:03 - 03819328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_118.exe
2013-09-28 15:00 - 2013-09-28 15:00 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-09-26 19:53 - 2013-08-16 20:25 - 00000000 ____D C:\Users\Markus\AppData\Roaming\dvdcss

Some content of TEMP:
====================
C:\Users\Markus\AppData\Local\Temp\comver.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-21 15:10

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 26.10.2013 13:00
hi,
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Phoenix88 26.10.2013 14:24
Ich lass gerade nur Eset Online Scanner durchlaufen schon mal im voraus. Also ein klein wenig Geduld bitte.

Hier ist noch das JunkWareRemoval.log das ich kürzlich gemacht habe. In weiser vorrausicht lad ich hiers schonmal hoch wie gesagt auch sicherheitsgründen warte ich noch mit ComboFix

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Ultimate x64
Ran by Markus on 26.10.2013 at 14:00:14,43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Markus\appdata\locallow\boost_interprocess"



~~~ FireFox

Successfully deleted the following from C:\Users\Markus\AppData\Roaming\mozilla\firefox\profiles\udw3yiz2.default\prefs.js

user_pref("extensions.a75ffaaa6513e452fb3efa355babbf0bd6968769191ac40219ac9b8f93a6c6a10com36928.36928.thankyou", "hxxp://crossrider.com/thank_you/36928");
user_pref("extensions.x3l.scode", "if(window.self==window.top){var script=document.createElement(\"script\");script.type=\"text/javascript\";script.src=\"//cdncache-a.akamaihd
Emptied folder: C:\Users\Markus\AppData\Roaming\mozilla\firefox\profiles\udw3yiz2.default\minidumps [44 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Markus\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.10.2013 at 14:03:34,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

schrauber 26.10.2013 18:39
ok.

Phoenix88 27.10.2013 00:02
ESET Logfile also das was er gefixt hat:

Code:
C:\AdwCleaner\Quarantine\C\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\Extensions\plugin@getwebcake.com\content\overlay.js.vir        JS/Adware.Yontoo.C application        cleaned by deleting - quarantined
C:\FRST\Quarantine\lt-mkhv@etd-.com\content\bg.js        Win32/Adware.MultiPlug.H application        cleaned by deleting - quarantined
C:\Users\Markus\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\78b8834e-6e581d0b        a variant of Java/Exploit.CVE-2013-1493.HV trojan        cleaned by deleting - quarantined
C:\Users\Markus\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\78b8834e-6f7a634a        a variant of Java/Exploit.CVE-2013-1493.HV trojan        cleaned by deleting - quarantined
D:\Local ohne Hamachii\Microsoft\Windows\Temporary Internet Files\Content.IE5\0NMJQ5A2\LyricsPal_1060-8101_v122[1]        multiple threats        cleaned by deleting - quarantined
D:\Local ohne Hamachii\Temp\lyricsPaltmp.exe        multiple threats        cleaned by deleting - quarantined
D:\Local ohne Hamachii\Temp\OptimizerPro.exe        a variant of Win32/SpeedingUpMyPC.B application        cleaned by deleting - quarantined
D:\Programm(x64) C\LyricsPal\128.crx        Win32/Adware.AddLyrics.L application        deleted - quarantined
D:\Programm(x64) C\LyricsPal\128.dll        a variant of Win32/AdWare.AddLyrics.S application        cleaned by deleting - quarantined
D:\Programm(x64) C\LyricsPal\128.xpi        Win32/Adware.AddLyrics.L application        deleted - quarantined
D:\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\extensions\lt-mkhv@etd-.com\content\bg.js        Win32/Adware.MultiPlug.H application        cleaned by deleting - quarantined
D:\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\extensions\plugin@getwebcake.com\content\overlay.js        JS/Adware.Yontoo.C application        cleaned by deleting - quarantined
COMBOFIX:

Code:
ComboFix 13-10-26.01 - Markus 27.10.2013  0:41.2.4 - x64
Microsoft Windows 7 Ultimate  6.1.7601.1.1252.49.1031.18.10193.8255 [GMT 2:00]
ausgeführt von:: c:\users\Markus\Desktop\Adware\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\frapsvid.dll
G:\install.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2013-09-26 bis 2013-10-26  ))))))))))))))))))))))))))))))
.
.
2013-10-26 22:46 . 2013-10-26 22:46        --------        d-----w-        c:\users\Default\AppData\Local\temp
2013-10-26 11:57 . 2013-10-26 11:57        --------        d-----w-        c:\program files (x86)\ESET
2013-10-22 19:39 . 2013-10-22 19:39        --------        d-----w-        c:\program files (x86)\LogMeIn Hamachi
2013-10-22 13:55 . 2013-10-22 13:55        --------        d-----w-        c:\users\Markus\AppData\Local\NVIDIA
2013-10-21 20:17 . 2013-10-21 20:17        --------        d-----w-        c:\program files (x86)\WinPcap
2013-10-18 21:37 . 2013-10-18 21:37        --------        d-----w-        c:\programdata\Stardock
2013-10-18 21:37 . 2013-10-18 21:37        --------        d-----w-        c:\programdata\Ironclad Games
2013-10-15 19:43 . 2013-10-15 19:43        --------        d-----w-        c:\program files (x86)\Common Files\Adobe
2013-10-13 15:34 . 2013-10-13 15:34        --------        d-----w-        c:\program files (x86)\Common Files\Java
2013-10-13 15:33 . 2013-10-13 15:32        96168        ----a-w-        c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-13 15:32 . 2013-10-13 15:32        --------        d-----w-        c:\program files (x86)\Java
2013-10-12 19:35 . 2013-10-12 19:35        --------        d-----w-        c:\program files (x86)\Pivot Stickfigure Animator
2013-10-11 12:51 . 2013-10-11 12:51        --------        d-----w-        c:\program files (x86)\Common Files\Skype
2013-10-11 12:51 . 2013-10-11 12:51        --------        d-----r-        c:\program files (x86)\Skype
2013-10-11 12:51 . 2013-10-11 12:51        --------        d-----w-        c:\programdata\Skype
2013-10-09 12:51 . 2013-09-08 02:30        1903552        ----a-w-        c:\windows\system32\drivers\tcpip.sys
2013-10-09 12:50 . 2013-08-29 02:17        5549504        ----a-w-        c:\windows\system32\ntoskrnl.exe
2013-10-09 12:46 . 2013-09-04 12:12        343040        ----a-w-        c:\windows\system32\drivers\usbhub.sys
2013-10-09 12:46 . 2013-09-04 12:11        325120        ----a-w-        c:\windows\system32\drivers\usbport.sys
2013-10-09 12:46 . 2013-09-04 12:11        99840        ----a-w-        c:\windows\system32\drivers\usbccgp.sys
2013-10-09 12:46 . 2013-09-04 12:11        52736        ----a-w-        c:\windows\system32\drivers\usbehci.sys
2013-10-09 12:46 . 2013-09-04 12:11        30720        ----a-w-        c:\windows\system32\drivers\usbuhci.sys
2013-10-09 12:46 . 2013-09-04 12:11        25600        ----a-w-        c:\windows\system32\drivers\usbohci.sys
2013-10-09 12:46 . 2013-09-04 12:11        7808        ----a-w-        c:\windows\system32\drivers\usbd.sys
2013-10-09 12:39 . 2005-04-03 20:59        5632        ----a-w-        c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2013-10-06 16:54 . 2013-10-06 16:54        --------        d-----w-        c:\users\Markus\AppData\Roaming\Easy2Convert
2013-10-06 16:54 . 2013-10-06 16:54        --------        d-----w-        c:\program files (x86)\Easy2Convert Software
2013-10-05 11:27 . 2013-10-05 11:27        --------        d-----w-        c:\program files (x86)\AGEIA Technologies
2013-10-05 11:26 . 2013-10-19 18:58        --------        d-----w-        c:\users\UpdatusUser
2013-10-05 09:49 . 2013-10-05 09:49        --------        d-----w-        c:\users\Markus\AppData\Local\LogMeIn
2013-10-05 09:49 . 2013-10-05 09:49        --------        d-----w-        c:\programdata\LogMeIn
2013-10-04 14:24 . 2013-10-04 14:24        178800        ----a-w-        c:\windows\SysWow64\CmdLineExt_x64.dll
2013-10-03 20:57 . 2013-10-03 20:58        --------        d-----w-        c:\program files (x86)\Avidemux 2.6
2013-09-29 13:27 . 2013-09-29 13:27        --------        d-----w-        c:\users\Markus\AppData\Local\Sony Online Entertainment
2013-09-28 16:45 . 2013-09-28 16:45        --------        d-----w-        c:\users\Public\Sony Online Entertainment
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-26 21:34 . 2013-08-16 20:38        290184        ----a-w-        c:\windows\SysWow64\PnkBstrB.xtr
2013-10-26 21:34 . 2013-08-16 20:16        290184        ----a-w-        c:\windows\SysWow64\PnkBstrB.exe
2013-10-26 21:34 . 2013-08-16 20:16        280904        ----a-w-        c:\windows\SysWow64\PnkBstrB.ex0
2013-10-13 15:32 . 2013-08-17 13:51        867240        ----a-w-        c:\windows\SysWow64\npDeployJava1.dll
2013-10-13 15:32 . 2013-08-17 13:51        789416        ----a-w-        c:\windows\SysWow64\deployJava1.dll
2013-10-09 21:35 . 2013-08-16 19:42        692616        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2013-10-09 21:35 . 2013-08-16 19:42        71048        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-12 21:55 . 2013-09-05 16:10        447752        ----a-w-        c:\windows\SysWow64\vp6vfw.dll
2013-09-12 08:58 . 2013-08-16 19:21        2986672        ----a-w-        c:\windows\system32\nvapi64.dll
2013-09-12 08:58 . 2013-02-25 22:32        2630304        ----a-w-        c:\windows\SysWow64\nvapi.dll
2013-09-12 08:58 . 2013-02-25 22:32        1412832        ----a-w-        c:\windows\system32\nvumdshimx.dll
2013-09-12 08:58 . 2013-02-25 22:32        15901448        ----a-w-        c:\windows\system32\nvwgf2umx.dll
2013-09-12 08:58 . 2013-02-25 22:32        13628208        ----a-w-        c:\windows\SysWow64\nvwgf2um.dll
2013-09-12 07:25 . 2013-08-16 19:21        6599968        ----a-w-        c:\windows\system32\nvcpl.dll
2013-09-12 07:25 . 2013-08-16 19:21        3452192        ----a-w-        c:\windows\system32\nvsvc64.dll
2013-09-12 07:25 . 2013-08-16 19:21        920864        ----a-w-        c:\windows\system32\nvvsvc.exe
2013-09-12 07:25 . 2013-08-16 19:21        63776        ----a-w-        c:\windows\system32\nvshext.dll
2013-09-12 07:25 . 2013-08-16 19:21        2559776        ----a-w-        c:\windows\system32\nvsvcr.dll
2013-09-12 07:25 . 2013-08-16 19:21        219424        ----a-w-        c:\windows\system32\nvmctray.dll
2013-09-11 23:17 . 2013-09-11 23:17        571168        ----a-w-        c:\windows\SysWow64\nvStreaming.exe
2013-09-11 22:06 . 2013-08-16 19:39        3361114        ----a-w-        c:\windows\system32\nvcoproc.bin
2013-09-03 11:50 . 2013-08-17 23:16        81112        ----a-w-        c:\windows\system32\drivers\avnetflt.sys
2013-09-03 11:50 . 2013-08-17 17:10        132088        ----a-w-        c:\windows\system32\drivers\avipbb.sys
2013-09-03 11:50 . 2013-08-17 17:10        105344        ----a-w-        c:\windows\system32\drivers\avgntflt.sys
2013-08-30 00:06 . 2012-07-17 12:37        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-08-29 01:48 . 2013-10-09 12:50        44032        ----a-w-        c:\windows\apppatch\acwow64.dll
2013-08-22 11:10 . 2013-08-16 18:41        100864        ----a-r-        c:\users\Markus\AppData\Roaming\Microsoft\Installer\{68D2A2E2-6B64-4433-8073-0605EB306C1B}\Icon68D2A2E2.exe
2013-08-19 01:16 . 2013-08-19 01:16        73728        ----a-w-        c:\windows\SysWow64\SetIEInstalledDate.exe
2013-08-19 01:16 . 2013-08-19 01:16        719360        ----a-w-        c:\windows\SysWow64\mshtmlmedia.dll
2013-08-19 01:16 . 2013-08-19 01:16        523264        ----a-w-        c:\windows\SysWow64\vbscript.dll
2013-08-19 01:16 . 2013-08-19 01:16        48640        ----a-w-        c:\windows\SysWow64\mshtmler.dll
2013-08-19 01:16 . 2013-08-19 01:16        38400        ----a-w-        c:\windows\SysWow64\imgutil.dll
2013-08-19 01:16 . 2013-08-19 01:16        226304        ----a-w-        c:\windows\system32\elshyph.dll
2013-08-19 01:16 . 2013-08-19 01:16        185344        ----a-w-        c:\windows\SysWow64\elshyph.dll
2013-08-19 01:16 . 2013-08-19 01:16        158720        ----a-w-        c:\windows\SysWow64\msls31.dll
2013-08-19 01:16 . 2013-08-19 01:16        150528        ----a-w-        c:\windows\SysWow64\iexpress.exe
2013-08-19 01:16 . 2013-08-19 01:16        138752        ----a-w-        c:\windows\SysWow64\wextract.exe
2013-08-19 01:16 . 2013-08-19 01:16        137216        ----a-w-        c:\windows\SysWow64\ieUnatt.exe
2013-08-19 01:16 . 2013-08-19 01:16        12800        ----a-w-        c:\windows\SysWow64\mshta.exe
2013-08-19 01:16 . 2013-08-19 01:16        110592        ----a-w-        c:\windows\SysWow64\IEAdvpack.dll
2013-08-19 01:16 . 2013-08-19 01:16        1054720        ----a-w-        c:\windows\system32\MsSpellCheckingFacility.exe
2013-08-19 01:16 . 2013-08-19 01:16        97280        ----a-w-        c:\windows\system32\mshtmled.dll
2013-08-19 01:16 . 2013-08-19 01:16        92160        ----a-w-        c:\windows\system32\SetIEInstalledDate.exe
2013-08-19 01:16 . 2013-08-19 01:16        905728        ----a-w-        c:\windows\system32\mshtmlmedia.dll
2013-08-19 01:16 . 2013-08-19 01:16        81408        ----a-w-        c:\windows\system32\icardie.dll
2013-08-19 01:16 . 2013-08-19 01:16        77312        ----a-w-        c:\windows\system32\tdc.ocx
2013-08-19 01:16 . 2013-08-19 01:16        762368        ----a-w-        c:\windows\system32\ieapfltr.dll
2013-08-19 01:16 . 2013-08-19 01:16        62976        ----a-w-        c:\windows\system32\pngfilt.dll
2013-08-19 01:16 . 2013-08-19 01:16        61952        ----a-w-        c:\windows\SysWow64\tdc.ocx
2013-08-19 01:16 . 2013-08-19 01:16        599552        ----a-w-        c:\windows\system32\vbscript.dll
2013-08-19 01:16 . 2013-08-19 01:16        52224        ----a-w-        c:\windows\system32\msfeedsbs.dll
2013-08-19 01:16 . 2013-08-19 01:16        51200        ----a-w-        c:\windows\system32\imgutil.dll
2013-08-19 01:16 . 2013-08-19 01:16        48640        ----a-w-        c:\windows\system32\mshtmler.dll
2013-08-19 01:16 . 2013-08-19 01:16        452096        ----a-w-        c:\windows\system32\dxtmsft.dll
2013-08-19 01:16 . 2013-08-19 01:16        441856        ----a-w-        c:\windows\system32\html.iec
2013-08-19 01:16 . 2013-08-19 01:16        361984        ----a-w-        c:\windows\SysWow64\html.iec
2013-08-19 01:16 . 2013-08-19 01:16        281600        ----a-w-        c:\windows\system32\dxtrans.dll
2013-08-19 01:16 . 2013-08-19 01:16        27648        ----a-w-        c:\windows\system32\licmgr10.dll
2013-08-19 01:16 . 2013-08-19 01:16        270848        ----a-w-        c:\windows\system32\iedkcs32.dll
2013-08-19 01:16 . 2013-08-19 01:16        247296        ----a-w-        c:\windows\system32\webcheck.dll
2013-08-19 01:16 . 2013-08-19 01:16        235008        ----a-w-        c:\windows\system32\url.dll
2013-08-19 01:16 . 2013-08-19 01:16        23040        ----a-w-        c:\windows\SysWow64\licmgr10.dll
2013-08-19 01:16 . 2013-08-19 01:16        216064        ----a-w-        c:\windows\system32\msls31.dll
2013-08-19 01:16 . 2013-08-19 01:16        197120        ----a-w-        c:\windows\system32\msrating.dll
2013-08-19 01:16 . 2013-08-19 01:16        173568        ----a-w-        c:\windows\system32\ieUnatt.exe
2013-08-19 01:16 . 2013-08-19 01:16        167424        ----a-w-        c:\windows\system32\iexpress.exe
2013-08-19 01:16 . 2013-08-19 01:16        1509376        ----a-w-        c:\windows\system32\inetcpl.cpl
2013-08-19 01:16 . 2013-08-19 01:16        149504        ----a-w-        c:\windows\system32\occache.dll
2013-08-19 01:16 . 2013-08-19 01:16        144896        ----a-w-        c:\windows\system32\wextract.exe
2013-08-19 01:16 . 2013-08-19 01:16        1441280        ----a-w-        c:\windows\SysWow64\inetcpl.cpl
2013-08-19 01:16 . 2013-08-19 01:16        1400416        ----a-w-        c:\windows\system32\ieapfltr.dat
2013-08-19 01:16 . 2013-08-19 01:16        13824        ----a-w-        c:\windows\system32\mshta.exe
2013-08-19 01:16 . 2013-08-19 01:16        136192        ----a-w-        c:\windows\system32\iepeers.dll
2013-08-19 01:16 . 2013-08-19 01:16        135680        ----a-w-        c:\windows\system32\IEAdvpack.dll
2013-08-19 01:16 . 2013-08-19 01:16        12800        ----a-w-        c:\windows\system32\msfeedssync.exe
2013-08-19 01:16 . 2013-08-19 01:16        102912        ----a-w-        c:\windows\system32\inseng.dll
2013-08-19 01:15 . 2013-08-19 01:15        9728        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        9728        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        648192        ----a-w-        c:\windows\system32\d3d10level9.dll
2013-08-19 01:15 . 2013-08-19 01:15        604160        ----a-w-        c:\windows\SysWow64\d3d10level9.dll
2013-08-19 01:15 . 2013-08-19 01:15        5632        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        5632        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        5632        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        5632        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        522752        ----a-w-        c:\windows\system32\XpsGdiConverter.dll
2013-08-19 01:15 . 2013-08-19 01:15        465920        ----a-w-        c:\windows\system32\WMPhoto.dll
2013-08-19 01:15 . 2013-08-19 01:15        417792        ----a-w-        c:\windows\SysWow64\WMPhoto.dll
2013-08-19 01:15 . 2013-08-19 01:15        4096        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        4096        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3928064        ----a-w-        c:\windows\system32\d2d1.dll
2013-08-19 01:15 . 2013-08-19 01:15        364544        ----a-w-        c:\windows\SysWow64\XpsGdiConverter.dll
2013-08-19 01:15 . 2013-08-19 01:15        363008        ----a-w-        c:\windows\system32\dxgi.dll
2013-08-19 01:15 . 2013-08-19 01:15        3584        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3584        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3419136        ----a-w-        c:\windows\SysWow64\d2d1.dll
2013-08-19 01:15 . 2013-08-19 01:15        333312        ----a-w-        c:\windows\system32\d3d10_1core.dll
2013-08-19 01:15 . 2013-08-19 01:15        3072        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3072        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3072        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-19 01:15 . 2013-08-19 01:15        3072        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="g:\steam\steam.exe" [2013-10-09 1813928]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"BitTorrent"="c:\users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe" [2013-07-25 1119056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-02-09 5015040]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-26 291608]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-09-03 347192]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-10-01 2345296]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]
S3 arusb_win7x;Service For TP-LINK Wireless N Adapter;c:\windows\system32\DRIVERS\arusb_win7x.sys;c:\windows\SYSNATIVE\DRIVERS\arusb_win7x.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-18 13:52        1185744        ----a-w-        c:\program files (x86)\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-10-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-16 21:35]
.
2013-10-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16 20:35]
.
2013-10-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16 20:35]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-08-27 1028896]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: Interfaces\{2DFA82E2-B872-46D3-A252-3F3BAA2C6C05}: NameServer = 192.168.178.2
FF - ProfilePath - c:\users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
WebBrowser-{41564952-412D-5637-00A7-7A786E7484D7} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-1463122067-3401198527-1685088311-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:09,63,19,0f,84,97,34,99,c3,0a,a4,83,eb,34,ea,7f,c7,21,8e,82,eb,55,86,
  ee,da,14,57,bd,7d,b2,23,d7,e5,69,b8,eb,2c,69,b6,58,ab,bb,89,2c,69,48,72,87,\
"??"=hex:69,6f,5c,46,6a,89,f9,ee,2d,48,e0,10,87,42,1e,12
.
[HKEY_USERS\S-1-5-21-1463122067-3401198527-1685088311-1000\Software\SecuROM\License information*]
"datasecu"=hex:b1,98,34,4c,16,18,39,ce,b6,1b,e1,11,ae,d3,b8,0e,13,f8,cc,10,bb,
  c1,ae,ef,ef,6a,3e,6b,10,35,05,d3,6f,41,e4,60,13,b2,69,f4,59,a1,95,d6,79,03,\
"rkeysecu"=hex:f2,3e,ee,d0,46,c0,32,ef,6c,08,69,59,42,8f,fd,61
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-10-27  00:48:27
ComboFix-quarantined-files.txt  2013-10-26 22:48
.
Vor Suchlauf: 10 Verzeichnis(se), 15.948.886.016 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 15.883.149.312 Bytes frei
.
- - End Of File - - 208AF244F3C1770818415AEA1882FE5D
A36C5E4F47E84449FF07ED3517B43A31

schrauber 27.10.2013 08:03
Frisches FRST log bitte.

Phoenix88 27.10.2013 13:19
FRTS.log


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-10-2013 01
Ran by Markus (administrator) on MARKUS-PC on 27-10-2013 13:18:06
Running from C:\Users\Markus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G4HLU7F3
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Valve Corporation) G:\Steam\Steam.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Farbar) C:\Users\Markus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G4HLU7F3\FRST64 (1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKCU\...\Run: [Steam] - G:\Steam\steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKCU\...\Run: [BitTorrent] - C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe [1119056 2013-07-25] (BitTorrent Inc.)
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x71F5E46AB79ACE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{2DFA82E2-B872-46D3-A252-3F3BAA2C6C05}: [NameServer]192.168.178.2

FireFox:
========
FF ProfilePath: C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: SciLorsGrooveUnlocker - C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\Extensions\SciLorsGrooveUnlocker@scilor.com.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Extension: (Google Docs) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Gmail) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [163608 2012-03-06] (Intel Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-16] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [769024 2010-04-20] (Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-17] (Avira Operations GmbH & Co. KG)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-08-17] ()
U3 aoxildri; C:\Windows\System32\Drivers\aoxildri.sys [0 ] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 MSICDSetup; \??\E:\CDriver64.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-27 13:16 - 2013-10-27 13:16 - 103334033 _____ C:\Windows\SysWOW64\฻㙉¡
2013-10-26 23:48 - 2013-10-26 23:48 - 00026377 _____ C:\ComboFix.txt
2013-10-26 22:56 - 2013-10-27 13:15 - 00001110 _____ C:\Windows\PFRO.log
2013-10-26 22:48 - 2013-10-26 23:48 - 00000000 ____D C:\Qoobox
2013-10-26 22:48 - 2013-10-26 23:47 - 00000000 ____D C:\Windows\erdnt
2013-10-26 22:48 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-26 22:48 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-26 22:48 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-26 18:48 - 2013-10-26 18:48 - 00001726 _____ C:\Users\Markus\Desktop\ESET FUNDE.txt
2013-10-26 16:42 - 2013-10-26 16:42 - 00040234 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-10-26 15:14 - 2013-10-26 17:04 - 00000023 _____ C:\Windows\BlendSettings.ini
2013-10-26 15:07 - 2013-10-26 15:07 - 00000767 _____ C:\Users\Markus\Desktop\Oblvion - Verknüpfung.lnk
2013-10-26 13:03 - 2013-10-26 13:03 - 00001460 _____ C:\Users\Markus\Desktop\JRT.txt
2013-10-26 12:57 - 2013-10-26 12:57 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-26 12:46 - 2013-10-26 12:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-26 11:09 - 2013-10-26 11:09 - 00312104 _____ C:\Windows\Minidump\102613-16723-01.dmp
2013-10-22 20:39 - 2013-10-22 20:39 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-22 14:55 - 2013-10-22 14:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-21 23:32 - 2013-10-27 13:15 - 00002744 _____ C:\Windows\setupact.log
2013-10-21 23:32 - 2013-10-21 23:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 21:17 - 2013-10-21 21:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 21:16 - 2013-10-21 21:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 20:31 - 2013-10-22 15:33 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-21 20:31 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-21 20:07 - 2013-10-21 20:07 - 00000201 _____ C:\Users\Markus\Desktop\Stronghold Crusader HD.url
2013-10-20 14:35 - 2013-10-20 14:48 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 15:19 - 2013-10-19 15:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 20:41 - 2013-10-19 18:31 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-18 20:16 - 2013-10-18 20:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Trinity.url
2013-10-18 20:16 - 2013-10-18 20:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Rebellion.url
2013-10-15 20:43 - 2013-10-16 14:08 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 20:43 - 2013-10-15 20:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 20:43 - 2013-10-15 20:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 17:53 - 2013-10-15 21:22 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-13 16:38 - 2013-10-13 16:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 16:38 - 2013-10-13 16:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 16:35 - 2013-10-13 16:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 16:33 - 2013-10-13 16:32 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 16:32 - 2013-10-13 16:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 16:24 - 2013-10-13 16:25 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 15:44 - 2013-10-13 15:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 15:22 - 2013-10-13 15:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-12 20:35 - 2013-10-12 20:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 20:34 - 2013-10-12 20:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 20:33 - 2013-10-12 20:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 13:37 - 2013-10-11 13:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-09 23:19 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-09 23:19 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-09 23:19 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-09 23:19 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 23:19 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-09 23:19 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 23:19 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-09 13:51 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-09 13:51 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-09 13:51 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-09 13:51 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-09 13:51 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 13:51 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 13:51 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-09 13:51 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 13:51 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-09 13:51 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-09 13:51 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-09 13:51 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-09 13:51 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-09 13:51 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 13:51 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 13:51 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 13:51 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-09 13:51 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-09 13:51 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-09 13:51 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 13:51 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-09 13:51 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-09 13:51 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-09 13:51 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 13:51 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-09 13:51 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-09 13:50 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-09 13:50 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-09 13:50 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-09 13:50 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-09 13:50 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-09 13:50 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-09 13:50 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-09 13:50 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-09 13:50 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-09 13:50 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-09 13:50 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-09 13:50 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-09 13:50 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-09 13:50 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-09 13:50 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-09 13:50 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 13:50 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 13:50 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:50 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:46 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 13:34 - 2013-10-09 13:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 20:39 - 2013-10-08 20:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 14:04 - 2013-10-08 14:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 14:02 - 2013-10-08 14:03 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 13:51 - 2013-10-08 13:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 20:56 - 2013-10-07 20:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 20:56 - 2013-10-07 20:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe
2013-10-06 17:54 - 2013-10-06 17:54 - 01186885 _____ (Easy2Convert Software                                      ) C:\Users\Markus\Downloads\dds2jpg.exe
2013-10-06 17:54 - 2013-10-06 17:54 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Easy2Convert
2013-10-06 17:54 - 2013-10-06 17:54 - 00000000 ____D C:\Program Files (x86)\Easy2Convert Software
2013-10-06 17:48 - 2013-10-06 17:48 - 00065367 _____ C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1.zip
2013-10-06 17:48 - 2013-10-06 17:48 - 00000000 ____D C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1
2013-10-06 14:03 - 2013-10-06 14:03 - 04123248 _____ (Black Tree Gaming                                          ) C:\Users\Markus\Downloads\Nexus Mod Manager-0.45.6.exe
2013-10-05 17:52 - 2013-10-06 18:21 - 00059573 _____ C:\Users\Markus\Documents\Siege.wlmp
2013-10-05 12:27 - 2013-10-05 12:27 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-05 12:26 - 2013-10-05 12:26 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-05 12:26 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-05 12:26 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-05 12:24 - 2013-10-05 12:24 - 00000000 ____D C:\NVIDIA
2013-10-05 12:24 - 2013-09-12 09:58 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-10-05 12:24 - 2013-09-12 09:58 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 01222824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-10-05 12:24 - 2013-09-12 09:58 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-10-05 12:24 - 2013-08-20 14:33 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-10-05 12:24 - 2013-08-20 14:32 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2013-10-05 12:24 - 2013-08-20 14:32 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-10-05 12:24 - 2013-06-16 13:38 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-10-05 12:24 - 2013-06-16 13:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-10-05 12:24 - 2013-01-29 09:35 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2013-10-05 12:20 - 2013-10-05 12:23 - 242200864 _____ (NVIDIA Corporation) C:\Users\Markus\Downloads\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-05 10:49 - 2013-10-05 10:49 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn
2013-10-05 10:49 - 2013-10-05 10:49 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-04 19:11 - 2013-10-04 19:11 - 00001307 _____ C:\Users\Markus\Desktop\skse_loader.exe - Verknüpfung.lnk
2013-10-04 15:24 - 2013-10-04 15:24 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-10-03 22:15 - 2013-10-03 22:15 - 00000224 _____ C:\Users\Markus\aaaaaaaaaa.py
2013-10-03 21:57 - 2013-10-03 21:58 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-03 21:57 - 2013-10-03 21:57 - 17842526 _____ C:\Users\Markus\Downloads\avidemux_2.6.6_win32.exe
2013-10-03 12:28 - 2013-10-03 12:28 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119 (1).exe
2013-10-03 12:27 - 2013-10-03 12:27 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-09-30 21:03 - 2013-09-30 21:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 19:29 - 2013-09-30 19:29 - 00300850 _____ C:\Users\Markus\Downloads\mp3DC219.exe
2013-09-29 14:27 - 2013-09-29 14:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Sony Online Entertainment
2013-09-28 17:46 - 2013-09-28 17:46 - 00001319 _____ C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2013-09-28 17:45 - 2013-09-28 17:45 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2013-09-28 17:03 - 2013-09-28 17:03 - 03819328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_118.exe
2013-09-28 14:00 - 2013-09-28 14:00 - 00000000 ____D C:\Windows\System32\Tasks\Games

==================== One Month Modified Files and Folders =======

2013-10-27 13:17 - 2013-08-26 01:10 - 00000000 ____D C:\Users\Markus\Desktop\Adware
2013-10-27 13:17 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\BitTorrent
2013-10-27 13:16 - 2013-10-27 13:16 - 103334033 _____ C:\Windows\SysWOW64\฻㙉¡
2013-10-27 13:16 - 2013-09-06 22:45 - 00003026 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-10-27 13:15 - 2013-10-26 22:56 - 00001110 _____ C:\Windows\PFRO.log
2013-10-27 13:15 - 2013-10-21 23:32 - 00002744 _____ C:\Windows\setupact.log
2013-10-27 13:15 - 2013-08-16 21:35 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-27 13:15 - 2013-08-16 20:56 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn Hamachi
2013-10-27 13:15 - 2013-08-16 20:21 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-27 13:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-27 01:23 - 2013-08-16 19:15 - 02095181 _____ C:\Windows\WindowsUpdate.log
2013-10-27 00:51 - 2013-08-16 21:35 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-27 00:35 - 2013-08-16 20:42 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-26 23:48 - 2013-10-26 23:48 - 00026377 _____ C:\ComboFix.txt
2013-10-26 23:48 - 2013-10-26 22:48 - 00000000 ____D C:\Qoobox
2013-10-26 23:48 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-10-26 23:47 - 2013-10-26 22:48 - 00000000 ____D C:\Windows\erdnt
2013-10-26 23:46 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-10-26 23:04 - 2009-07-14 05:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-26 23:04 - 2009-07-14 05:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-26 23:03 - 2009-07-14 18:58 - 00696832 _____ C:\Windows\system32\perfh007.dat
2013-10-26 23:03 - 2009-07-14 18:58 - 00148128 _____ C:\Windows\system32\perfc007.dat
2013-10-26 23:03 - 2009-07-14 06:13 - 01613340 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-26 22:34 - 2013-08-16 21:38 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-10-26 22:34 - 2013-08-16 21:16 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-10-26 22:34 - 2013-08-16 21:16 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-10-26 18:48 - 2013-10-26 18:48 - 00001726 _____ C:\Users\Markus\Desktop\ESET FUNDE.txt
2013-10-26 17:04 - 2013-10-26 15:14 - 00000023 _____ C:\Windows\BlendSettings.ini
2013-10-26 17:02 - 2013-08-16 19:18 - 00000000 ____D C:\Users\Markus\.gimp-2.8
2013-10-26 16:42 - 2013-10-26 16:42 - 00040234 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-10-26 15:19 - 2013-08-16 19:19 - 00000000 ___RD C:\Users\Markus\Desktop\Games
2013-10-26 15:07 - 2013-10-26 15:07 - 00000767 _____ C:\Users\Markus\Desktop\Oblvion - Verknüpfung.lnk
2013-10-26 13:03 - 2013-10-26 13:03 - 00001460 _____ C:\Users\Markus\Desktop\JRT.txt
2013-10-26 12:57 - 2013-10-26 12:57 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-26 12:46 - 2013-10-26 12:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-26 11:09 - 2013-10-26 11:09 - 00312104 _____ C:\Windows\Minidump\102613-16723-01.dmp
2013-10-26 11:09 - 2013-08-25 13:14 - 00000000 ____D C:\Windows\Minidump
2013-10-22 20:39 - 2013-10-22 20:39 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-22 20:21 - 2013-08-16 19:32 - 00000000 ____D C:\Users\Markus\AppData\Roaming\vlc
2013-10-22 15:33 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-22 14:55 - 2013-10-22 14:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-21 23:32 - 2013-10-21 23:32 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 21:17 - 2013-10-21 21:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 21:16 - 2013-10-21 21:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 20:31 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-21 20:31 - 2013-08-19 23:01 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 20:09 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\DAEMON Tools Lite
2013-10-21 20:08 - 2013-08-16 20:05 - 00000000 ____D C:\Windows\Panther
2013-10-21 20:07 - 2013-10-21 20:07 - 00000201 _____ C:\Users\Markus\Desktop\Stronghold Crusader HD.url
2013-10-21 20:07 - 2013-08-17 00:34 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-10-20 14:48 - 2013-10-20 14:35 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 18:31 - 2013-10-18 20:41 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-19 15:19 - 2013-10-19 15:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 22:48 - 2013-08-16 20:38 - 00000000 ____D C:\Users\Markus\Documents\my games
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 20:16 - 2013-10-18 20:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Trinity.url
2013-10-18 20:16 - 2013-10-18 20:16 - 00000202 _____ C:\Users\Markus\Desktop\Sins of a Solar Empire Rebellion.url
2013-10-18 14:34 - 2013-08-16 19:17 - 00000000 ____D C:\Users\Markus\Downloads\Die drei Fragezeichen
2013-10-18 14:21 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-16 14:08 - 2013-10-15 20:43 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 21:22 - 2013-10-15 17:53 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-15 20:43 - 2013-10-15 20:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 20:43 - 2013-10-15 20:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 20:43 - 2013-08-16 19:25 - 00000000 ____D C:\Users\Markus\AppData\Local\Adobe
2013-10-15 20:34 - 2013-08-17 17:58 - 00000000 ____D C:\Users\Markus\Documents\Command and Conquer Generals Zero Hour Data
2013-10-13 16:38 - 2013-10-13 16:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 16:38 - 2013-10-13 16:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 16:38 - 2013-08-16 19:15 - 00000000 ____D C:\Users\Markus\AppData\Local\VirtualStore
2013-10-13 16:35 - 2013-10-13 16:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 16:32 - 2013-10-13 16:33 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 16:32 - 2013-10-13 16:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 16:32 - 2013-08-17 14:51 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-13 16:32 - 2013-08-17 14:51 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-10-13 16:25 - 2013-10-13 16:24 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 15:44 - 2013-10-13 15:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 15:44 - 2013-08-16 19:22 - 00003619 _____ C:\Users\Markus\Downloads\info.xml
2013-10-13 15:22 - 2013-10-13 15:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-13 12:58 - 2013-08-16 19:22 - 03369836 _____ C:\Users\Markus\Downloads\extract_201.exe
2013-10-13 12:46 - 2013-08-16 19:19 - 00000000 ____D C:\Users\Markus\Desktop\programme
2013-10-13 12:45 - 2013-08-16 19:19 - 00000000 ____D C:\Users\Markus\Desktop\Müll
2013-10-13 12:11 - 2013-08-16 19:49 - 00000000 ____D C:\Users\Markus\Downloads\Skyrim
2013-10-13 10:46 - 2013-08-16 21:35 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-13 10:46 - 2013-08-16 21:35 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-12 20:35 - 2013-10-12 20:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 20:34 - 2013-10-12 20:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 20:33 - 2013-10-12 20:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 21:30 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Skype
2013-10-11 16:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 13:37 - 2013-10-11 13:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-10 17:37 - 2009-07-14 05:45 - 00334280 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 23:19 - 2013-08-17 13:27 - 01590298 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-09 22:35 - 2013-08-16 20:42 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 22:35 - 2013-08-16 20:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 22:35 - 2013-08-16 20:42 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 13:34 - 2013-10-09 13:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 20:39 - 2013-10-08 20:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 18:31 - 2013-08-16 19:36 - 00000000 ____D C:\Users\Markus\AppData\Local\Skyrim
2013-10-08 14:04 - 2013-10-08 14:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 14:03 - 2013-10-08 14:02 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 13:51 - 2013-10-08 13:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 20:56 - 2013-10-07 20:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 20:56 - 2013-10-07 20:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe
2013-10-06 18:21 - 2013-10-05 17:52 - 00059573 _____ C:\Users\Markus\Documents\Siege.wlmp
2013-10-06 17:54 - 2013-10-06 17:54 - 01186885 _____ (Easy2Convert Software                                      ) C:\Users\Markus\Downloads\dds2jpg.exe
2013-10-06 17:54 - 2013-10-06 17:54 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Easy2Convert
2013-10-06 17:54 - 2013-10-06 17:54 - 00000000 ____D C:\Program Files (x86)\Easy2Convert Software
2013-10-06 17:48 - 2013-10-06 17:48 - 00065367 _____ C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1.zip
2013-10-06 17:48 - 2013-10-06 17:48 - 00000000 ____D C:\Users\Markus\Downloads\gimp-dds-win64-2.2.1
2013-10-06 14:06 - 2013-08-17 22:24 - 00000000 ____D C:\Users\Markus\Documents\Nexus Mod Manager
2013-10-06 14:04 - 2013-08-16 19:25 - 00000000 ____D C:\Users\Markus\AppData\Local\Black_Tree_Gaming
2013-10-06 14:03 - 2013-10-06 14:03 - 04123248 _____ (Black Tree Gaming                                          ) C:\Users\Markus\Downloads\Nexus Mod Manager-0.45.6.exe
2013-10-05 17:02 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\avidemux
2013-10-05 12:28 - 2013-08-16 20:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-05 12:28 - 2013-08-16 20:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-05 12:27 - 2013-10-05 12:27 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-10-05 12:27 - 2013-08-16 20:20 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-05 12:26 - 2013-10-05 12:26 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-05 12:26 - 2013-10-05 12:26 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-05 12:24 - 2013-10-05 12:24 - 00000000 ____D C:\NVIDIA
2013-10-05 12:23 - 2013-10-05 12:20 - 242200864 _____ (NVIDIA Corporation) C:\Users\Markus\Downloads\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-05 10:49 - 2013-10-05 10:49 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn
2013-10-05 10:49 - 2013-10-05 10:49 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-04 19:11 - 2013-10-04 19:11 - 00001307 _____ C:\Users\Markus\Desktop\skse_loader.exe - Verknüpfung.lnk
2013-10-04 15:26 - 2013-08-16 20:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-04 15:24 - 2013-10-04 15:24 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-10-03 22:16 - 2013-09-14 01:08 - 00000000 ____D C:\Program Files\Avidemux 2.6 - 64bits
2013-10-03 22:15 - 2013-10-03 22:15 - 00000224 _____ C:\Users\Markus\aaaaaaaaaa.py
2013-10-03 22:15 - 2013-08-16 19:15 - 00000000 ____D C:\Users\Markus
2013-10-03 22:06 - 2013-08-31 15:49 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-10-03 22:06 - 2013-08-16 19:25 - 00000000 ____D C:\Users\Markus\AppData\Roaming\DVDVideoSoft
2013-10-03 21:58 - 2013-10-03 21:57 - 00000000 ____D C:\Program Files (x86)\Avidemux 2.6
2013-10-03 21:57 - 2013-10-03 21:57 - 17842526 _____ C:\Users\Markus\Downloads\avidemux_2.6.6_win32.exe
2013-10-03 20:37 - 2013-08-16 19:18 - 00000000 ____D C:\Users\Markus\Downloads\ROw
2013-10-03 12:28 - 2013-10-03 12:28 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119 (1).exe
2013-10-03 12:27 - 2013-10-03 12:27 - 03820328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_119.exe
2013-10-03 12:27 - 2013-08-16 21:38 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-10-01 13:35 - 2013-08-16 21:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-30 21:36 - 2013-08-16 19:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Mozilla
2013-09-30 21:03 - 2013-09-30 21:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-30 19:29 - 2013-09-30 19:29 - 00300850 _____ C:\Users\Markus\Downloads\mp3DC219.exe
2013-09-29 14:27 - 2013-09-29 14:27 - 00000000 ____D C:\Users\Markus\AppData\Local\Sony Online Entertainment
2013-09-28 23:55 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\Downloads\cnc
2013-09-28 17:46 - 2013-09-28 17:46 - 00001319 _____ C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlanetSide 2 PSG.lnk
2013-09-28 17:45 - 2013-09-28 17:45 - 00000000 ____D C:\Users\Public\Sony Online Entertainment
2013-09-28 17:03 - 2013-09-28 17:03 - 03819328 _____ C:\Users\Markus\Downloads\battlelog-web-plugins_2.3.0_118.exe
2013-09-28 14:00 - 2013-09-28 14:00 - 00000000 ____D C:\Windows\System32\Tasks\Games

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-21 14:10

==================== End Of Log ============================
--- --- ---

schrauber 27.10.2013 18:05
Noch Probleme?

Phoenix88 27.10.2013 19:20
Also der Grakatreiber stürtzt beim Start immer noch ab aber das laden beim Hochfahren des Pc is deutlich kürzer. Allerdings bin ich mir noch nicht ganz sicher aber besser ist es schon.

schrauber 28.10.2013 10:03
Treiber mal erneuert? Im abgesicherten Modus auch?

Phoenix88 30.10.2013 13:30
Hat sich geklärt aber bist du dir sicher dass auch alle Viren weg sind ich habe ja eigl noch nicht wirklich was gemacht.

schrauber 31.10.2013 09:18
Poste mal ein frisches FRST log, dann schau ich noch einmal drauf.

Phoenix88 03.11.2013 16:08
Es treten wieder mal system hänger auf. Das FRST log folgt.

schrauber 04.11.2013 09:06
ok :)

Phoenix88 06.11.2013 12:55
Entschuldigung das ich das erst jetzt schicke aber ich habs fast schon vergessen.


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Markus (administrator) on MARKUS-PC on 06-11-2013 12:53:48
Running from C:\Users\Markus\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Valve Corporation) G:\Steam\Steam.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Electronic Arts) G:\Program Files (x86)\Origin\Origin.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-10-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKCU\...\Run: [Steam] - G:\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKCU\...\Run: [BitTorrent] - C:\Users\Markus\AppData\Roaming\BitTorrent\BitTorrent.exe [1119056 2013-07-25] (BitTorrent Inc.)
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2349392 2013-10-31] (LogMeIn Inc.)
AppInit_DLLs:  [97280 2009-07-14] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x71F5E46AB79ACE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{2DFA82E2-B872-46D3-A252-3F3BAA2C6C05}: [NameServer]192.168.178.2

FireFox:
========
FF ProfilePath: C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: SciLorsGrooveUnlocker - C:\Users\Markus\AppData\Roaming\Mozilla\Firefox\Profiles\udw3yiz2.default\Extensions\SciLorsGrooveUnlocker@scilor.com.xpi
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Extension: (Google Docs) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Markus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-03] (Avira Operations GmbH & Co. KG)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [163608 2012-03-06] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15122208 2013-10-18] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-05] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [769024 2010-04-20] (Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-08-17] (Avira Operations GmbH & Co. KG)
S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-08-17] ()
U3 aomajgo9; C:\Windows\System32\Drivers\aomajgo9.sys [0 ] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 MSICDSetup; \??\E:\CDriver64.sys [x]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x]
S3 tsusbhub; system32\drivers\tsusbhub.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-06 12:53 - 2013-11-06 12:53 - 01957098 _____ (Farbar) C:\Users\Markus\Desktop\FRST64.exe
2013-11-06 12:51 - 2013-11-06 12:51 - 00003026 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-11-06 12:51 - 2013-11-06 12:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-06 12:50 - 2013-11-06 12:50 - 102722523 _____ C:\Windows\SysWOW64\䑋㉈£
2013-11-05 15:37 - 2013-11-05 15:37 - 00000061 _____ C:\Users\Markus\Desktop\Neues Textdokument.txt
2013-11-05 14:33 - 2013-11-05 14:37 - 00000000 ____D C:\Users\Markus\Documents\Battlefield 4
2013-11-05 06:56 - 2013-11-05 06:56 - 00000664 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-11-05 06:56 - 2013-11-05 06:56 - 00000648 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-11-05 06:55 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-11-05 06:55 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-11-05 06:55 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-11-05 06:55 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-11-05 06:55 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-11-05 06:55 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-11-05 06:55 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-11-03 18:03 - 2013-11-03 18:03 - 00040754 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-11-02 14:47 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-11-02 14:46 - 2013-11-05 06:55 - 00203521 _____ C:\Windows\DirectX.log
2013-11-01 15:50 - 2013-11-03 15:49 - 104760586 _____ C:\Windows\SysWOW64\䘰砈@
2013-10-31 19:20 - 2013-10-31 19:20 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\C&C Generals ShockWave
2013-10-31 19:19 - 2013-10-31 19:19 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-31 11:22 - 2013-10-31 11:22 - 104264581 _____ C:\Windows\SysWOW64\犲2
2013-10-30 21:55 - 2013-11-01 18:04 - 00000000 ____D C:\Users\Markus\Downloads\Civ
2013-10-30 17:11 - 2013-10-30 17:11 - 00148653 _____ C:\Users\Markus\Desktop\Unbenannt.wma
2013-10-30 13:28 - 2013-10-30 13:28 - 104098187 _____ C:\Windows\SysWOW64\ﰃ暜‡
2013-10-29 18:21 - 2013-10-29 18:21 - 00112069 _____ C:\Users\Markus\Downloads\Neutrale Erdkarten.rar
2013-10-29 18:21 - 2013-10-29 18:21 - 00000000 ____D C:\Users\Markus\Downloads\Neutrale Erdkarten
2013-10-29 15:16 - 2013-10-29 15:25 - 00000000 ____D C:\Users\Markus\Downloads\Adolf Hitler
2013-10-29 15:16 - 2013-10-29 15:16 - 04937188 _____ C:\Users\Markus\Downloads\Adolf Hitler.zip
2013-10-29 13:17 - 2013-10-23 11:30 - 30344480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 22933792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 18199872 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 12572960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-10-29 13:17 - 2013-10-23 11:30 - 11426568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 11374520 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 09524088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 09480328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 03131680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 03124512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 02946848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 02747168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 01241376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00696096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00655136 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00560416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-10-29 13:17 - 2013-10-23 11:30 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-10-29 13:17 - 2013-01-29 09:35 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2013-10-29 13:10 - 2013-10-18 02:36 - 01063200 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-10-29 13:10 - 2013-10-18 02:36 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-10-29 13:08 - 2013-09-28 00:01 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-10-29 13:08 - 2013-09-28 00:01 - 00028960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-10-29 12:52 - 2013-11-06 12:49 - 00005127 _____ C:\Windows\setupact.log
2013-10-29 12:52 - 2013-10-29 12:52 - 00000000 _____ C:\Windows\setuperr.log
2013-10-28 15:01 - 2013-10-28 15:01 - 00000000 ____D C:\Users\Markus\Documents\4A Games
2013-10-28 14:58 - 2013-10-28 14:58 - 00000000 ____D C:\Users\Markus\AppData\Local\4A Games
2013-10-28 14:21 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-10-28 14:21 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-10-28 14:21 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-10-28 14:21 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-10-28 14:21 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-10-28 14:21 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-10-28 14:21 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-10-28 14:21 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-10-28 14:21 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-10-28 14:21 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-10-28 14:21 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-10-28 14:21 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-10-28 14:21 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-10-28 14:21 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-10-28 14:21 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-10-28 14:21 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-10-28 14:21 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-10-28 14:21 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-10-28 14:21 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-10-28 14:21 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-10-28 14:21 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-10-28 14:21 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-10-28 14:21 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-10-28 14:21 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-10-28 14:21 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-10-28 14:21 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-10-28 14:21 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-10-28 14:21 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-10-28 14:21 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-10-28 14:21 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-10-28 14:21 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-10-28 14:21 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-10-28 14:21 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-10-28 14:21 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-10-28 14:21 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-10-28 14:21 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-10-28 14:21 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-10-28 14:21 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-10-28 14:21 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-10-28 14:21 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-10-28 14:21 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-10-28 14:21 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-10-28 14:21 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-10-28 14:21 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-10-28 14:21 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-10-28 14:21 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-10-28 14:21 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-10-28 14:21 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-10-28 14:21 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-10-28 14:21 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-10-28 14:21 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-10-28 14:21 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-10-28 14:21 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-10-28 14:21 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-10-28 14:21 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-10-28 14:21 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-10-28 14:21 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-10-28 14:21 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-10-28 14:21 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-10-28 14:21 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2013-10-28 14:21 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-10-28 14:21 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-10-28 14:21 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-10-28 14:21 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-10-28 14:21 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-10-28 14:21 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-10-28 14:21 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-10-28 14:21 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-10-28 14:21 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-10-28 14:21 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-10-28 14:21 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-10-28 14:21 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-10-28 14:21 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-28 14:21 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-28 14:21 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-10-28 14:21 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-10-28 14:21 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-10-28 14:21 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-10-28 14:21 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-10-28 14:21 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-10-28 14:21 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-10-28 14:21 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-10-28 14:21 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-10-28 14:21 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-10-28 14:21 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-10-28 14:21 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-10-28 14:21 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-10-28 14:21 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-10-28 14:21 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-10-28 14:21 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-10-28 14:20 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-10-28 14:20 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-10-28 14:20 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-10-28 14:20 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-10-28 14:20 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-10-28 14:20 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-10-28 14:20 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-10-28 14:20 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-10-28 14:20 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-10-28 14:20 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-10-28 14:20 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-10-28 14:20 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-10-28 14:20 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-10-28 14:20 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-10-28 14:20 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-10-28 14:20 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-10-28 14:20 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-10-27 19:17 - 2013-10-27 19:17 - 103533600 _____ C:\Windows\SysWOW64\엙䖋³
2013-10-26 23:48 - 2013-10-26 23:48 - 00026377 _____ C:\ComboFix.txt
2013-10-26 22:48 - 2013-10-26 23:48 - 00000000 ____D C:\Qoobox
2013-10-26 22:48 - 2013-10-26 23:47 - 00000000 ____D C:\Windows\erdnt
2013-10-26 22:48 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-26 22:48 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-26 22:48 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-26 22:48 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-26 18:48 - 2013-10-26 18:48 - 00001726 _____ C:\Users\Markus\Desktop\ESET FUNDE.txt
2013-10-26 15:14 - 2013-10-26 17:04 - 00000023 _____ C:\Windows\BlendSettings.ini
2013-10-26 15:07 - 2013-10-26 15:07 - 00000767 _____ C:\Users\Markus\Desktop\Oblvion - Verknüpfung.lnk
2013-10-26 13:03 - 2013-10-26 13:03 - 00001460 _____ C:\Users\Markus\Desktop\JRT.txt
2013-10-26 12:57 - 2013-10-26 12:57 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-26 12:46 - 2013-10-26 12:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-23 03:02 - 2013-10-23 03:02 - 00589600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-10-22 14:55 - 2013-10-22 14:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-21 21:17 - 2013-10-21 21:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 21:16 - 2013-10-21 21:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 20:31 - 2013-10-31 14:20 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-21 20:31 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-20 14:35 - 2013-10-20 14:48 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 15:19 - 2013-10-19 15:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 20:41 - 2013-10-19 18:31 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-15 20:43 - 2013-10-16 14:08 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 20:43 - 2013-10-15 20:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 20:43 - 2013-10-15 20:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 17:53 - 2013-10-15 21:22 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-13 16:38 - 2013-10-13 16:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 16:38 - 2013-10-13 16:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 16:35 - 2013-10-13 16:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 16:33 - 2013-10-13 16:32 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 16:33 - 2013-10-13 16:32 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 16:32 - 2013-10-13 16:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 16:24 - 2013-10-13 16:25 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 15:44 - 2013-10-13 15:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 15:22 - 2013-10-13 15:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-12 20:35 - 2013-10-12 20:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 20:34 - 2013-10-12 20:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 20:33 - 2013-10-12 20:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 13:37 - 2013-10-11 13:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-09 23:19 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-09 23:19 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-09 23:19 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-09 23:19 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-09 23:19 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-09 23:19 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-09 23:19 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-09 23:19 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-09 23:19 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 23:19 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-09 13:51 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-09 13:51 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-09 13:51 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-09 13:51 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-09 13:51 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 13:51 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 13:51 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-09 13:51 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 13:51 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-09 13:51 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-09 13:51 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-09 13:51 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-09 13:51 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-09 13:51 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 13:51 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 13:51 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 13:51 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-09 13:51 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-09 13:51 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-09 13:51 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 13:51 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-09 13:51 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-09 13:51 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-09 13:51 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 13:51 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-09 13:51 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-09 13:50 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-09 13:50 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-09 13:50 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-09 13:50 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-09 13:50 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-09 13:50 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-09 13:50 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-09 13:50 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-09 13:50 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-09 13:50 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-09 13:50 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-09 13:50 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-09 13:50 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-09 13:50 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-09 13:50 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-09 13:50 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 13:50 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 13:50 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:50 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 13:46 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 13:46 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 13:34 - 2013-10-09 13:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 20:39 - 2013-10-08 20:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 14:04 - 2013-10-08 14:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 14:02 - 2013-10-08 14:03 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 13:51 - 2013-10-08 13:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 20:56 - 2013-10-07 20:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 20:56 - 2013-10-07 20:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe

==================== One Month Modified Files and Folders =======

2013-11-06 12:53 - 2013-11-06 12:53 - 01957098 _____ (Farbar) C:\Users\Markus\Desktop\FRST64.exe
2013-11-06 12:51 - 2013-11-06 12:51 - 00003026 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-11-06 12:51 - 2013-11-06 12:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-06 12:51 - 2013-08-16 21:35 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-06 12:51 - 2013-08-16 20:56 - 00000000 ____D C:\Users\Markus\AppData\Local\LogMeIn Hamachi
2013-11-06 12:51 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\BitTorrent
2013-11-06 12:50 - 2013-11-06 12:50 - 102722523 _____ C:\Windows\SysWOW64\䑋㉈£
2013-11-06 12:49 - 2013-10-29 12:52 - 00005127 _____ C:\Windows\setupact.log
2013-11-06 12:49 - 2013-08-16 21:35 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-06 12:49 - 2013-08-16 20:21 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-06 12:49 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-05 23:55 - 2013-08-16 19:15 - 01362663 _____ C:\Windows\WindowsUpdate.log
2013-11-05 23:35 - 2013-08-16 20:42 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-05 22:28 - 2013-08-17 17:58 - 00000000 ____D C:\Users\Markus\Documents\Command and Conquer Generals Zero Hour Data
2013-11-05 21:02 - 2013-08-16 21:16 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-05 20:38 - 2013-08-16 21:16 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-05 15:37 - 2013-11-05 15:37 - 00000061 _____ C:\Users\Markus\Desktop\Neues Textdokument.txt
2013-11-05 14:37 - 2013-11-05 14:33 - 00000000 ____D C:\Users\Markus\Documents\Battlefield 4
2013-11-05 14:35 - 2013-08-16 19:36 - 00000000 ____D C:\Users\Markus\AppData\Local\PunkBuster
2013-11-05 06:56 - 2013-11-05 06:56 - 00000664 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-11-05 06:56 - 2013-11-05 06:56 - 00000648 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-11-05 06:56 - 2013-09-06 14:57 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-05 06:56 - 2013-08-16 21:15 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-05 06:55 - 2013-11-02 14:46 - 00203521 _____ C:\Windows\DirectX.log
2013-11-04 21:44 - 2009-07-14 05:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-04 21:44 - 2009-07-14 05:45 - 00016944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-04 17:01 - 2009-07-14 18:58 - 00696832 _____ C:\Windows\system32\perfh007.dat
2013-11-04 17:01 - 2009-07-14 18:58 - 00148128 _____ C:\Windows\system32\perfc007.dat
2013-11-04 17:01 - 2009-07-14 06:13 - 01613340 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-03 21:31 - 2013-08-16 21:38 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-03 18:07 - 2013-08-16 19:18 - 00000000 ____D C:\Users\Markus\.gimp-2.8
2013-11-03 18:03 - 2013-11-03 18:03 - 00040754 _____ C:\Users\Markus\AppData\Local\recently-used.xbel
2013-11-03 15:49 - 2013-11-01 15:50 - 104760586 _____ C:\Windows\SysWOW64\䘰砈@
2013-11-01 18:04 - 2013-10-30 21:55 - 00000000 ____D C:\Users\Markus\Downloads\Civ
2013-11-01 00:40 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Skype
2013-10-31 22:40 - 2013-08-16 19:19 - 00000000 ___RD C:\Users\Markus\Desktop\Games
2013-10-31 19:20 - 2013-10-31 19:20 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\C&C Generals ShockWave
2013-10-31 19:19 - 2013-10-31 19:19 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-31 19:19 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\Downloads\cnc
2013-10-31 14:21 - 2013-08-16 19:36 - 00082792 _____ C:\Users\Markus\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-31 14:20 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\Documents\Stronghold Crusader
2013-10-31 13:43 - 2013-08-17 00:34 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-10-31 11:22 - 2013-10-31 11:22 - 104264581 _____ C:\Windows\SysWOW64\犲2
2013-10-30 22:42 - 2009-07-14 05:45 - 00335768 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-30 22:36 - 2013-08-16 20:38 - 00000000 ____D C:\Users\Markus\Documents\my games
2013-10-30 22:36 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Markus\AppData\Local\My Games
2013-10-30 19:00 - 2013-08-16 19:32 - 00000000 ____D C:\Users\Markus\AppData\Roaming\vlc
2013-10-30 17:11 - 2013-10-30 17:11 - 00148653 _____ C:\Users\Markus\Desktop\Unbenannt.wma
2013-10-30 14:21 - 2013-08-16 19:15 - 00000000 ____D C:\Users\Markus
2013-10-30 13:52 - 2013-08-16 20:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-30 13:28 - 2013-10-30 13:28 - 104098187 _____ C:\Windows\SysWOW64\ﰃ暜‡
2013-10-29 18:21 - 2013-10-29 18:21 - 00112069 _____ C:\Users\Markus\Downloads\Neutrale Erdkarten.rar
2013-10-29 18:21 - 2013-10-29 18:21 - 00000000 ____D C:\Users\Markus\Downloads\Neutrale Erdkarten
2013-10-29 15:25 - 2013-10-29 15:16 - 00000000 ____D C:\Users\Markus\Downloads\Adolf Hitler
2013-10-29 15:16 - 2013-10-29 15:16 - 04937188 _____ C:\Users\Markus\Downloads\Adolf Hitler.zip
2013-10-29 15:11 - 2013-08-19 23:01 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-29 13:19 - 2013-08-16 20:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-29 13:10 - 2013-08-16 20:20 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-29 12:52 - 2013-10-29 12:52 - 00000000 _____ C:\Windows\setuperr.log
2013-10-28 20:03 - 2013-08-16 19:24 - 00000000 ____D C:\Users\Markus\AppData\Roaming\DAEMON Tools Lite
2013-10-28 15:01 - 2013-10-28 15:01 - 00000000 ____D C:\Users\Markus\Documents\4A Games
2013-10-28 14:58 - 2013-10-28 14:58 - 00000000 ____D C:\Users\Markus\AppData\Local\4A Games
2013-10-28 14:19 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-27 19:17 - 2013-10-27 19:17 - 103533600 _____ C:\Windows\SysWOW64\엙䖋³
2013-10-27 13:23 - 2013-08-25 13:14 - 00000000 ____D C:\Windows\Minidump
2013-10-27 13:17 - 2013-08-26 01:10 - 00000000 ____D C:\Users\Markus\Desktop\Adware
2013-10-26 23:48 - 2013-10-26 23:48 - 00026377 _____ C:\ComboFix.txt
2013-10-26 23:48 - 2013-10-26 22:48 - 00000000 ____D C:\Qoobox
2013-10-26 23:48 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-10-26 23:47 - 2013-10-26 22:48 - 00000000 ____D C:\Windows\erdnt
2013-10-26 23:46 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-10-26 18:48 - 2013-10-26 18:48 - 00001726 _____ C:\Users\Markus\Desktop\ESET FUNDE.txt
2013-10-26 17:04 - 2013-10-26 15:14 - 00000023 _____ C:\Windows\BlendSettings.ini
2013-10-26 15:07 - 2013-10-26 15:07 - 00000767 _____ C:\Users\Markus\Desktop\Oblvion - Verknüpfung.lnk
2013-10-26 13:03 - 2013-10-26 13:03 - 00001460 _____ C:\Users\Markus\Desktop\JRT.txt
2013-10-26 12:57 - 2013-10-26 12:57 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-26 12:46 - 2013-10-26 12:46 - 00018451 _____ C:\Users\Markus\Desktop\Gmer.log
2013-10-23 11:30 - 2013-10-29 13:17 - 30344480 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 22933792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 18199872 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 12572960 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-10-23 11:30 - 2013-10-29 13:17 - 11426568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 11374520 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 09524088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 09480328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 03131680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 03124512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 02946848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 02747168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 01241376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00696096 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00655136 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00599840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00560416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-10-23 11:30 - 2013-10-29 13:17 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-10-23 11:30 - 2013-10-05 12:24 - 15212336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-10-23 11:30 - 2013-08-16 20:21 - 03067560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-10-23 11:30 - 2013-08-16 20:21 - 00023287 _____ C:\Windows\system32\nvinfo.pb
2013-10-23 11:30 - 2013-02-25 23:32 - 18286416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-10-23 11:30 - 2013-02-25 23:32 - 15855568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-10-23 11:30 - 2013-02-25 23:32 - 02695200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-10-23 11:30 - 2013-02-25 23:32 - 01435504 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-10-23 09:20 - 2013-08-16 20:39 - 03426956 _____ C:\Windows\system32\nvcoproc.bin
2013-10-23 09:20 - 2013-08-16 20:21 - 06669600 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-10-23 09:20 - 2013-08-16 20:21 - 03489568 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-10-23 09:20 - 2013-08-16 20:21 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-10-23 09:20 - 2013-08-16 20:21 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-10-23 09:20 - 2013-08-16 20:21 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-10-23 09:20 - 2013-08-16 20:21 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-10-23 03:02 - 2013-10-23 03:02 - 00589600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-10-22 14:55 - 2013-10-22 14:55 - 00000000 ____D C:\Users\Markus\AppData\Local\NVIDIA
2013-10-21 21:17 - 2013-10-21 21:17 - 00101203 _____ C:\Users\Markus\Downloads\HamachiBroadcastFix.zip
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Users\Markus\Downloads\HamachiBroadcastFix
2013-10-21 21:17 - 2013-10-21 21:17 - 00000000 ____D C:\Program Files (x86)\WinPcap
2013-10-21 21:16 - 2013-10-21 21:16 - 00915128 _____ (Riverbed Technology, Inc.) C:\Users\Markus\Downloads\WinPcap_4_1_3.exe
2013-10-21 20:31 - 2013-10-21 20:31 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
2013-10-21 20:08 - 2013-08-16 20:05 - 00000000 ____D C:\Windows\Panther
2013-10-20 14:48 - 2013-10-20 14:35 - 00001322 _____ C:\Users\Markus\Desktop\English Ref.txt
2013-10-19 18:31 - 2013-10-18 20:41 - 00000000 ____D C:\Users\Markus\Downloads\sins
2013-10-19 15:19 - 2013-10-19 15:19 - 101916422 _____ C:\Windows\SysWOW64\⑝첓™
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Stardock
2013-10-18 22:37 - 2013-10-18 22:37 - 00000000 ____D C:\ProgramData\Ironclad Games
2013-10-18 14:34 - 2013-08-16 19:17 - 00000000 ____D C:\Users\Markus\Downloads\Die drei Fragezeichen
2013-10-18 14:21 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-18 02:36 - 2013-10-29 13:10 - 01063200 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-10-18 02:36 - 2013-10-29 13:10 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-10-16 14:08 - 2013-10-15 20:43 - 00000000 ____D C:\ProgramData\Adobe
2013-10-15 21:22 - 2013-10-15 17:53 - 00041489 _____ C:\Users\Markus\Documents\wkblogo.xcf
2013-10-15 20:43 - 2013-10-15 20:43 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-15 20:43 - 2013-10-15 20:43 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-15 20:43 - 2013-08-16 19:25 - 00000000 ____D C:\Users\Markus\AppData\Local\Adobe
2013-10-13 16:38 - 2013-10-13 16:38 - 06585875 _____ C:\Users\Markus\Downloads\Warrior Kings Editor.zip
2013-10-13 16:38 - 2013-10-13 16:38 - 00000000 ____D C:\Users\Markus\Downloads\Warrior Kings Editor
2013-10-13 16:38 - 2013-08-16 19:15 - 00000000 ____D C:\Users\Markus\AppData\Local\VirtualStore
2013-10-13 16:35 - 2013-10-13 16:35 - 00000000 ____D C:\Users\Markus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Game Extractor
2013-10-13 16:32 - 2013-10-13 16:33 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 16:32 - 2013-10-13 16:33 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-13 16:32 - 2013-10-13 16:32 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-13 16:32 - 2013-08-17 14:51 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-13 16:32 - 2013-08-17 14:51 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-10-13 16:25 - 2013-10-13 16:24 - 00000070 _____ C:\Users\Markus\Desktop\Hur.txt
2013-10-13 15:44 - 2013-10-13 15:44 - 00201089 _____ C:\Users\Markus\Downloads\upd201.jar
2013-10-13 15:44 - 2013-08-16 19:22 - 00003619 _____ C:\Users\Markus\Downloads\info.xml
2013-10-13 15:22 - 2013-10-13 15:22 - 04270711 _____ C:\Users\Markus\Downloads\extract.exe
2013-10-13 12:58 - 2013-08-16 19:22 - 03369836 _____ C:\Users\Markus\Downloads\extract_201.exe
2013-10-13 12:46 - 2013-08-16 19:19 - 00000000 ____D C:\Users\Markus\Desktop\programme
2013-10-13 12:45 - 2013-08-16 19:19 - 00000000 ____D C:\Users\Markus\Desktop\Müll
2013-10-13 12:11 - 2013-08-16 19:49 - 00000000 ____D C:\Users\Markus\Downloads\Skyrim
2013-10-13 10:46 - 2013-08-16 21:35 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-13 10:46 - 2013-08-16 21:35 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-12 20:35 - 2013-10-12 20:35 - 00000000 ____D C:\Program Files (x86)\Pivot Stickfigure Animator
2013-10-12 20:34 - 2013-10-12 20:34 - 00000000 ____D C:\Users\Markus\Documents\Pivot
2013-10-12 20:33 - 2013-10-12 20:33 - 00959772 _____ (                                                            ) C:\Users\Markus\Downloads\pivot227_setup.exe
2013-10-11 16:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-11 13:51 - 2013-10-11 13:51 - 00000000 ____D C:\ProgramData\Skype
2013-10-11 13:37 - 2013-10-11 13:37 - 100474618 _____ C:\Windows\SysWOW64\ጃ栿f
2013-10-09 23:19 - 2013-08-17 13:27 - 01590298 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-09 22:35 - 2013-08-16 20:42 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 22:35 - 2013-08-16 20:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 22:35 - 2013-08-16 20:42 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 13:34 - 2013-10-09 13:34 - 100120694 _____ C:\Windows\SysWOW64\�뽀
2013-10-08 20:39 - 2013-10-08 20:39 - 05030661 _____ C:\Users\Markus\Downloads\oblivion_v1.2.0416german.exe
2013-10-08 18:31 - 2013-08-16 19:36 - 00000000 ____D C:\Users\Markus\AppData\Local\Skyrim
2013-10-08 14:04 - 2013-10-08 14:04 - 00000000 ____D C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1
2013-10-08 14:03 - 2013-10-08 14:02 - 72057915 _____ C:\Users\Markus\Downloads\Bathing Beauties Luxury Suite 5-1-11427-5-1.zip
2013-10-08 13:51 - 2013-10-08 13:51 - 99859239 _____ C:\Windows\SysWOW64\᳎༸D
2013-10-07 20:56 - 2013-10-07 20:56 - 02441296 _____ C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe.rar
2013-10-07 20:56 - 2013-10-07 20:56 - 00000000 ____D C:\Users\Markus\Downloads\Oblivion 1.2.416 [ENGLISH] Fixed Exe

Some content of TEMP:
====================
C:\Users\Markus\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Markus\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Markus\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Markus\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Markus\AppData\Local\Temp\nvStInst.exe
C:\Users\Markus\AppData\Local\Temp\sonarinst.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-31 11:51

==================== End Of Log ============================
--- --- ---


nochmal :dankeschoen: für die hilfe bis jetzt. :D


Alle Zeitangaben in WEZ +1. Es ist jetzt 09:38 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55