Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   adware im browser (https://www.trojaner-board.de/144201-adware-browser.html)

saufbiene 07.11.2013 15:03

adware im browser
 
Code:

BHOVersion="2.5.1878 QA INI-file:encrypted INI-enc:new(BASE64X|META)x64"
so ist der befehlscode der datei die seit gestern drauf ist
mit namen

suRf AnD keep.2.5

keine ahnung was es ist aber seit heute morgen nach runterfahren gestern abend erscheint es immer wieder
und seit dem sind adwares vorhanden auch wird ein fehlercode gemeldet manchmal vom pc heute wen er in leerlauf geht irgendwas mit memory failure 0x irgendwas

weis nciht was damit gemeint ist ^^
muss gerade opera nutzen da chrome etc adwares anzeigen und beim aufrufen der website trojaner board sie verzehren bzw irgend eine seite aufgerufen wird im neuen tab die geblockt wird von mbam

schrauber 07.11.2013 15:16

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


saufbiene 07.11.2013 15:56

hier ist der frst log


FRST Logfile:
Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Daniel (administrator) on MEDION on 07-11-2013 15:40:46
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(X10) C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\WButton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

BHO: suRf AnD keep - {69454599-AB53-4D55-D629-03F8790328DD} - C:\Program Files (x86)\suRf AnD keep\h75h.x64.dll No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: 192.168.2.100 NPI1BB733
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File
CHR Extension: (ChromePoster) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\adnbbenoccfckadanalngjafokjnnilm\0.1_0
CHR Extension: (convert2mp3.net Online Video Converter) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhklmhadmpdfcgimodhdapodbllnjjll\1.7_0
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (suRf AnD keep) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpfinkhogofaddkijhkfcbbkidaabfa\2.19
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\janipibkfadimhhgeklofaganodhfekj\1_0
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (YouTube Unblocker) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl\0.4.5_1
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [ohkkgbjcojmjfnhegmphnheljncbegbc] - C:\Users\Daniel\AppData\Local\CRE\ohkkgbjcojmjfnhegmphnheljncbegbc.crx

==================== Services (Whitelisted) =================

S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [4389224 2013-09-15] (Reimage®)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
R2 x10nets; C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe [20480 2009-11-07] (X10)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 14:55 - 2013-11-07 14:56 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 14:54 - 2013-11-07 14:56 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-07 14:52 - 2013-11-07 14:52 - 00002636 ____C C:\Users\Daniel\Desktop\AdwCleaner[S0].txt
2013-11-07 13:40 - 2013-11-07 13:40 - 00002699 ____C C:\Users\Daniel\Desktop\AdwCleaner[R1].txt
2013-11-06 17:23 - 2013-11-06 17:24 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:19 - 2013-11-06 16:20 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 09:08 - 2013-11-06 09:10 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:47 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 22:55 - 2013-11-05 23:11 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:25 - 2013-11-05 20:51 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:21 - 2013-11-05 20:22 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-04 13:31 - 2013-11-07 15:28 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-01 17:18 - 2013-11-01 17:37 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:13 - 2013-11-05 16:09 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-01 16:12 - 2013-11-05 16:11 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-10-30 18:34 - 2013-10-30 19:07 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 17:59 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-10-30 15:20 - 2013-11-01 16:14 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-30 15:15 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:16 - 2013-10-27 14:17 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 17:25 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-25 02:55 - 2013-10-25 03:00 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 01088272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00155408 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00063488 ____C (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2013-10-24 16:51 - 1998-09-02 09:28 - 00038160 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2013-10-24 16:51 - 1998-09-02 09:02 - 00194320 ____C (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2013-10-24 16:51 - 1998-08-27 05:51 - 00182032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2013-10-24 16:51 - 1998-08-20 12:02 - 00140800 ____C (The Duck Corporation) C:\Windows\SysWOW64\tm20dec.ax
2013-10-24 16:51 - 1998-08-20 11:38 - 00217984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00011776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz.drv
2013-10-24 16:51 - 1998-08-17 10:21 - 00010240 ____C C:\Windows\SysWOW64\vidx16.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00005672 ____C C:\Windows\SysWOW64\quartz.vxd
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:50 - 1997-08-26 11:06 - 00315904 ____C (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:55 - 2013-10-22 02:56 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 00:56 - 2013-11-06 16:07 - 00000000 ___DC C:\ProgramData\Oracle
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-10-08 06:50 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 00:26 - 2013-10-08 06:46 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:41 - 2013-10-18 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 22:43 - 2013-10-18 23:17 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-16 15:24 - 2013-10-16 15:25 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 09:23 - 2013-10-16 09:24 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-15 13:38 - 2009-08-19 22:50 - 00024416 ___RC (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2013-10-14 15:45 - 2013-10-14 15:47 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:02 - 2013-10-14 15:38 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-13 20:16 - 2013-10-13 22:04 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-27 14:17 - 00000000 ___DC C:\ProgramData\Origin
2013-10-13 19:09 - 2013-11-05 15:08 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-10-13 19:09 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 18:42 - 2013-11-02 17:34 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-10-13 04:45 - 2013-10-13 05:22 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:45 - 2013-10-13 04:47 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:20 - 2009-08-19 22:50 - 00052568 ____C (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:08 - 2013-09-04 13:12 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 11:03 - 2013-10-11 00:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:37 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 11:03 - 2013-07-12 11:41 - 00185344 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 11:03 - 2013-07-12 11:41 - 00100864 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:34 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 11:02 - 2013-10-11 00:09 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-07-03 05:05 - 00076800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 11:02 - 2013-07-03 05:05 - 00032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 11:01 - 2013-10-11 00:09 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

==================== One Month Modified Files and Folders =======

2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:37 - 2013-07-31 20:43 - 00000000 __RDC C:\Users\Daniel\Desktop\Dj Musik
2013-11-07 15:28 - 2013-11-04 13:31 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-07 15:28 - 2013-08-01 16:23 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Skype
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 15:09 - 2013-08-01 21:55 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\BitTorrent
2013-11-07 15:08 - 2013-07-31 21:11 - 00000884 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-07 15:01 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-07 15:01 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-07 14:57 - 2013-08-14 08:41 - 01284706 ____C C:\Windows\WindowsUpdate.log
2013-11-07 14:56 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:56 - 2013-11-07 14:54 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 14:52 - 2013-11-07 14:52 - 00002636 ____C C:\Users\Daniel\Desktop\AdwCleaner[S0].txt
2013-11-07 14:50 - 2013-09-23 06:08 - 00008300 ____C C:\Windows\setupact.log
2013-11-07 14:50 - 2013-07-31 19:50 - 00001106 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-07 14:50 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2013-11-07 14:45 - 2013-07-31 19:50 - 00001110 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-07 13:40 - 2013-11-07 13:40 - 00002699 ____C C:\Users\Daniel\Desktop\AdwCleaner[R1].txt
2013-11-07 13:20 - 2013-09-25 19:03 - 00022264 ____C C:\Windows\PFRO.log
2013-11-07 07:28 - 2013-08-19 06:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\vlc
2013-11-06 17:31 - 2013-09-06 12:54 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\.minecraft
2013-11-06 17:24 - 2013-11-06 17:23 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:20 - 2013-11-06 16:19 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-10-20 00:56 - 00000000 ___DC C:\ProgramData\Oracle
2013-11-06 16:06 - 2013-11-06 16:07 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 11:49 - 2013-07-31 20:26 - 00001006 ____C C:\Users\Daniel\Desktop\Challenger.lnk
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-06 09:10 - 2013-11-06 09:08 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-06 08:37 - 2013-08-03 19:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\CrashDumps
2013-11-06 01:29 - 2013-08-03 15:52 - 00000000 ___DC C:\Users\Daniel\Desktop\tevion usb stick daten
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:48 - 2013-11-05 23:47 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 23:11 - 2013-11-05 22:55 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:51 - 2013-11-05 20:25 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:22 - 2013-11-05 20:21 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-05 20:19 - 2010-05-12 09:18 - 00654166 ____C C:\Windows\system32\perfh007.dat
2013-11-05 20:19 - 2010-05-12 09:18 - 00130006 ____C C:\Windows\system32\perfc007.dat
2013-11-05 20:19 - 2009-07-14 06:13 - 01498506 ____C C:\Windows\system32\PerfStringBackup.INI
2013-11-05 16:11 - 2013-11-01 16:12 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-11-05 16:09 - 2013-11-01 16:13 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-05 16:08 - 2013-10-30 17:59 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-11-05 16:08 - 2013-10-30 15:15 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-11-05 15:17 - 2013-08-01 15:57 - 00007600 ____C C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2013-11-05 15:08 - 2013-10-13 19:09 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-11-05 13:29 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-02 19:00 - 2013-08-21 22:22 - 00000000 ___DC C:\Users\Daniel\Desktop\spiele
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-02 17:34 - 2013-10-13 18:42 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-11-02 17:34 - 2013-07-31 18:53 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-11-01 17:37 - 2013-11-01 17:18 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:14 - 2013-10-30 15:20 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-31 16:46 - 2013-09-08 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\IMVU
2013-10-31 07:34 - 2013-08-06 00:06 - 00000000 ___DC C:\ProgramData\firebird
2013-10-30 19:07 - 2013-10-30 18:34 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 13:23 - 2013-08-03 15:06 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Dropbox
2013-10-30 13:23 - 2013-07-31 18:47 - 00000000 __RDC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-30 11:47 - 2013-08-03 15:10 - 00000000 __RDC C:\Users\Daniel\Dropbox
2013-10-27 22:09 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\Youcam
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 18:54 - 2013-08-06 01:59 - 00000000 ___DC C:\Users\Public\CyberLink
2013-10-27 17:46 - 2013-08-03 15:32 - 00000000 ___DC C:\Program Files (x86)\Winamp
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:17 - 2013-10-27 14:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:17 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-27 05:56 - 2013-10-26 17:25 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-26 23:47 - 2013-08-01 22:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Utherverse
2013-10-26 21:42 - 2013-07-31 19:56 - 00000000 ___DC C:\ProgramData\CyberLink
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 14:45 - 2013-08-03 15:32 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Winamp
2013-10-25 19:21 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\VirtualDJ
2013-10-25 03:00 - 2013-10-25 02:55 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 18:20 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-24 18:20 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-24 18:20 - 2013-07-31 21:11 - 00003822 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-24 18:20 - 2013-07-31 21:10 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Adobe
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\Help
2013-10-24 16:51 - 2009-07-14 03:34 - 00000634 ____C C:\Windows\win.ini
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-24 00:29 - 2013-08-01 16:01 - 00000870 ____C C:\Users\Public\Desktop\CCleaner.lnk
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:56 - 2013-10-22 02:55 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:55 - 2013-09-20 20:07 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 15:47 - 2013-09-24 21:19 - 00000000 ___DC C:\Program Files (x86)\Anno 1701
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 13:16 - 2013-08-01 16:01 - 00000000 ___DC C:\Program Files\CCleaner
2013-10-20 13:13 - 2013-09-22 10:57 - 00000000 ___DC C:\Windows\pss
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-07-31 21:11 - 00000000 ___DC C:\Program Files (x86)\Java
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:48 - 2013-10-18 23:41 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 23:17 - 2013-10-18 22:43 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 23:17 - 2013-07-31 18:47 - 00000000 ___DC C:\Users\Daniel
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-17 10:49 - 2013-07-31 19:51 - 00002147 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 15:25 - 2013-10-16 15:24 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 10:12 - 2013-08-14 16:22 - 00000952 __SHC C:\ProgramData\KGyGaAvL.sys
2013-10-16 09:24 - 2013-10-16 09:23 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-14 19:40 - 2013-07-31 19:50 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-14 19:40 - 2013-07-31 19:50 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-14 16:25 - 2013-08-02 16:48 - 00001054 ____C C:\Users\Public\Desktop\Corel PaintShop Pro X5.lnk
2013-10-14 16:08 - 2013-07-31 23:44 - 00000000 ___DC C:\ProgramData\Corel
2013-10-14 15:47 - 2013-10-14 15:45 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:38 - 2013-10-14 15:02 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:01 - 2013-08-02 16:50 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Corel PaintShop Pro
2013-10-14 15:01 - 2013-08-01 16:05 - 00000000 ___DC C:\Users\Daniel\Documents\Corel PaintShop Pro
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-14 14:55 - 2013-07-31 23:40 - 00000000 ___DC C:\Program Files (x86)\Corel
2013-10-14 14:26 - 2013-07-31 20:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Cyberlink
2013-10-13 22:04 - 2013-10-13 20:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-13 19:09 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 20:14 - 2009-07-14 04:20 - 00000000 ___DC C:\Program Files\Common Files\Microsoft Shared
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 05:22 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:47 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:37 - 2013-08-05 15:01 - 00000000 ___DC C:\Program Files\Adobe
2013-10-12 12:34 - 2013-07-31 21:15 - 00000000 ___DC C:\Program Files (x86)\Adobe
2013-10-12 12:20 - 2013-08-05 14:29 - 00001985 ____C C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2013-10-12 11:29 - 2013-08-14 16:20 - 00000000 ___DC C:\ProgramData\FLEXnet
2013-10-12 11:29 - 2013-07-31 21:14 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Adobe
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:40 - 2013-09-24 21:28 - 00187641 ____C C:\Windows\DirectX.log
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-12 00:06 - 2013-08-13 17:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\SecondLife
2013-10-11 12:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 10:12 - 2013-08-01 04:15 - 00000000 ___DC C:\Windows\Panther
2013-10-11 10:10 - 2013-09-23 06:08 - 03161280 ____C C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:37 - 2013-10-10 11:03 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-11 00:37 - 2013-10-10 11:03 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-11 00:26 - 2013-08-01 10:11 - 00000000 ___DC C:\Windows\system32\MRT
2013-10-11 00:22 - 2013-07-31 22:46 - 80541720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-11 00:14 - 2013-08-21 15:34 - 00000000 ___DC C:\Program Files (x86)\GameforgeLive
2013-10-11 00:10 - 2013-10-01 15:12 - 00000000 ___DC C:\Program Files (x86)\Rockstar Games
2013-10-11 00:09 - 2013-10-10 11:02 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-11 00:09 - 2013-10-10 11:02 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:02 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:01 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-11 00:09 - 2013-10-01 19:26 - 00000000 ___DC C:\Users\Daniel\Documents\Rockstar Games
2013-10-11 00:01 - 2013-08-02 18:31 - 00000000 ___DC C:\Program Files (x86)\Microsoft Office
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 20:52 - 2013-08-13 09:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\PhoenixViewer
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 __RDC C:\Program Files (x86)\Skype
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 ___DC C:\ProgramData\Skype
2013-10-10 10:48 - 2013-09-24 21:34 - 00088480 ____C C:\Windows\system32\Drivers\atksgt.sys
2013-10-10 10:48 - 2013-09-24 21:34 - 00046400 ____C C:\Windows\system32\Drivers\lirsgt.sys
2013-10-09 23:27 - 2013-09-21 11:22 - 00004096 ____C C:\Users\Public\Documents\00001119.LCS
2013-10-09 19:22 - 2013-08-02 16:55 - 00012288 ____C C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-08 09:48 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\system32\NDF
2013-10-08 09:32 - 2013-10-06 12:38 - 00000000 ___DC C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-10-08 06:50 - 2013-10-20 00:26 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 06:46 - 2013-10-20 00:26 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 06:46 - 2013-10-20 00:26 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 06:46 - 2013-10-20 00:26 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe

Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe
C:\Users\Daniel\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Daniel\AppData\Local\Temp\comver.dll
C:\Users\Daniel\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7270007.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\i4jdel1.exe
C:\Users\Daniel\AppData\Local\Temp\installerdll26202707.dll
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Daniel\AppData\Local\Temp\MP3_Launcher_1_27_0_0.exe
C:\Users\Daniel\AppData\Local\Temp\ProtectorPackage.exe
C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe
C:\Users\Daniel\AppData\Local\Temp\reieyn3k.dll
C:\Users\Daniel\AppData\Local\Temp\ResetDevice.exe
C:\Users\Daniel\AppData\Local\Temp\SIntf16.dll
C:\Users\Daniel\AppData\Local\Temp\SIntf32.dll
C:\Users\Daniel\AppData\Local\Temp\SIntfNT.dll
C:\Users\Daniel\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Daniel\AppData\Local\Temp\UninstallEADM.dll
C:\Users\Daniel\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Daniel\AppData\Local\Temp\_is22F5.exe
C:\Users\Daniel\AppData\Local\Temp\_is3432.exe
C:\Users\Daniel\AppData\Local\Temp\_is9C38.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-01 18:21

==================== End Of Log ============================

--- --- ---


und hier der addition log

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Daniel at 2013-11-07 15:50:46
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

4shared Desktop (x32)
64 Bit HP CIO Components Installer (Version: 4.2.1)
AC3Filter 2.6.0b (x32 Version: 2.6.0b)
AChat 1.17 high detail textures and additional music (x32)
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.2.443)
Adobe Acrobat 9 Pro - English, Français, Deutsch (x32 Version: 9.5.5)
Adobe Acrobat 9.5.5 - CPSID_83708 (x32)
Adobe AIR (x32 Version: 3.8.0.870)
Adobe Anchor Service CS4 (x32 Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Asset Services CS4 (x32 Version: 4)
Adobe Bridge CS4 (x32 Version: 3)
Adobe CMaps CS4 (x32 Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0)
Adobe Color EU Recommended Settings CS4 (x32 Version: 2.0)
Adobe Color JA Extra Settings CS4 (x32 Version: 2.0)
Adobe Color NA Extra Settings CS4 (x32 Version: 2.0)
Adobe Color Video Profiles CS CS4 (x32 Version: 2.0)
Adobe Creative Suite 4 Design Premium (x32 Version: 4.0)
Adobe CSI CS4 (x32 Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (x32 Version: 2.0)
Adobe Device Central CS4 (x32 Version: 2)
Adobe Dreamweaver CS4 (x32 Version: 10.0)
Adobe Drive CS4 (x32 Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (x32 Version: 1)
Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0)
Adobe Extension Manager CS4 (x32 Version: 2.0)
Adobe Fireworks CS4 (x32 Version: 10.0)
Adobe Flash CS4 (x32 Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI others (x32 Version: 3.0)
Adobe Flash CS4 STI-other (x32 Version: 10.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Fonts All (x32 Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS4 (x32 Version: 14.0)
Adobe InDesign CS4 (x32 Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (x32 Version: 6.0)
Adobe InDesign CS4 Common Base Files (x32 Version: 6.0)
Adobe InDesign CS4 Icon Handler (x32 Version: 6.0)
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0)
Adobe Linguistics CS4 (x32 Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (x32 Version: 1.0)
Adobe Media Encoder CS4 Importer (x32 Version: 1.0)
Adobe Media Player (x32 Version: 0.0.0)
Adobe Media Player (x32 Version: 1.1)
Adobe Output Module (x32 Version: 2.0)
Adobe PDF Library Files CS4 (x32 Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (x32 Version: 11.0)
Adobe Photoshop CS4 Support (x32 Version: 11.0)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Adobe Search for Help (x32 Version: 1.0)
Adobe Service Manager Extension (x32 Version: 1.0)
Adobe Setup (x32 Version: 2.0)
Adobe SGM CS4 (x32 Version: 3.0)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.4.144)
Adobe SING CS4 (x32 Version: 2.0)
Adobe Type Support CS4 (x32 Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (x32 Version: 6.0.0)
Adobe Version Cue CS4 Server (x32 Version: 4.0)
Adobe WinSoft Linguistics Plugin (x32 Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (x32 Version: 2.0)
AdobeColorCommonSetCMYK (x32 Version: 2.0)
AdobeColorCommonSetRGB (x32 Version: 2.0)
Age of Wonders Shadow Magic (x32)
Aimersoft DRM Media Converter(Build 1.4.7.2) (x32)
AION Free-to-Play (x32)
ANNO 1503 (x32)
Anno 1602 (x32)
Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03)
Anno 1701 (x32 Version: 1.04)
AntiToolbar (Version: 1.0.0.5)
Anti-Twin (Installation 07.08.2013) (x32)
Ashampoo Burning Studio 12 v.12.0.5 (x32 Version: 12.0.5)
Ashampoo Photo Commander (x32 Version: 8.3.2)
Ashampoo Photo Optimizer (x32 Version: 3.12.0)
Ashampoo Snap (x32 Version: 3.4.1)
BufferChm (x32 Version: 100.0.170.000)
Caesar 3 (x32)
Caesar IV (x32 Version: 1.2)
CCleaner (Version: 4.06)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
CloneDVD 6.0.0.1 (x32)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
Connect (x32 Version: 1.0.0.1)
Contents (x32 Version: 15.0.0.258)
Corel KPT Collection (x32 Version: 1.0.0.46)
Corel KPT Collection (x32 Version: 1.00.0000)
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39)
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66)
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41)
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40)
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000)
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8)
Corel PaintShop Pro X6 (x32 Version: 16.0.0.113)
Corel Shell Extension - 64Bit (Version: 14.0)
Corel VideoStudio Pro X5 (x32 Version: 15.0.0.258)
CorelDRAW Essentials 4 - Content (x32 Version: 4.0)
CorelDRAW Essentials 4 - Draw (x32 Version: 4.0)
CorelDRAW Essentials 4 - Extra Content (x32 Version: 4.0)
CorelDRAW Essentials 4 - Extra Content (x32)
CorelDRAW Essentials 4 - Filters (x32 Version: 4.0)
CorelDRAW Essentials 4 - ICA (x32 Version: 4.0)
CorelDRAW Essentials 4 - IPM - No VBA (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang BR (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang DE (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang EN (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang ES (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang FR (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang IT (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang NL (x32 Version: 4.0)
CorelDRAW Essentials 4 - PHOTO-PAINT (x32 Version: 4.0)
CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: 1.1)
CorelDRAW Essentials 4 - Windows Shell Extension (x32)
CorelDRAW Essentials 4 (x32 Version: 4.0)
CorelDRAW Essentials 4 (x32)
CustomerResearchQFolder (x32 Version: 1.00.0000)
CyberLink LabelPrint (x32 Version: 2.5.3418)
CyberLink MediaShow (x32 Version: 5.0.1410a)
CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a)
CyberLink PhotoNow (x32 Version: 1.1.0.6904)
CyberLink Power2Go (x32 Version: 6.1.3802)
CyberLink PowerDirector (x32 Version: 8.0.3224a)
CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306)
CyberLink PowerProducer (x32 Version: 5.0.2.2429)
CyberLink YouCam (x32 Version: 3.1.3428)
Darkest of Days (x32 Version: 1.0)
Delete Virtual-Mate Launcher (x32 Version: 1.0.0)
DesignPro 5 (x32 Version: 5.5.708)
DeviceDiscovery (x32 Version: 100.0.190.000)
DeviceManagementQFolder (x32 Version: 1.00.0000)
Die Siedler III Gold Edition (x32)
Die Sims™ 3 (x32 Version: 1.63.5)
Die Sims™ 3 70er, 80er & 90er Accessoires (x32 Version: 17.0.77)
Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55)
Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48)
Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96)
Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44)
Die Sims™ 3 Inselparadies (x32 Version: 19.0.101)
Die Sims™ 3 Into the Future (x32 Version: 21.0.150)
Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136)
Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62)
Die Sims™ 3 Late Night (x32 Version: 6.0.81)
Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38)
Die Sims™ 3 Movie-Accessoires (x32 Version: 20.0.53)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86)
Die Sims™ 3 Showtime (x32 Version: 12.0.273)
Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73)
Die Sims™ 3 Supernatural (x32 Version: 15.0.135)
Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87)
Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84)
Die Sims™ 3 Wildes Studentenleben (x32 Version: 18.0.126)
Die*Sims™*3 Erstelle einen Sim (x32 Version: 1.0.26)
DivX-Setup (x32 Version: 2.6.1.84)
DivxToDVD 0.5.2b (x32 Version: 0.5.2b)
Drakensang (x32)
Dropbox (HKCU Version: 2.0.26)
DVDFab 9.0.6.3 (09/09/2013) (x32)
Firebird 2.5.0.26074 (Win32) (x32 Version: 2.5.0.26074)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0)
Free Audio Dub version 1.7.9.908 (x32 Version: 1.7.9.908)
Free AVI Video Converter version 5.0.28.827 (x32 Version: 5.0.28.827)
FreeRIP MP3 Converter 4.3 (x32 Version: 4.3)
Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0)
GameSpy Arcade (x32)
Ghost Recon Online (EU) (HKCU Version: 1.34.1166.2)
Google Chrome (x32 Version: 30.0.1599.101)
Google Update Helper (x32 Version: 1.3.21.165)
Haali Media Splitter (x32)
HP Color LaserJet CM1312 MFP Series 5.1 (Version: 5.1)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
hppCLJCM1312 (x32 Version: 005.001.00142)
hppFaxDrvCM1312 (x32 Version: 005.000.00001)
hppFaxUtilityCM1312 (x32 Version: 005.001.00137)
hppFonts (x32 Version: 001.001.00061)
hppManualsCM1312 (x32 Version: 005.001.00145)
hppQFolderCM1312 (x32 Version: 1.00.0000)
hppScanToCM1312 (x32 Version: 005.001.00140)
hppSendFaxCM1312 (x32 Version: 005.000.00001)
hppusgCM1312 (x32 Version: 1.1.0.1)
ICA (x32 Version: 15.0.0.183)
ICA (x32 Version: 15.0.0.258)
ICA (x32 Version: 16.0.0.113)
IMVU Avatar Chat Software (HKCU)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2827)
IPM_PSP_COM (x32 Version: 15.0.0.183)
IPM_PSP_COM (x32 Version: 16.0.0.113)
IPM_PSP_COM64 (Version: 16.0.0.113)
IPM_VS_Pro (x32 Version: 15.0)
ISCOM (x32 Version: 15.0.0.258)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
King Arthur - The Role-playing Wargame (x32)
kuler (x32 Version: 2.0)
LastChaosGER (x32 Version: 1.00.000)
Launch Manager (x32 Version: 1.5.1.2)
Magic ISO Maker v5.5 (build 0272) (x32)
MagicDisc 2.7.106 (x32)
MAGIX Burn routines (Version: 11.0.0.233)
MAGIX Content und Soundpools (x32 Version: 1.0.0.0)
MAGIX Goya burnR (MSI) (Version: 4.3.2.0)
MAGIX Goya burnR (MSI) (x32 Version: 4.3.2.0)
MAGIX Independence Libraries Common Files (Version: 3.1.0.0)
MAGIX Independence Libraries Common Files (x32 Version: 3.1.0.0)
MAGIX Independence Pro 3.1 RTAS-Plugins (Version: 3.1.0.0)
MAGIX Independence Pro 3.1 RTAS-Plugins (x32 Version: 3.1.0.0)
MAGIX Independence Pro 3.1 VST-Plugins (Version: 3.1.0.0)
MAGIX Independence Pro 3.1 VST-Plugins (x32 Version: 3.1.0.0)
MAGIX Independence Pro Software Suite 3.1 (Version: 3.1.0.69)
MAGIX Independence Pro Software Suite 3.1 (x32 Version: 3.1.0.69)
MAGIX Music Maker 2013 Premium (Demosongs) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Demosongs) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Einführungsvideos) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Einführungsvideos) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium (Visuals) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Visuals) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (x32 Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium Update (Version: 19.0.6.58)
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0)
MAGIX Music Maker Hip Hop Edition 5 (Version: 19.0.5.57)
MAGIX Music Maker Hip Hop Edition 5 (x32 Version: 19.0.5.57)
MAGIX Music Maker Hip Hop Edition 5 Trial Soundpools (Version: 1.0.0.0)
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (Version: 17.0.2.6)
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (x32 Version: 17.0.2.6)
MAGIX Music Maker Techno Edition 5 (Version: 19.0.5.57)
MAGIX Music Maker Techno Edition 5 (x32 Version: 19.0.5.57)
MAGIX Music Maker Techno Edition 5 Trial Soundpools (Version: 1.0.0.0)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 100.0.170.000)
Mass Effect (x32 Version: 1.00)
Medion Home Cinema (x32 Version: 8.0.2213)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Mission Pack (x32)
MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MySQL Connector/ODBC 3.51 (x32 Version: 3.51.12)
NVIDIA PhysX (x32 Version: 9.09.0814)
OpenAL (x32)
Opera 12.15 (x32 Version: 12.15.1748)
Origin (x32 Version: 9.3.10.4710)
PDF Settings CS4 (x32 Version: 9.0)
Personal ID (x32 Version: 1.8.5.202)
Phoenix Viewer 1.6.0.1691 (x32)
Photoshop Camera Raw (x32 Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Pixel Bender Toolkit (x32 Version: 1.0)
PlanetSide 2 (HKCU Version: 1.0.3.183)
Power MP3 WMA Converter 2011, (ver 6.1) (x32 Version: 6.1)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.13)
PSPPContent (x32 Version: 15.3.0.8)
PSPPContent (x32 Version: 16.0.0.113)
PSPPHelp (x32 Version: 15.0.0.183)
PSPPHelp (x32 Version: 16.1.0.18)
PSPPro64 (Version: 15.0.0.183)
PSPPro64 (Version: 16.0.0.113)
PunkBuster Services (x32 Version: 0.993)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6237)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30121)
REALTEK Wireless LAN Driver (x32 Version: 1.00.0180)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0)
SAM3 (remove only) (x32)
Samplitude Music Studio 2013 (Demoprojekte) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Demoprojekte) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Independence) (Version: 1.1.0.0)
Samplitude Music Studio 2013 (Independence) (x32 Version: 1.1.0.0)
Samplitude Music Studio 2013 (Objekt-Synthesizer) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Objekt-Synthesizer) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Version: 19.0.0.15)
Samplitude Music Studio 2013 (x32 Version: 19.0.0.15)
Samplitude Music Studio 2013 Soundpools (Version: 1.0.0.0)
SecondLifeViewer (remove only) (x32)
Secret City (x32 Version: 1.9.4152)
Setup (x32 Version: 15.0.0.183)
Setup (x32 Version: 15.0.0.258)
Setup (x32 Version: 16.0.0.113)
Share (x32 Version: 15.0.0.258)
Share64 (Version: 15.0.0.258)
SHOUTcast Source DSP Plug-in v2 (x32 Version: 2.3.2)
Sierra-Dienstprogramme (x32)
Skype™ 6.9 (x32 Version: 6.9.106)
SmartSound Common Data (x32 Version: 1.1.0)
SmartSound Quicktracks 5 (x32 Version: 5.1.6)
Steam (x32 Version: 1.0.0.0)
Suite Shared Configuration CS4 (x32 Version: 1.0)
swMSM (x32 Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 14.0.19.0)
System Requirements Lab for Intel (x32 Version: 4.5.15.0)
TeamSpeak 3 Client (HKCU Version: 3.0.13)
TERA (x32 Version: 7)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
TrayApp (x32 Version: 100.0.170.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Virtual DJ Pro Full - Atomix Productions (x32)
Vita 2 (Version: 1.0.0.0)
Vita 2 Zusatzcontent (Version: 1.0.0.0)
Vita Bass Machine (Version: 1.0.0.0)
Vita Rock Drums (Version: 1.0.0.0)
Vita String Ensemble (Version: 1.0.0.0)
Vita World Percussion (Version: 1.0.0.0)
VLC media player 2.0.8 (Version: 2.0.8)
VSClassic (x32 Version: 15.0.0.258)
VSHelp (x32 Version: 15.0.0.258)
VSPro (x32 Version: 15.0.0.258)
WebReg (x32 Version: 100.0.170.000)
Winamp (x32 Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Media Encoder 9 Series (x32 Version: 9.00.2980)
Windows Media Encoder 9 Series (x32)
WinRAR 5.00 (64-Bit) (Version: 5.00.0)
Worms Armageddon (x32)
Worms World Party (x32)
X10 Hardware(TM) (x32)

==================== Restore Points  =========================

06-11-2013 15:05:16 Installed Java 7 Update 45 (64-bit)

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-08-02 15:12 - 00000849 ___AC C:\Windows\system32\Drivers\etc\hosts
192.168.2.100 NPI1BB733

==================== Scheduled Tasks (whitelisted) =============

Task: {0052B3E0-CD48-4645-9B05-2DD2D5FE59F2} - System32\Tasks\{7F2BEF3C-1702-4CE3-92A5-31BBBA30A504} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {0146E4C2-13DC-4368-A6B7-D5CF252D6997} - System32\Tasks\{EEEDB95D-08F3-442A-8D8B-D3DA84E659E3} => E:\AUTORUN.EXE
Task: {05463694-75B9-4BE3-9B3B-800D10AB67E5} - System32\Tasks\{92A80300-B86A-4486-83DF-40A2210AD209} => C:\Voelker2\DieVölker2\bin\Game.exe
Task: {06DEDCB4-F84F-4B5C-8B9B-F240DDFF90F2} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2013-08-01] (Microsoft Corporation)
Task: {10CB193C-53C1-4E38-BC3B-8BE0F0EFBA30} - System32\Tasks\{0FF87F05-F93F-4EA6-BB4C-42AC41C141F3} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {141DAE6E-AB19-4698-A390-AA3577138437} - System32\Tasks\{94C030CB-4D91-45C1-A34E-BBA10E012375} => E:\S2\SETUP.EXE
Task: {146E7991-4825-4936-A698-6A2A9ABCB104} - System32\Tasks\{3C36117E-8926-4783-AC4C-D1B8C38F2D02} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {158F82B5-9D27-41D4-9C70-42B888C7C636} - System32\Tasks\{40CF2673-31FE-42B2-B5D6-9EDA7CA7E074} => E:\S2\SETUP.EXE
Task: {15EBF901-034E-4560-86AD-430162A3F85F} - System32\Tasks\{6D05EFDD-B539-4AA5-AA7C-3C3F5EA8B7E7} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {16685128-43F7-4FEB-8EF9-8ED19E50FAB3} - System32\Tasks\{BDEFC5EB-FF3E-4DB9-922F-18F92A8F9501} => E:\S2\SETUP.EXE
Task: {182BD8E5-8F56-4489-B03E-752E05F8B240} - System32\Tasks\{CDA55D36-8DF0-41E4-B91F-A867A295CA40} => E:\S2\SETUP.EXE
Task: {1F9EF73A-547A-499D-81A8-38F5BAAB9D90} - System32\Tasks\{1FB1189B-4A13-4061-8C74-1464D7BFBABF} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {21712D36-1001-44CB-854A-5AD64B1DC146} - System32\Tasks\{BA3F1772-A7D2-4B5A-A09C-0209BB7D8008} => E:\S2\SETUP.EXE
Task: {2275B0EB-3BB1-4D92-AAA9-9E3AF4E64338} - System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {23FC5B23-2D5F-41BB-8197-E5BF90F1094C} - System32\Tasks\{68D46493-E0E4-4139-9E3D-DE0764CB9EA8} => E:\AUTORUN.EXE
Task: {256AB0F1-34E6-44DD-8476-F7FCA8DAAA9B} - System32\Tasks\{966F5682-3102-46EB-9C86-3634FFFE6CFA} => E:\S2\SETUP.EXE
Task: {29CE8A34-DC14-442B-8626-4D134A82C9AE} - System32\Tasks\{E856EACC-A5FB-412B-8CFA-3BB71A8C8E08} => E:\S2\SETUP.EXE
Task: {2B0CD943-0873-489B-8C70-85C6370771A3} - System32\Tasks\{12AE0E5B-084A-4433-90FF-9E76E054AACB} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {2B1FFE5E-812A-4AEC-8869-70FAAAC46EE2} - System32\Tasks\{8FB71093-FDC3-4660-9BA9-AB685F171D45} => C:\Program Files (x86)\Anno 1701\Anno1701.exe [2007-10-20] (Related Designs Software GmbH)
Task: {2BBFF583-2992-496F-BC5F-E4CFA4144CC7} - System32\Tasks\{AED448DE-9E65-4A47-8CED-BCACCE365CB7} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {316BBC71-9744-421E-B08F-4824A90A29EA} - System32\Tasks\{37FCF798-62A0-4DDD-8915-98DF52D67371} => C:\Users\Daniel\Desktop\MassEffect_BDtS_G_a.exe
Task: {35440900-5B0D-45C6-9CA3-1D1630231902} - System32\Tasks\{A1F70949-7DB6-4A23-8B76-293576F1B899} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {40F39DB0-F75F-4F8F-8AA5-A7327A1E290D} - System32\Tasks\{AE5B5A87-81B2-42A9-9A74-550525F4940F} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {41A87A6B-C582-4F2D-8597-A723964CC71A} - System32\Tasks\{5D0B6982-DE4D-4CC0-AB2B-98754F07700B} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {451D621F-6FFD-4089-93FE-270A9D2DE6DA} - System32\Tasks\{E2B047D4-D8BD-4693-B5B3-010EF3D97A56} => E:\bhvstart.exe
Task: {47DF6057-A1FD-4A77-A813-3F691D2DDE1F} - System32\Tasks\{810EBF1A-8F17-441C-B563-3C43E33C03CD} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {48A3C185-9AC2-4F2F-940D-DA73CE675CE4} - System32\Tasks\{073A5D00-C4F9-4990-A885-8D366629D006} => E:\S2\SETUP.EXE
Task: {5E3F78E3-D239-4E26-B09A-1E1D02A3A0F4} - System32\Tasks\{D2222B24-F51D-4DBD-B431-AC065B5CBCA9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {6AAE623A-C236-49D2-BF16-6399AE2B7AE2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-31] (Google Inc.)
Task: {6BD68BC3-51C8-411C-AFA6-8F6729835575} - System32\Tasks\{131AF74A-19DF-443F-B4C1-82A8AA55497A} => E:\S2\SETUP.EXE
Task: {7A4636B7-F05B-4249-8AB0-DAFF11C962A7} - System32\Tasks\{B515B6F0-4FFF-4CBA-893E-D3FCA3106B64} => E:\S2\SETUP.EXE
Task: {7C9D8C03-6A35-487F-9016-E7A5E53BA833} - System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {7EF75918-6B2B-4300-888A-ED73DEBECBBF} - System32\Tasks\{3BE362E2-E75B-429E-9FC4-7B3B8D11B963} => E:\S2\SETUP.EXE
Task: {805D9E42-8317-4C78-82F6-946B5DE8A0C7} - System32\Tasks\{678365FC-379B-4E24-8568-D579CE2F2C7E} => E:\S2\SETUP.EXE
Task: {8C335720-465F-4ACF-97C0-6E46FA18E7E9} - System32\Tasks\{F15A6F01-F619-4817-90FB-C09F19CB63F5} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {91F56EAD-6C3B-436A-A540-1B3C95D9A052} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-24] (Adobe Systems Incorporated)
Task: {9431E549-F644-4FE1-98C5-C72AC9CD37ED} - System32\Tasks\{652A2BC8-55C4-41C0-8B47-06EA583CE2D3} => E:\S2\SETUP.EXE
Task: {953A719E-FDEC-4852-BCC9-1459D68B3BC4} - System32\Tasks\{FBB1652A-75F8-4D32-BA6C-0BD7071B4B4A} => E:\S2\SETUP.EXE
Task: {9C100C66-5F10-4548-8B69-E3CDB0BF606D} - System32\Tasks\{4994E248-B0AD-46CA-AF2E-310612827F2E} => E:\S2\SETUP.EXE
Task: {9E16B815-46D6-4F9B-A140-C810E8BD3C46} - System32\Tasks\{87BD9F31-A0C4-47D4-83F6-B3EEAB2B4AEB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {A4EAE39D-C22A-4B89-9758-6DFFD52E1476} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-31] (Google Inc.)
Task: {AB9A30AF-E579-445E-A157-A50D32A862FA} - System32\Tasks\{1BC5009A-C623-4DA0-9118-CADA3959EEAA} => E:\S2\SETUP.EXE
Task: {AC3B6A3B-E516-41A0-BE7B-AE74D6F05EE5} - System32\Tasks\{26F8FEE5-EBEF-4BF2-9960-B3F3C8A758EC} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {ADCDF35A-0D81-4315-B30C-9FAC42DDAE19} - System32\Tasks\{FBFC2A81-70A5-4C34-AD06-B257CD752FE9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {B0ADE302-1717-472E-912A-21887DE485B5} - System32\Tasks\{C5EB8D0E-8B8B-43C8-8016-A6FCC462946D} => C:\Program Files (x86)\CloneDVD6\MainApp.EXE [2012-11-27] (Aviosoft.)
Task: {B48CDE2F-2934-4D81-BA37-A4CC53492B70} - System32\Tasks\{7126DAF6-E7A6-4025-B30F-0E113A7B46D4} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {B6184494-F268-4AA5-A390-4FC97BCD71CE} - System32\Tasks\{AC7D1521-F5AE-49AD-9106-6809CBEB4215} => E:\S2\SETUP.EXE
Task: {BCEBC503-CF3B-45A5-9650-966FF580E545} - System32\Tasks\{B5DF1DB1-C0F9-480C-9281-BB0E6C2EB486} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {C191FDC0-4CF1-4F8F-9E82-10875ABED458} - System32\Tasks\{69044440-C839-428E-8079-6D3979B6842D} => E:\S2\SETUP.EXE
Task: {C409ADF5-FF12-4451-B6D1-ABF4D1DC6510} - System32\Tasks\{41DDBE48-43A3-48E0-9048-FF8D6F08DF4F} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {C67A266A-5DC1-41D6-BADD-BC0F4B90CCA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {CD11ECCA-157C-43CA-B7A7-35C95D3EB1E0} - System32\Tasks\{55B58783-E133-4F90-9909-7A0BA16C1073} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {CFE9CA76-1416-4888-BDB0-CF30D54F1E41} - System32\Tasks\{BE174E91-202D-4B20-8B77-A9509C30AF97} => E:\S2\SETUP.EXE
Task: {D24DA4B0-1A08-4A6F-92AB-842D16821219} - System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {D5475704-31C1-4F9A-9F96-87742F55F1B8} - System32\Tasks\{396AB30D-E0FA-42C6-853F-325CA099A4CA} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {DAA47877-F275-4DC4-8719-853FA4CA95EE} - System32\Tasks\{663B9866-54C7-46F1-BAAF-0F7203E79B3B} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {E057A7C3-A541-43F2-9106-667F7102D12D} - System32\Tasks\{3B22FD6B-6978-4EC1-867B-3AEAC82D7C80} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {E062A614-05FF-4598-85EE-06AD7420CC8B} - System32\Tasks\{ED0A83FB-4A12-4E5A-B587-37357929ACB1} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {E92D482A-975D-487D-BF28-EAFEB9F3B2A1} - System32\Tasks\{DCB5CC94-301F-46D1-9D76-95232ED99F04} => E:\S2\SETUP.EXE
Task: {E9D3F432-A90C-4B1A-8088-6A66F9FF9253} - System32\Tasks\{0C327DCE-02DB-495E-B0EE-43000B4098DE} => C:\BlueByte\Siedler3\s3.exe [2000-02-15] (Blue Byte )
Task: {EC390F5C-2E7E-4509-A5AC-1586E03077EB} - System32\Tasks\{13AC6F75-921C-4FC2-9162-219DC0C4B4EB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {F423C561-80AB-48ED-B98F-22F5E35F9576} - System32\Tasks\{50E458ED-E7F4-4DB3-A9B8-E8FEBE776D73} => E:\DieVoelkerGE.exe
Task: {FA534E6C-82BF-413F-A76C-44FAF30F4156} - System32\Tasks\{A2C44D26-5E7A-4773-B378-D2EAB102F3DB} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-03-14 17:28 - 2013-03-14 17:28 - 00653824 ____C () C:\Program Files (x86)\4shared Desktop\CMenu64.dll
2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2009-11-02 13:20 - 2009-11-02 13:20 - 00619816 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 13:23 - 2009-11-02 13:23 - 00013096 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2013-10-15 13:34 - 2009-02-27 15:39 - 00019968 ____C () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2013-08-29 01:25 - 2013-08-29 01:25 - 00100688 ____C () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/06/2013 08:37:42 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: mplayer2.exe, Version: 6.0.2.902, Zeitstempel: 0x35ed5db7
Name des fehlerhaften Moduls: mplayer2.exe, Version: 6.0.2.902, Zeitstempel: 0x35ed5db7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000075a3
ID des fehlerhaften Prozesses: 0x7c0
Startzeit der fehlerhaften Anwendung: 0xmplayer2.exe0
Pfad der fehlerhaften Anwendung: mplayer2.exe1
Pfad des fehlerhaften Moduls: mplayer2.exe2
Berichtskennung: mplayer2.exe3

Error: (11/03/2013 07:57:18 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Sims3LauncherW.exe, Version: 0.2.0.205, Zeitstempel: 0x525c3279
Name des fehlerhaften Moduls: TSLHost.dll, Version: 0.2.0.205, Zeitstempel: 0x525c327f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0023c33e
ID des fehlerhaften Prozesses: 0x5d534
Startzeit der fehlerhaften Anwendung: 0xSims3LauncherW.exe0
Pfad der fehlerhaften Anwendung: Sims3LauncherW.exe1
Pfad des fehlerhaften Moduls: Sims3LauncherW.exe2
Berichtskennung: Sims3LauncherW.exe3

Error: (11/03/2013 07:57:09 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Sims3LauncherW.exe, Version: 0.2.0.205, Zeitstempel: 0x525c3279
Name des fehlerhaften Moduls: TSLHost.dll, Version: 0.2.0.205, Zeitstempel: 0x525c327f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0023c33e
ID des fehlerhaften Prozesses: 0x%9
Startzeit der fehlerhaften Anwendung: 0xSims3LauncherW.exe0
Pfad der fehlerhaften Anwendung: Sims3LauncherW.exe1
Pfad des fehlerhaften Moduls: Sims3LauncherW.exe2
Berichtskennung: Sims3LauncherW.exe3

Error: (10/26/2013 11:46:45 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Utherverse.exe, Version: 0.0.0.0, Zeitstempel: 0x51dc6f53
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea8e7
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000ce753
ID des fehlerhaften Prozesses: 0x6dc
Startzeit der fehlerhaften Anwendung: 0xUtherverse.exe0
Pfad der fehlerhaften Anwendung: Utherverse.exe1
Pfad des fehlerhaften Moduls: Utherverse.exe2
Berichtskennung: Utherverse.exe3

Error: (10/26/2013 05:29:04 PM) (Source: Application Hang) (User: )
Description: Programm BITZIPPER.exe, Version 2013.13.4.16 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d610

Startzeit: 01ced268162a4205

Endzeit: 22

Anwendungspfad: C:\Program Files (x86)\BitZipper\BITZIPPER.exe

Berichts-ID:

Error: (10/26/2013 02:45:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: winamp.exe, Version: 5.6.3.3235, Zeitstempel: 0x4fec7b3e
Name des fehlerhaften Moduls: winamp.exe, Version: 5.6.3.3235, Zeitstempel: 0x4fec7b3e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000403bf
ID des fehlerhaften Prozesses: 0x179c
Startzeit der fehlerhaften Anwendung: 0xwinamp.exe0
Pfad der fehlerhaften Anwendung: winamp.exe1
Pfad des fehlerhaften Moduls: winamp.exe2
Berichtskennung: winamp.exe3

Error: (10/25/2013 07:27:37 PM) (Source: Application Hang) (User: )
Description: Programm MusicMaker.exe, Version 19.0.6.58 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1310

Startzeit: 01ced1af0e468ae1

Endzeit: 24

Anwendungspfad: C:\Program Files (x86)\MAGIX\Music Maker 2013 Premium\MusicMaker.exe

Berichts-ID:

Error: (10/25/2013 07:26:16 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/25/2013 07:26:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/25/2013 05:14:08 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: PlanetSide2.exe, Version: 0.0.0.0, Zeitstempel: 0x525d7846
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18229, Zeitstempel: 0x51fb1116
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x8d8
Startzeit der fehlerhaften Anwendung: 0xPlanetSide2.exe0
Pfad der fehlerhaften Anwendung: PlanetSide2.exe1
Pfad des fehlerhaften Moduls: PlanetSide2.exe2
Berichtskennung: PlanetSide2.exe3


System errors:
=============
Error: (11/07/2013 02:53:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HP CUE DeviceDiscovery Service" wurde nicht richtig gestartet.

Error: (11/07/2013 02:51:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BuddyVM" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (11/07/2013 02:51:38 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/07/2013 02:51:23 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (11/07/2013 01:23:11 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (11/07/2013 01:22:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HP CUE DeviceDiscovery Service" wurde nicht richtig gestartet.

Error: (11/07/2013 01:21:35 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (11/07/2013 01:21:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BuddyVM" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (11/07/2013 01:21:09 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/06/2013 08:48:37 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{7449BC45-80A8-448C-A86B-C4264AB93BDD}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.


Microsoft Office Sessions:
=========================
Error: (11/06/2013 08:37:42 AM) (Source: Application Error)(User: )
Description: mplayer2.exe6.0.2.90235ed5db7mplayer2.exe6.0.2.90235ed5db7c0000005000075a37c001cedac310b246e6C:\Program Files (x86)\Windows Media Player\mplayer2.exeC:\Program Files (x86)\Windows Media Player\mplayer2.exe51299a68-46b6-11e3-9f90-00262dc36228

Error: (11/03/2013 07:57:18 PM) (Source: Application Error)(User: )
Description: Sims3LauncherW.exe0.2.0.205525c3279TSLHost.dll0.2.0.205525c327fc00000050023c33e5d53401ced8a68666044aC:\Program Files (x86)\Electronic Arts\Die Sims 3\Game\Bin\Sims3LauncherW.exeC:\Program Files (x86)\Electronic Arts\Die Sims 3\Game\Bin\TSLHost.dllc26a8408-44b9-11e3-b9a2-00262dc36228

Error: (11/03/2013 07:57:09 PM) (Source: Application Error)(User: )
Description: Sims3LauncherW.exe0.2.0.205525c3279TSLHost.dll0.2.0.205525c327fc00000050023c33e

Error: (10/26/2013 11:46:45 PM) (Source: Application Error)(User: )
Description: Utherverse.exe0.0.0.051dc6f53ntdll.dll6.1.7601.18247521ea8e7c0000374000ce7536dc01ced25fa9959c42C:\Program Files (x86)\SecretCity 3DChat\Utherverse VWW Client\Utherverse.exeC:\Windows\SysWOW64\ntdll.dll7d3ee1ba-3e90-11e3-8354-00262dc36228

Error: (10/26/2013 05:29:04 PM) (Source: Application Hang)(User: )
Description: BITZIPPER.exe2013.13.4.16d61001ced268162a420522C:\Program Files (x86)\BitZipper\BITZIPPER.exe

Error: (10/26/2013 02:45:26 PM) (Source: Application Error)(User: )
Description: winamp.exe5.6.3.32354fec7b3ewinamp.exe5.6.3.32354fec7b3ec0000005000403bf179c01ced2519209053fC:\Program Files (x86)\Winamp\winamp.exeC:\Program Files (x86)\Winamp\winamp.exede351441-3e44-11e3-8354-00262dc36228

Error: (10/25/2013 07:27:37 PM) (Source: Application Hang)(User: )
Description: MusicMaker.exe19.0.6.58131001ced1af0e468ae124C:\Program Files (x86)\MAGIX\Music Maker 2013 Premium\MusicMaker.exe

Error: (10/25/2013 07:26:16 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe

Error: (10/25/2013 07:26:15 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Adobe\Acrobat 9.0\Designer 8.2\FormDesigner.exe

Error: (10/25/2013 05:14:08 AM) (Source: Application Error)(User: )
Description: PlanetSide2.exe0.0.0.0525d7846KERNELBASE.dll6.1.7601.1822951fb1116c00000050000c41f8d801ced125546e616bC:\Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2 PSG\PlanetSide2.exeC:\Windows\syswow64\KERNELBASE.dlle441d545-3d2b-11e3-a660-00262dc36228


CodeIntegrity Errors:
===================================
  Date: 2013-11-07 14:51:38.602
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-07 14:51:38.452
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-07 13:21:09.982
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-07 13:21:09.882
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 11:45:15.558
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 11:45:15.465
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 11:18:36.388
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 11:18:36.264
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 06:40:06.998
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-06 06:40:06.808
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 49%
Total physical RAM: 3893.49 MB
Available physical RAM: 1960.72 MB
Total Pagefile: 7785.16 MB
Available Pagefile: 5686.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:546.25 GB) (Free:119.55 GB) NTFS
Drive d: (Recover) (Fixed) (Total:48.83 GB) (Free:6.12 GB) NTFS
Drive g: (EOS_DIGITAL) (Removable) (Total:3.68 GB) (Free:3.66 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=546 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=49 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1023 MB) - (Type=12)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================


schrauber 08.11.2013 09:55

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

saufbiene 08.11.2013 12:10

hier der log von mbam

Code:

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.11.08.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Daniel :: MEDION [Administrator]

Schutz: Aktiviert

08.11.2013 10:57:35
mbam-log-2013-11-08 (10-57-35).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 251490
Laufzeit: 16 Minute(n), 20 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

hier der log von adw

Code:

# AdwCleaner v3.011 - Bericht erstellt am 08/11/2013 um 11:19:33
# Updated 03/11/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Daniel - MEDION
# Gestartet von : C:\Users\Daniel\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Google Chrome v30.0.1599.101

[ Datei : C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [792 octets] - [08/11/2013 11:17:35]
AdwCleaner[S0].txt - [714 octets] - [08/11/2013 11:19:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [773 octets] ##########

der log von jrt

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Daniel on 08.11.2013 at 11:32:46,62
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Daniel\appdata\local\cre"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08.11.2013 at 11:38:09,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


und ein frisches frt log


FRST Logfile:

FRST Logfile:
Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Daniel (administrator) on MEDION on 08-11-2013 11:52:56
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Microsoft Corporation) C:\Windows\system32\lpksetup.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\WButton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

BHO: suRf AnD keep - {69454599-AB53-4D55-D629-03F8790328DD} - C:\Program Files (x86)\suRf AnD keep\h75h.x64.dll No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: 192.168.2.100 NPI1BB733
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File
CHR Extension: (ChromePoster) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\adnbbenoccfckadanalngjafokjnnilm\0.1_0
CHR Extension: (convert2mp3.net Online Video Converter) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhklmhadmpdfcgimodhdapodbllnjjll\1.7_0
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (suRf AnD keep) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpfinkhogofaddkijhkfcbbkidaabfa\2.19
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\janipibkfadimhhgeklofaganodhfekj\1_0
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (YouTube Unblocker) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl\0.4.5_1
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [ohkkgbjcojmjfnhegmphnheljncbegbc] - C:\Users\Daniel\AppData\Local\CRE\ohkkgbjcojmjfnhegmphnheljncbegbc.crx

==================== Services (Whitelisted) =================

S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [4389224 2013-09-15] (Reimage®)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
S2 x10nets; C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe [20480 2009-11-07] (X10)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:17 - 2013-11-08 11:19 - 00000000 ___DC C:\AdwCleaner
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 15:50 - 2013-11-07 15:51 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 14:55 - 2013-11-07 14:56 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 14:54 - 2013-11-07 14:56 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-06 17:23 - 2013-11-06 17:24 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:19 - 2013-11-06 16:20 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 09:08 - 2013-11-06 09:10 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:47 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 22:55 - 2013-11-05 23:11 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:25 - 2013-11-05 20:51 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:21 - 2013-11-05 20:22 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-04 13:31 - 2013-11-07 15:28 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-01 17:18 - 2013-11-01 17:37 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:13 - 2013-11-05 16:09 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-01 16:12 - 2013-11-05 16:11 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-10-30 18:34 - 2013-10-30 19:07 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 17:59 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-10-30 15:20 - 2013-11-01 16:14 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-30 15:15 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:16 - 2013-10-27 14:17 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 17:25 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-25 02:55 - 2013-10-25 03:00 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 01088272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00155408 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00063488 ____C (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2013-10-24 16:51 - 1998-09-02 09:28 - 00038160 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2013-10-24 16:51 - 1998-09-02 09:02 - 00194320 ____C (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2013-10-24 16:51 - 1998-08-27 05:51 - 00182032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2013-10-24 16:51 - 1998-08-20 12:02 - 00140800 ____C (The Duck Corporation) C:\Windows\SysWOW64\tm20dec.ax
2013-10-24 16:51 - 1998-08-20 11:38 - 00217984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00011776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz.drv
2013-10-24 16:51 - 1998-08-17 10:21 - 00010240 ____C C:\Windows\SysWOW64\vidx16.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00005672 ____C C:\Windows\SysWOW64\quartz.vxd
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:50 - 1997-08-26 11:06 - 00315904 ____C (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:55 - 2013-10-22 02:56 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 00:56 - 2013-11-06 16:07 - 00000000 ___DC C:\ProgramData\Oracle
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-10-08 06:50 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 00:26 - 2013-10-08 06:46 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:41 - 2013-10-18 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 22:43 - 2013-10-18 23:17 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-16 15:24 - 2013-10-16 15:25 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 09:23 - 2013-10-16 09:24 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-15 13:38 - 2009-08-19 22:50 - 00024416 ___RC (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2013-10-14 15:45 - 2013-10-14 15:47 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:02 - 2013-10-14 15:38 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-13 20:16 - 2013-10-13 22:04 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-27 14:17 - 00000000 ___DC C:\ProgramData\Origin
2013-10-13 19:09 - 2013-11-05 15:08 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-10-13 19:09 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 18:42 - 2013-11-02 17:34 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-10-13 04:45 - 2013-10-13 05:22 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:45 - 2013-10-13 04:47 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:20 - 2009-08-19 22:50 - 00052568 ____C (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:08 - 2013-09-04 13:12 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 11:03 - 2013-10-11 00:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:37 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 11:03 - 2013-07-12 11:41 - 00185344 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 11:03 - 2013-07-12 11:41 - 00100864 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:34 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 11:02 - 2013-10-11 00:09 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-07-03 05:05 - 00076800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 11:02 - 2013-07-03 05:05 - 00032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 11:01 - 2013-10-11 00:09 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

==================== One Month Modified Files and Folders =======

2013-11-08 11:49 - 2013-08-01 16:23 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Skype
2013-11-08 11:48 - 2013-09-23 06:08 - 00008524 ____C C:\Windows\setupact.log
2013-11-08 11:48 - 2013-07-31 19:50 - 00001106 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-08 11:48 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2013-11-08 11:47 - 2013-08-14 08:41 - 01324968 ____C C:\Windows\WindowsUpdate.log
2013-11-08 11:45 - 2013-07-31 19:50 - 00001110 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:30 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-08 11:30 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-08 11:19 - 2013-11-08 11:17 - 00000000 ___DC C:\AdwCleaner
2013-11-08 11:08 - 2013-07-31 21:11 - 00000884 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-08 11:01 - 2013-08-03 15:52 - 00000000 ___DC C:\Users\Daniel\Desktop\tevion usb stick daten
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 23:25 - 2013-09-06 12:54 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\.minecraft
2013-11-07 18:42 - 2010-05-12 09:18 - 00654166 ____C C:\Windows\system32\perfh007.dat
2013-11-07 18:42 - 2010-05-12 09:18 - 00130006 ____C C:\Windows\system32\perfc007.dat
2013-11-07 18:42 - 2009-07-14 06:13 - 01498506 ____C C:\Windows\system32\PerfStringBackup.INI
2013-11-07 15:51 - 2013-11-07 15:50 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:37 - 2013-07-31 20:43 - 00000000 __RDC C:\Users\Daniel\Desktop\Dj Musik
2013-11-07 15:28 - 2013-11-04 13:31 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 15:09 - 2013-08-01 21:55 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\BitTorrent
2013-11-07 14:56 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:56 - 2013-11-07 14:54 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 13:20 - 2013-09-25 19:03 - 00022264 ____C C:\Windows\PFRO.log
2013-11-07 07:28 - 2013-08-19 06:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\vlc
2013-11-06 17:24 - 2013-11-06 17:23 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:20 - 2013-11-06 16:19 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-10-20 00:56 - 00000000 ___DC C:\ProgramData\Oracle
2013-11-06 16:06 - 2013-11-06 16:07 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 11:49 - 2013-07-31 20:26 - 00001006 ____C C:\Users\Daniel\Desktop\Challenger.lnk
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-06 09:10 - 2013-11-06 09:08 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-06 08:37 - 2013-08-03 19:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\CrashDumps
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:48 - 2013-11-05 23:47 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 23:11 - 2013-11-05 22:55 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:51 - 2013-11-05 20:25 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:22 - 2013-11-05 20:21 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-05 16:11 - 2013-11-01 16:12 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-11-05 16:09 - 2013-11-01 16:13 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-05 16:08 - 2013-10-30 17:59 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-11-05 16:08 - 2013-10-30 15:15 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-11-05 15:17 - 2013-08-01 15:57 - 00007600 ____C C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2013-11-05 15:08 - 2013-10-13 19:09 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-11-05 13:29 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-02 19:00 - 2013-08-21 22:22 - 00000000 ___DC C:\Users\Daniel\Desktop\spiele
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-02 17:34 - 2013-10-13 18:42 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-11-02 17:34 - 2013-07-31 18:53 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-11-01 17:37 - 2013-11-01 17:18 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:14 - 2013-10-30 15:20 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-31 16:46 - 2013-09-08 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\IMVU
2013-10-31 07:34 - 2013-08-06 00:06 - 00000000 ___DC C:\ProgramData\firebird
2013-10-30 19:07 - 2013-10-30 18:34 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 13:23 - 2013-08-03 15:06 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Dropbox
2013-10-30 13:23 - 2013-07-31 18:47 - 00000000 __RDC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-30 11:47 - 2013-08-03 15:10 - 00000000 __RDC C:\Users\Daniel\Dropbox
2013-10-27 22:09 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\Youcam
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 18:54 - 2013-08-06 01:59 - 00000000 ___DC C:\Users\Public\CyberLink
2013-10-27 17:46 - 2013-08-03 15:32 - 00000000 ___DC C:\Program Files (x86)\Winamp
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:17 - 2013-10-27 14:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:17 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-27 05:56 - 2013-10-26 17:25 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-26 23:47 - 2013-08-01 22:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Utherverse
2013-10-26 21:42 - 2013-07-31 19:56 - 00000000 ___DC C:\ProgramData\CyberLink
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 14:45 - 2013-08-03 15:32 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Winamp
2013-10-25 19:21 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\VirtualDJ
2013-10-25 03:00 - 2013-10-25 02:55 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 18:20 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-24 18:20 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-24 18:20 - 2013-07-31 21:11 - 00003822 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-24 18:20 - 2013-07-31 21:10 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Adobe
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\Help
2013-10-24 16:51 - 2009-07-14 03:34 - 00000634 ____C C:\Windows\win.ini
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-24 00:29 - 2013-08-01 16:01 - 00000870 ____C C:\Users\Public\Desktop\CCleaner.lnk
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:56 - 2013-10-22 02:55 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:55 - 2013-09-20 20:07 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 15:47 - 2013-09-24 21:19 - 00000000 ___DC C:\Program Files (x86)\Anno 1701
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 13:16 - 2013-08-01 16:01 - 00000000 ___DC C:\Program Files\CCleaner
2013-10-20 13:13 - 2013-09-22 10:57 - 00000000 ___DC C:\Windows\pss
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-07-31 21:11 - 00000000 ___DC C:\Program Files (x86)\Java
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:48 - 2013-10-18 23:41 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 23:17 - 2013-10-18 22:43 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 23:17 - 2013-07-31 18:47 - 00000000 ___DC C:\Users\Daniel
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-17 10:49 - 2013-07-31 19:51 - 00002147 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 15:25 - 2013-10-16 15:24 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 10:12 - 2013-08-14 16:22 - 00000952 __SHC C:\ProgramData\KGyGaAvL.sys
2013-10-16 09:24 - 2013-10-16 09:23 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-14 19:40 - 2013-07-31 19:50 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-14 19:40 - 2013-07-31 19:50 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-14 16:25 - 2013-08-02 16:48 - 00001054 ____C C:\Users\Public\Desktop\Corel PaintShop Pro X5.lnk
2013-10-14 16:08 - 2013-07-31 23:44 - 00000000 ___DC C:\ProgramData\Corel
2013-10-14 15:47 - 2013-10-14 15:45 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:38 - 2013-10-14 15:02 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:01 - 2013-08-02 16:50 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Corel PaintShop Pro
2013-10-14 15:01 - 2013-08-01 16:05 - 00000000 ___DC C:\Users\Daniel\Documents\Corel PaintShop Pro
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-14 14:55 - 2013-07-31 23:40 - 00000000 ___DC C:\Program Files (x86)\Corel
2013-10-14 14:26 - 2013-07-31 20:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Cyberlink
2013-10-13 22:04 - 2013-10-13 20:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-13 19:09 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 20:14 - 2009-07-14 04:20 - 00000000 ___DC C:\Program Files\Common Files\Microsoft Shared
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 05:22 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:47 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:37 - 2013-08-05 15:01 - 00000000 ___DC C:\Program Files\Adobe
2013-10-12 12:34 - 2013-07-31 21:15 - 00000000 ___DC C:\Program Files (x86)\Adobe
2013-10-12 12:20 - 2013-08-05 14:29 - 00001985 ____C C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2013-10-12 11:29 - 2013-08-14 16:20 - 00000000 ___DC C:\ProgramData\FLEXnet
2013-10-12 11:29 - 2013-07-31 21:14 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Adobe
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:40 - 2013-09-24 21:28 - 00187641 ____C C:\Windows\DirectX.log
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-12 00:06 - 2013-08-13 17:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\SecondLife
2013-10-11 12:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 10:12 - 2013-08-01 04:15 - 00000000 ___DC C:\Windows\Panther
2013-10-11 10:10 - 2013-09-23 06:08 - 03161280 ____C C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:37 - 2013-10-10 11:03 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-11 00:37 - 2013-10-10 11:03 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-11 00:26 - 2013-08-01 10:11 - 00000000 ___DC C:\Windows\system32\MRT
2013-10-11 00:22 - 2013-07-31 22:46 - 80541720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-11 00:14 - 2013-08-21 15:34 - 00000000 ___DC C:\Program Files (x86)\GameforgeLive
2013-10-11 00:10 - 2013-10-01 15:12 - 00000000 ___DC C:\Program Files (x86)\Rockstar Games
2013-10-11 00:09 - 2013-10-10 11:02 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-11 00:09 - 2013-10-10 11:02 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:02 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:01 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-11 00:09 - 2013-10-01 19:26 - 00000000 ___DC C:\Users\Daniel\Documents\Rockstar Games
2013-10-11 00:01 - 2013-08-02 18:31 - 00000000 ___DC C:\Program Files (x86)\Microsoft Office
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 20:52 - 2013-08-13 09:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\PhoenixViewer
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 __RDC C:\Program Files (x86)\Skype
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 ___DC C:\ProgramData\Skype
2013-10-10 10:48 - 2013-09-24 21:34 - 00088480 ____C C:\Windows\system32\Drivers\atksgt.sys
2013-10-10 10:48 - 2013-09-24 21:34 - 00046400 ____C C:\Windows\system32\Drivers\lirsgt.sys
2013-10-09 23:27 - 2013-09-21 11:22 - 00004096 ____C C:\Users\Public\Documents\00001119.LCS
2013-10-09 19:22 - 2013-08-02 16:55 - 00012288 ____C C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe
C:\Users\Daniel\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Daniel\AppData\Local\Temp\comver.dll
C:\Users\Daniel\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7270007.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\i4jdel1.exe
C:\Users\Daniel\AppData\Local\Temp\installerdll26202707.dll
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Daniel\AppData\Local\Temp\MP3_Launcher_1_27_0_0.exe
C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe
C:\Users\Daniel\AppData\Local\Temp\reieyn3k.dll
C:\Users\Daniel\AppData\Local\Temp\ResetDevice.exe
C:\Users\Daniel\AppData\Local\Temp\SIntf16.dll
C:\Users\Daniel\AppData\Local\Temp\SIntf32.dll
C:\Users\Daniel\AppData\Local\Temp\SIntfNT.dll
C:\Users\Daniel\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Daniel\AppData\Local\Temp\UninstallEADM.dll
C:\Users\Daniel\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Daniel\AppData\Local\Temp\_is22F5.exe
C:\Users\Daniel\AppData\Local\Temp\_is3432.exe
C:\Users\Daniel\AppData\Local\Temp\_is9C38.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-01 18:21

==================== End Of Log ============================

--- --- ---

--- --- ---

schrauber 08.11.2013 12:56


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

saufbiene 08.11.2013 21:47

hier der eset log

Code:

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=a37a664c38115042b1a74b6c25e14e5a
# engine=15808
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-08 05:00:24
# local_time=2013-11-08 06:00:24 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776573 100 94 22687 135559874 0 0
# scanned=613573
# found=3
# cleaned=0
# scan_time=17661
sh=83D57445F8752F2B1ADCFD43F4168D6ED30AD5E0 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H application" ac=I fn="C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpfinkhogofaddkijhkfcbbkidaabfa\2.19\vVPFy.js"
sh=C513DDE65EE06D8741EE7093623DD1264810A39F ft=0 fh=0000000000000000 vn="JS/Exploit.Pdfka.PNY trojan" ac=I fn="C:\Users\Daniel\Documents\My 3D Models\Deep Exploration 5 Example Files\Feature Examples\Example PDF Output\Transmission with Steps, Realited and Compressed.pdf"
sh=7C1AA1A980D6CA3E5C3B609426C6C45AA358CE79 ft=0 fh=0000000000000000 vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Users\Daniel\Dropbox\programme\studio.rar"

und hier ein checkup log

Code:

Results of screen317's Security Check version 0.99.74 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 10 
``````````````Antivirus/Firewall Check:``````````````
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware Version 1.75.0.1300 
 Java 7 Update 45 
 Java version out of Date!
 Adobe Flash Player 11.9.900.117 
 Adobe Reader XI 
 Google Chrome 30.0.1599.101 
 Google Chrome 30.0.1599.69 
````````Process Check: objlist.exe by Laurent```````` 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbamgui.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 
````````````````````End of Log``````````````````````


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Daniel (administrator) on MEDION on 08-11-2013 18:38:19
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\WButton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

BHO: suRf AnD keep - {69454599-AB53-4D55-D629-03F8790328DD} - C:\Program Files (x86)\suRf AnD keep\h75h.x64.dll No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: 192.168.2.100 NPI1BB733
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File
CHR Extension: (ChromePoster) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\adnbbenoccfckadanalngjafokjnnilm\0.1_0
CHR Extension: (convert2mp3.net Online Video Converter) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhklmhadmpdfcgimodhdapodbllnjjll\1.7_0
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (suRf AnD keep) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpfinkhogofaddkijhkfcbbkidaabfa\2.19
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\janipibkfadimhhgeklofaganodhfekj\1_0
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (YouTube Unblocker) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl\0.4.5_1
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [ohkkgbjcojmjfnhegmphnheljncbegbc] - C:\Users\Daniel\AppData\Local\CRE\ohkkgbjcojmjfnhegmphnheljncbegbc.crx

==================== Services (Whitelisted) =================

S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [4389224 2013-09-15] (Reimage®)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
S2 x10nets; C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe [20480 2009-11-07] (X10)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-08 18:35 - 2013-11-08 18:35 - 00000938 ____C C:\Users\Daniel\Desktop\checkup.txt
2013-11-08 18:24 - 2013-11-08 18:24 - 00000441 ____C C:\Users\Daniel\Desktop\eset.txt
2013-11-08 13:05 - 2013-11-08 13:05 - 00891167 ____C C:\Users\Daniel\Desktop\SecurityCheck.exe
2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:17 - 2013-11-08 11:19 - 00000000 ___DC C:\AdwCleaner
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 15:50 - 2013-11-07 15:51 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 14:55 - 2013-11-07 14:56 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 14:54 - 2013-11-07 14:56 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-06 17:23 - 2013-11-06 17:24 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:19 - 2013-11-06 16:20 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 09:08 - 2013-11-06 09:10 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:47 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 22:55 - 2013-11-05 23:11 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:25 - 2013-11-05 20:51 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:21 - 2013-11-05 20:22 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-04 13:31 - 2013-11-07 15:28 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-01 17:18 - 2013-11-01 17:37 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:13 - 2013-11-05 16:09 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-01 16:12 - 2013-11-05 16:11 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-10-30 18:34 - 2013-10-30 19:07 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 17:59 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-10-30 15:20 - 2013-11-01 16:14 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-30 15:15 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:16 - 2013-10-27 14:17 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 17:25 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-25 02:55 - 2013-10-25 03:00 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 01088272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00155408 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00063488 ____C (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2013-10-24 16:51 - 1998-09-02 09:28 - 00038160 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2013-10-24 16:51 - 1998-09-02 09:02 - 00194320 ____C (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2013-10-24 16:51 - 1998-08-27 05:51 - 00182032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2013-10-24 16:51 - 1998-08-20 12:02 - 00140800 ____C (The Duck Corporation) C:\Windows\SysWOW64\tm20dec.ax
2013-10-24 16:51 - 1998-08-20 11:38 - 00217984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00011776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz.drv
2013-10-24 16:51 - 1998-08-17 10:21 - 00010240 ____C C:\Windows\SysWOW64\vidx16.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00005672 ____C C:\Windows\SysWOW64\quartz.vxd
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:50 - 1997-08-26 11:06 - 00315904 ____C (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:55 - 2013-10-22 02:56 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 00:56 - 2013-11-06 16:07 - 00000000 ___DC C:\ProgramData\Oracle
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-10-08 06:50 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 00:26 - 2013-10-08 06:46 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:41 - 2013-10-18 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 22:43 - 2013-10-18 23:17 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-16 15:24 - 2013-10-16 15:25 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 09:23 - 2013-10-16 09:24 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-15 13:38 - 2009-08-19 22:50 - 00024416 ___RC (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2013-10-14 15:45 - 2013-10-14 15:47 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:02 - 2013-10-14 15:38 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-13 20:16 - 2013-10-13 22:04 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-27 14:17 - 00000000 ___DC C:\ProgramData\Origin
2013-10-13 19:09 - 2013-11-05 15:08 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-10-13 19:09 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 18:42 - 2013-11-02 17:34 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-10-13 04:45 - 2013-10-13 05:22 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:45 - 2013-10-13 04:47 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:20 - 2009-08-19 22:50 - 00052568 ____C (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:08 - 2013-09-04 13:12 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 11:03 - 2013-10-11 00:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:37 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 11:03 - 2013-07-12 11:41 - 00185344 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 11:03 - 2013-07-12 11:41 - 00100864 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:34 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 11:02 - 2013-10-11 00:09 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-07-03 05:05 - 00076800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 11:02 - 2013-07-03 05:05 - 00032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 11:01 - 2013-10-11 00:09 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

==================== One Month Modified Files and Folders =======

2013-11-08 18:35 - 2013-11-08 18:35 - 00000938 ____C C:\Users\Daniel\Desktop\checkup.txt
2013-11-08 18:34 - 2013-08-01 16:23 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Skype
2013-11-08 18:24 - 2013-11-08 18:24 - 00000441 ____C C:\Users\Daniel\Desktop\eset.txt
2013-11-08 18:08 - 2013-07-31 21:11 - 00000884 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-08 17:45 - 2013-07-31 19:50 - 00001110 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-08 14:05 - 2013-08-03 15:52 - 00000000 ___DC C:\Users\Daniel\Desktop\tevion usb stick daten
2013-11-08 13:35 - 2013-08-14 08:41 - 01328494 ____C C:\Windows\WindowsUpdate.log
2013-11-08 13:05 - 2013-11-08 13:05 - 00891167 ____C C:\Users\Daniel\Desktop\SecurityCheck.exe
2013-11-08 12:03 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-08 12:03 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-08 11:48 - 2013-09-23 06:08 - 00008524 ____C C:\Windows\setupact.log
2013-11-08 11:48 - 2013-07-31 19:50 - 00001106 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-08 11:48 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:19 - 2013-11-08 11:17 - 00000000 ___DC C:\AdwCleaner
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 23:25 - 2013-09-06 12:54 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\.minecraft
2013-11-07 18:42 - 2010-05-12 09:18 - 00654166 ____C C:\Windows\system32\perfh007.dat
2013-11-07 18:42 - 2010-05-12 09:18 - 00130006 ____C C:\Windows\system32\perfc007.dat
2013-11-07 18:42 - 2009-07-14 06:13 - 01498506 ____C C:\Windows\system32\PerfStringBackup.INI
2013-11-07 15:51 - 2013-11-07 15:50 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:37 - 2013-07-31 20:43 - 00000000 __RDC C:\Users\Daniel\Desktop\Dj Musik
2013-11-07 15:28 - 2013-11-04 13:31 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 15:09 - 2013-08-01 21:55 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\BitTorrent
2013-11-07 14:56 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:56 - 2013-11-07 14:54 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 13:20 - 2013-09-25 19:03 - 00022264 ____C C:\Windows\PFRO.log
2013-11-07 07:28 - 2013-08-19 06:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\vlc
2013-11-06 17:24 - 2013-11-06 17:23 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:20 - 2013-11-06 16:19 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-10-20 00:56 - 00000000 ___DC C:\ProgramData\Oracle
2013-11-06 16:06 - 2013-11-06 16:07 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 11:49 - 2013-07-31 20:26 - 00001006 ____C C:\Users\Daniel\Desktop\Challenger.lnk
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-06 09:10 - 2013-11-06 09:08 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-06 08:37 - 2013-08-03 19:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\CrashDumps
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:48 - 2013-11-05 23:47 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 23:11 - 2013-11-05 22:55 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:51 - 2013-11-05 20:25 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:22 - 2013-11-05 20:21 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-05 16:11 - 2013-11-01 16:12 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-11-05 16:09 - 2013-11-01 16:13 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-05 16:08 - 2013-10-30 17:59 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-11-05 16:08 - 2013-10-30 15:15 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-11-05 15:17 - 2013-08-01 15:57 - 00007600 ____C C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2013-11-05 15:08 - 2013-10-13 19:09 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-11-05 13:29 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-02 19:00 - 2013-08-21 22:22 - 00000000 ___DC C:\Users\Daniel\Desktop\spiele
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-02 17:34 - 2013-10-13 18:42 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-11-02 17:34 - 2013-07-31 18:53 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-11-01 17:37 - 2013-11-01 17:18 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:14 - 2013-10-30 15:20 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-31 16:46 - 2013-09-08 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\IMVU
2013-10-31 07:34 - 2013-08-06 00:06 - 00000000 ___DC C:\ProgramData\firebird
2013-10-30 19:07 - 2013-10-30 18:34 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 13:23 - 2013-08-03 15:06 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Dropbox
2013-10-30 13:23 - 2013-07-31 18:47 - 00000000 __RDC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-30 11:47 - 2013-08-03 15:10 - 00000000 __RDC C:\Users\Daniel\Dropbox
2013-10-27 22:09 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\Youcam
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 18:54 - 2013-08-06 01:59 - 00000000 ___DC C:\Users\Public\CyberLink
2013-10-27 17:46 - 2013-08-03 15:32 - 00000000 ___DC C:\Program Files (x86)\Winamp
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:17 - 2013-10-27 14:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:17 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-27 05:56 - 2013-10-26 17:25 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-26 23:47 - 2013-08-01 22:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Utherverse
2013-10-26 21:42 - 2013-07-31 19:56 - 00000000 ___DC C:\ProgramData\CyberLink
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 14:45 - 2013-08-03 15:32 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Winamp
2013-10-25 19:21 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\VirtualDJ
2013-10-25 03:00 - 2013-10-25 02:55 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 18:20 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-24 18:20 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-24 18:20 - 2013-07-31 21:11 - 00003822 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-24 18:20 - 2013-07-31 21:10 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Adobe
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\Help
2013-10-24 16:51 - 2009-07-14 03:34 - 00000634 ____C C:\Windows\win.ini
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-24 00:29 - 2013-08-01 16:01 - 00000870 ____C C:\Users\Public\Desktop\CCleaner.lnk
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:56 - 2013-10-22 02:55 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:55 - 2013-09-20 20:07 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 15:47 - 2013-09-24 21:19 - 00000000 ___DC C:\Program Files (x86)\Anno 1701
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 13:16 - 2013-08-01 16:01 - 00000000 ___DC C:\Program Files\CCleaner
2013-10-20 13:13 - 2013-09-22 10:57 - 00000000 ___DC C:\Windows\pss
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-07-31 21:11 - 00000000 ___DC C:\Program Files (x86)\Java
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:48 - 2013-10-18 23:41 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 23:17 - 2013-10-18 22:43 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 23:17 - 2013-07-31 18:47 - 00000000 ___DC C:\Users\Daniel
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-17 10:49 - 2013-07-31 19:51 - 00002147 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 15:25 - 2013-10-16 15:24 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 10:12 - 2013-08-14 16:22 - 00000952 __SHC C:\ProgramData\KGyGaAvL.sys
2013-10-16 09:24 - 2013-10-16 09:23 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-14 19:40 - 2013-07-31 19:50 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-14 19:40 - 2013-07-31 19:50 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-14 16:25 - 2013-08-02 16:48 - 00001054 ____C C:\Users\Public\Desktop\Corel PaintShop Pro X5.lnk
2013-10-14 16:08 - 2013-07-31 23:44 - 00000000 ___DC C:\ProgramData\Corel
2013-10-14 15:47 - 2013-10-14 15:45 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:38 - 2013-10-14 15:02 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:01 - 2013-08-02 16:50 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Corel PaintShop Pro
2013-10-14 15:01 - 2013-08-01 16:05 - 00000000 ___DC C:\Users\Daniel\Documents\Corel PaintShop Pro
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-14 14:55 - 2013-07-31 23:40 - 00000000 ___DC C:\Program Files (x86)\Corel
2013-10-14 14:26 - 2013-07-31 20:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Cyberlink
2013-10-13 22:04 - 2013-10-13 20:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-13 19:09 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 20:14 - 2009-07-14 04:20 - 00000000 ___DC C:\Program Files\Common Files\Microsoft Shared
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 05:22 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:47 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:37 - 2013-08-05 15:01 - 00000000 ___DC C:\Program Files\Adobe
2013-10-12 12:34 - 2013-07-31 21:15 - 00000000 ___DC C:\Program Files (x86)\Adobe
2013-10-12 12:20 - 2013-08-05 14:29 - 00001985 ____C C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2013-10-12 11:29 - 2013-08-14 16:20 - 00000000 ___DC C:\ProgramData\FLEXnet
2013-10-12 11:29 - 2013-07-31 21:14 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Adobe
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:40 - 2013-09-24 21:28 - 00187641 ____C C:\Windows\DirectX.log
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-12 00:06 - 2013-08-13 17:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\SecondLife
2013-10-11 12:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 10:12 - 2013-08-01 04:15 - 00000000 ___DC C:\Windows\Panther
2013-10-11 10:10 - 2013-09-23 06:08 - 03161280 ____C C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:37 - 2013-10-10 11:03 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-11 00:37 - 2013-10-10 11:03 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-11 00:26 - 2013-08-01 10:11 - 00000000 ___DC C:\Windows\system32\MRT
2013-10-11 00:22 - 2013-07-31 22:46 - 80541720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-11 00:14 - 2013-08-21 15:34 - 00000000 ___DC C:\Program Files (x86)\GameforgeLive
2013-10-11 00:10 - 2013-10-01 15:12 - 00000000 ___DC C:\Program Files (x86)\Rockstar Games
2013-10-11 00:09 - 2013-10-10 11:02 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-11 00:09 - 2013-10-10 11:02 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:02 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:01 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-11 00:09 - 2013-10-01 19:26 - 00000000 ___DC C:\Users\Daniel\Documents\Rockstar Games
2013-10-11 00:01 - 2013-08-02 18:31 - 00000000 ___DC C:\Program Files (x86)\Microsoft Office
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 20:52 - 2013-08-13 09:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\PhoenixViewer
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 __RDC C:\Program Files (x86)\Skype
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 ___DC C:\ProgramData\Skype
2013-10-10 10:48 - 2013-09-24 21:34 - 00088480 ____C C:\Windows\system32\Drivers\atksgt.sys
2013-10-10 10:48 - 2013-09-24 21:34 - 00046400 ____C C:\Windows\system32\Drivers\lirsgt.sys
2013-10-09 23:27 - 2013-09-21 11:22 - 00004096 ____C C:\Users\Public\Documents\00001119.LCS
2013-10-09 19:22 - 2013-08-02 16:55 - 00012288 ____C C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe
C:\Users\Daniel\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Daniel\AppData\Local\Temp\comver.dll
C:\Users\Daniel\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7270007.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\i4jdel1.exe
C:\Users\Daniel\AppData\Local\Temp\installerdll26202707.dll
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Daniel\AppData\Local\Temp\MP3_Launcher_1_27_0_0.exe
C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe
C:\Users\Daniel\AppData\Local\Temp\reieyn3k.dll
C:\Users\Daniel\AppData\Local\Temp\ResetDevice.exe
C:\Users\Daniel\AppData\Local\Temp\SIntf16.dll
C:\Users\Daniel\AppData\Local\Temp\SIntf32.dll
C:\Users\Daniel\AppData\Local\Temp\SIntfNT.dll
C:\Users\Daniel\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Daniel\AppData\Local\Temp\UninstallEADM.dll
C:\Users\Daniel\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Daniel\AppData\Local\Temp\_is22F5.exe
C:\Users\Daniel\AppData\Local\Temp\_is3432.exe
C:\Users\Daniel\AppData\Local\Temp\_is9C38.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-01 18:21

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

ja es sind noch probleme da adware immer noch vorhanden
und immer erscheint im leerlauf ein fehlercode

-.-*

gehe davon aus das host dateien manipuliert worden so zumindest schreibt die problembehandlung von ubisoft es hin XD

https://support.ubi.com/de-DE/FAQ.aspx?platformid=9&brandid=15&productid=3272&faqid=kA030000000eSxsCAE

weis jetzt nicht ob es so ist

saufbiene 08.11.2013 22:20

Liste der Anhänge anzeigen (Anzahl: 1)
habe den fehlercode gescreent und ihn hier hochgeladen

können sie ihn vlt mal sich ansehen?

schrauber 09.11.2013 18:02

Der Fehlercode hat nix mit Hosts oder Adware zu tun.

Bitte mal FRST öffnen, Haken setzen bei Additional und scannen, poste beide Logfiles.

saufbiene 09.11.2013 19:13


FRST Logfile:
Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Daniel (administrator) on MEDION on 09-11-2013 18:53:06
Running from C:\Users\Daniel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Reimage®) C:\Program Files\AntiToolbar\ReiGuard.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Protexis Inc.) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(X10) C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Wistron) C:\Program Files (x86)\Launch Manager\HotkeyApp.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\OSD.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WButton.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wistron Corp.) C:\Program Files (x86)\Launch Manager\WisLMSvc.exe
(Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11548264 2010-11-11] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2009-12-11] (Synaptics Incorporated)
HKLM\...\Run: [HP Color LaserJet CM1312 MFP Series Fax] - C:\Program Files (x86)\HP\HP Color LaserJet CM1312 MFP Series\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Personal ID] - C:\Program Files (x86)\coolspot AG\Personal ID\pid.exe [1132984 2013-08-01] (coolspot AG, Düsseldorf)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\setup.exe
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-11] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2010-10-28] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe [224352 2010-10-28] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM-x32\...\Run: [HotkeyApp] - C:\Program Files (x86)\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)
HKLM-x32\...\Run: [LMgrVolOSD] - C:\Program Files (x86)\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)
HKLM-x32\...\Run: [Wbutton] - C:\Program Files (x86)\Launch Manager\WButton.exe [436264 2010-06-21] (Wistron Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPUsageTracking] - C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe [24576 2009-05-11] (Hewlett-Packard Company)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe_ID0ENQBO] - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [378224 2008-08-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Startup: C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

BHO: suRf AnD keep - {69454599-AB53-4D55-D629-03F8790328DD} - C:\Program Files (x86)\suRf AnD keep\h75h.x64.dll No File
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll No File
CHR Extension: (ChromePoster) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\adnbbenoccfckadanalngjafokjnnilm\0.1_0
CHR Extension: (convert2mp3.net Online Video Converter) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhklmhadmpdfcgimodhdapodbllnjjll\1.7_0
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (suRf AnD keep) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpfinkhogofaddkijhkfcbbkidaabfa\2.19
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (tattoo girl) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\janipibkfadimhhgeklofaganodhfekj\1_0
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (YouTube Unblocker) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl\0.4.5_1
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [ohkkgbjcojmjfnhegmphnheljncbegbc] - C:\Users\Daniel\AppData\Local\CRE\ohkkgbjcojmjfnhegmphnheljncbegbc.crx

==================== Services (Whitelisted) =================

S3 Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AntiToolbarProtector; C:\Program Files\AntiToolbar\ReiGuard.exe [4389224 2013-09-15] (Reimage®)
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project)
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-24] ()
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()
R3 WisLMSvc; C:\Program Files (x86)\Launch Manager\WisLMSvc.exe [118560 2009-10-22] (Wistron Corp.)
R2 x10nets; C:\PROGRA~2\COMMON~1\X10\Common\x10nets.exe [20480 2009-11-07] (X10)

==================== Drivers (Whitelisted) ====================

R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-10-10] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-10-10] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mod7764; C:\Windows\System32\DRIVERS\mod77-64.sys [913888 2009-09-24] (DiBcom SA)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [871408 2013-10-21] ()
R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [15896 2009-05-13] (X10 Wireless Technology, Inc.)
S2 {09BB444F-B2E2-4009-BAF2-7B727681223E}; C:\Program Files (x86)\VMLaunch\BuddyVM.sys [15872 2004-10-05] (Interlex Inc.)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-09 12:40 - 2013-11-09 12:40 - 00000000 ___DC C:\Users\Daniel\Documents\ANNO 2070
2013-11-09 11:10 - 2013-11-09 11:31 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Ubisoft Game Launcher
2013-11-08 21:46 - 2013-11-08 21:46 - 00000000 ____C C:\END
2013-11-08 21:17 - 2013-11-09 11:08 - 00000000 ___DC C:\ProgramData\Solidshield
2013-11-08 20:59 - 2013-11-08 20:59 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Ubisoft
2013-11-08 20:57 - 2010-06-02 04:55 - 00527192 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-11-08 20:57 - 2010-06-02 04:55 - 00518488 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-11-08 20:57 - 2010-06-02 04:55 - 00239960 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-11-08 20:57 - 2010-06-02 04:55 - 00176984 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-11-08 20:57 - 2010-06-02 04:55 - 00077656 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-11-08 20:57 - 2010-06-02 04:55 - 00074072 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 02526056 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 02401112 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 02106216 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 01998168 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 01907552 ____C (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 01868128 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 00511328 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 00470880 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 00276832 ____C (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-11-08 20:57 - 2010-05-26 11:41 - 00248672 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00530776 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00528216 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00238936 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00176984 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00078680 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00074072 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00024920 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-11-08 20:57 - 2010-02-04 10:01 - 00022360 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00517960 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00515416 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00238936 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00176968 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00073544 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-11-08 20:57 - 2009-09-04 17:44 - 00069464 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 05554512 ____C (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 05501792 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 02582888 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 02475352 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 01974616 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 01892184 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 00523088 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 00453456 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 00285024 ____C (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-11-08 20:57 - 2009-09-04 17:29 - 00235344 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00521560 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00517448 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00235352 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00174936 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00024920 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-11-08 20:57 - 2009-03-16 14:18 - 00022360 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 05425496 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 04178264 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 02430312 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 01846632 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 00520544 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-11-08 20:57 - 2009-03-09 15:27 - 00453456 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00518480 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00514384 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00235856 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00175440 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00074576 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00070992 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00025936 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-11-08 20:57 - 2008-10-27 10:04 - 00023376 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-11-08 20:57 - 2008-10-15 06:22 - 05631312 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-11-08 20:57 - 2008-10-15 06:22 - 04379984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-11-08 20:57 - 2008-10-15 06:22 - 02605920 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-11-08 20:57 - 2008-10-15 06:22 - 02036576 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-11-08 20:57 - 2008-10-15 06:22 - 00452440 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-08 20:57 - 2008-07-31 10:41 - 00238088 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-11-08 20:57 - 2008-07-31 10:41 - 00177672 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-11-08 20:57 - 2008-07-31 10:41 - 00072200 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-11-08 20:57 - 2008-07-31 10:41 - 00068616 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-11-08 20:57 - 2008-07-31 10:40 - 00513544 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-11-08 20:57 - 2008-07-31 10:40 - 00509448 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-11-08 20:57 - 2008-07-10 11:01 - 00467984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-11-08 20:57 - 2008-07-10 11:00 - 04992520 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-11-08 20:57 - 2008-07-10 11:00 - 03851784 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-11-08 20:57 - 2008-07-10 11:00 - 01942552 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-11-08 20:57 - 2008-07-10 11:00 - 01493528 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-11-08 20:57 - 2008-07-10 11:00 - 00540688 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-11-08 20:57 - 2008-05-30 14:19 - 00511496 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-11-08 20:57 - 2008-05-30 14:19 - 00507400 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-11-08 20:57 - 2008-05-30 14:18 - 00238088 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-11-08 20:57 - 2008-05-30 14:18 - 00177672 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-11-08 20:57 - 2008-05-30 14:17 - 00068104 ____C (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-11-08 20:57 - 2008-05-30 14:17 - 00065032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-11-08 20:57 - 2008-05-30 14:17 - 00025608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-11-08 20:57 - 2008-05-30 14:16 - 00028168 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 04991496 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 03850760 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 01941528 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 01491992 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 00540688 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-11-08 20:57 - 2008-05-30 14:11 - 00467984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-11-08 20:57 - 2008-03-05 16:04 - 00489480 ____C (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-11-08 20:57 - 2008-03-05 16:03 - 00479752 ____C (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-11-08 20:57 - 2008-03-05 16:03 - 00238088 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-11-08 20:57 - 2008-03-05 16:03 - 00177672 ____C (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-11-08 20:57 - 2008-03-05 16:00 - 00028168 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-11-08 20:57 - 2008-03-05 16:00 - 00025608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-11-08 20:57 - 2008-03-05 15:56 - 04910088 ____C (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-11-08 20:57 - 2008-03-05 15:56 - 03786760 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-11-08 20:57 - 2008-03-05 15:56 - 01860120 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-11-08 20:57 - 2008-03-05 15:56 - 01420824 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-11-08 20:57 - 2008-02-05 23:07 - 00529424 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-11-08 20:57 - 2008-02-05 23:07 - 00462864 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-11-08 20:57 - 2007-10-22 03:40 - 00411656 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-11-08 20:57 - 2007-10-22 03:39 - 00267272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-11-08 20:57 - 2007-10-12 15:14 - 02006552 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-11-08 20:57 - 2007-10-12 15:14 - 01374232 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-11-08 20:57 - 2007-10-02 09:56 - 00508264 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-11-08 20:57 - 2007-10-02 09:56 - 00444776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-11-08 20:56 - 2007-10-22 03:37 - 00021000 ____C (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-11-08 20:56 - 2007-10-22 03:37 - 00017928 ____C (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-11-08 20:56 - 2007-10-12 15:14 - 05081608 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-11-08 20:56 - 2007-10-12 15:14 - 03734536 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-11-08 20:56 - 2007-07-20 00:57 - 00411496 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-11-08 20:56 - 2007-07-20 00:57 - 00267112 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 05073256 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 03727720 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 01985904 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 01358192 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 00508264 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-11-08 20:56 - 2007-07-19 18:14 - 00444776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-11-08 20:56 - 2007-06-20 20:49 - 00409960 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-11-08 20:56 - 2007-06-20 20:46 - 00266088 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 04496232 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 03497832 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 01401200 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 01124720 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 00506728 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-11-08 20:56 - 2007-05-16 16:45 - 00443752 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-11-08 20:56 - 2007-04-04 18:55 - 00403304 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-11-08 20:56 - 2007-04-04 18:55 - 00261480 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-11-08 20:56 - 2007-04-04 18:54 - 00107368 ____C (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2013-11-08 20:56 - 2007-04-04 18:53 - 00081768 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-11-08 20:56 - 2007-03-15 16:57 - 00506728 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-11-08 20:56 - 2007-03-15 16:57 - 00443752 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-11-08 20:56 - 2007-03-12 16:42 - 04494184 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-11-08 20:56 - 2007-03-12 16:42 - 03495784 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-11-08 20:56 - 2007-03-12 16:42 - 01400176 ____C (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-11-08 20:56 - 2007-03-12 16:42 - 01123696 ____C (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-11-08 20:56 - 2007-03-05 12:42 - 00017688 ____C (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-11-08 20:56 - 2007-03-05 12:42 - 00015128 ____C (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-11-08 20:56 - 2007-01-24 15:27 - 00393576 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-11-08 20:56 - 2007-01-24 15:27 - 00255848 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-11-08 20:56 - 2006-12-08 12:02 - 00251672 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-11-08 20:56 - 2006-12-08 12:00 - 00390424 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-11-08 20:56 - 2006-11-29 13:06 - 04398360 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-11-08 20:56 - 2006-11-29 13:06 - 03426072 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-11-08 20:56 - 2006-11-29 13:06 - 00469264 ____C (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-11-08 20:56 - 2006-11-29 13:06 - 00440080 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-11-08 20:56 - 2006-09-28 16:05 - 03977496 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-11-08 20:56 - 2006-09-28 16:05 - 02414360 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-11-08 20:56 - 2006-09-28 16:05 - 00237848 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-11-08 20:56 - 2006-09-28 16:04 - 00364824 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-11-08 20:56 - 2006-07-28 09:31 - 00083736 ____C (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-11-08 20:56 - 2006-07-28 09:30 - 00363288 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-11-08 20:56 - 2006-07-28 09:30 - 00236824 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-11-08 20:56 - 2006-07-28 09:30 - 00062744 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-11-08 20:56 - 2006-05-31 07:24 - 00230168 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-11-08 20:56 - 2006-05-31 07:22 - 00354072 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-11-08 20:56 - 2006-03-31 12:41 - 03927248 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-11-08 20:56 - 2006-03-31 12:40 - 02388176 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-11-08 20:56 - 2006-03-31 12:40 - 00352464 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-11-08 20:56 - 2006-03-31 12:39 - 00229584 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-11-08 20:56 - 2006-03-31 12:39 - 00083664 ____C (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-11-08 20:56 - 2006-03-31 12:39 - 00062672 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-11-08 20:56 - 2006-02-03 08:43 - 03830992 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-11-08 20:56 - 2006-02-03 08:43 - 02332368 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-11-08 20:56 - 2006-02-03 08:42 - 00355536 ____C (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-11-08 20:56 - 2006-02-03 08:42 - 00230096 ____C (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-11-08 20:56 - 2006-02-03 08:41 - 00016592 ____C (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-11-08 20:56 - 2006-02-03 08:41 - 00014032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-11-08 20:56 - 2005-12-05 18:09 - 03815120 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-11-08 20:56 - 2005-12-05 18:09 - 02323664 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-11-08 20:56 - 2005-07-22 19:59 - 03807440 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-11-08 20:56 - 2005-07-22 19:59 - 02319568 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-11-08 20:56 - 2005-05-26 15:34 - 03767504 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-11-08 20:56 - 2005-05-26 15:34 - 02297552 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-11-08 20:56 - 2005-03-18 17:19 - 03823312 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-11-08 20:56 - 2005-03-18 17:19 - 02337488 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-11-08 20:56 - 2005-02-05 19:45 - 03544272 ____C (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-11-08 20:56 - 2005-02-05 19:45 - 02222800 ____C (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-11-08 20:40 - 2013-11-08 20:58 - 00000000 ___DC C:\Program Files (x86)\Ubisoft
2013-11-08 18:35 - 2013-11-08 18:35 - 00000938 ____C C:\Users\Daniel\Desktop\checkup.txt
2013-11-08 18:24 - 2013-11-08 18:24 - 00000441 ____C C:\Users\Daniel\Desktop\eset.txt
2013-11-08 13:05 - 2013-11-08 13:05 - 00891167 ____C C:\Users\Daniel\Desktop\SecurityCheck.exe
2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:17 - 2013-11-08 11:19 - 00000000 ___DC C:\AdwCleaner
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 15:50 - 2013-11-07 15:51 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 14:55 - 2013-11-07 14:56 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 14:54 - 2013-11-07 14:56 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-06 17:23 - 2013-11-06 17:24 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:19 - 2013-11-06 16:20 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:07 - 2013-11-06 16:06 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 09:08 - 2013-11-06 09:10 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-05 23:48 - 2013-11-06 11:15 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:47 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 22:55 - 2013-11-05 23:11 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:25 - 2013-11-05 20:51 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:21 - 2013-11-05 20:22 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-04 13:31 - 2013-11-07 15:28 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-01 17:18 - 2013-11-01 17:37 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:13 - 2013-11-05 16:09 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-01 16:12 - 2013-11-05 16:11 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-10-30 18:34 - 2013-10-30 19:07 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 17:59 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-10-30 15:20 - 2013-11-01 16:14 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-30 15:15 - 2013-11-05 16:08 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:16 - 2013-10-27 14:17 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-26 17:48 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 17:25 - 2013-10-27 05:56 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-25 02:55 - 2013-10-25 03:00 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 01088272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\danim.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00155408 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRT.dll
2013-10-24 16:51 - 1998-09-02 09:28 - 00063488 ____C (Microsoft Corporation) C:\Windows\SysWOW64\unam4ie.exe
2013-10-24 16:51 - 1998-09-02 09:28 - 00038160 ____C (Microsoft Corporation) C:\Windows\SysWOW64\LMRTREND.dll
2013-10-24 16:51 - 1998-09-02 09:02 - 00194320 ____C (Microsoft Corporation) C:\Windows\SysWOW64\qcut.dll
2013-10-24 16:51 - 1998-08-27 05:51 - 00182032 ____C (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft3.dll
2013-10-24 16:51 - 1998-08-20 12:02 - 00140800 ____C (The Duck Corporation) C:\Windows\SysWOW64\tm20dec.ax
2013-10-24 16:51 - 1998-08-20 11:38 - 00217984 ____C (Microsoft Corporation) C:\Windows\SysWOW64\strmdll.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00011776 ____C (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz.drv
2013-10-24 16:51 - 1998-08-17 10:21 - 00010240 ____C C:\Windows\SysWOW64\vidx16.dll
2013-10-24 16:51 - 1998-08-17 10:21 - 00005672 ____C C:\Windows\SysWOW64\quartz.vxd
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:50 - 1997-08-26 11:06 - 00315904 ____C (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:55 - 2013-10-22 02:56 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 00:56 - 2013-11-06 16:07 - 00000000 ___DC C:\ProgramData\Oracle
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-10-08 06:50 - 00096168 ____C (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 00:26 - 2013-10-08 06:46 - 00264616 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00175016 ____C (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 00:26 - 2013-10-08 06:46 - 00174504 ____C (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:41 - 2013-10-18 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 22:43 - 2013-10-18 23:17 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-16 15:24 - 2013-10-16 15:25 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 09:23 - 2013-10-16 09:24 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-15 13:38 - 2009-08-19 22:50 - 00024416 ___RC (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2013-10-14 15:45 - 2013-10-14 15:47 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:02 - 2013-10-14 15:38 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-13 20:16 - 2013-10-13 22:04 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-27 14:17 - 00000000 ___DC C:\ProgramData\Origin
2013-10-13 19:09 - 2013-11-05 15:08 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-10-13 19:09 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 18:42 - 2013-11-02 17:34 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-10-13 04:45 - 2013-10-13 05:22 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:45 - 2013-10-13 04:47 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:20 - 2009-08-19 22:50 - 00052568 ____C (Adobe Systems Inc) C:\Windows\system32\AdobePDF.dll
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:34 - 2013-10-11 00:35 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:08 - 2013-09-04 13:12 - 00343040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00325120 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00099840 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00030720 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00025600 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-11 00:08 - 2013-09-04 13:11 - 00007808 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 11:03 - 2013-10-11 00:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:37 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:36 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 11:03 - 2013-10-11 00:34 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:34 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 11:03 - 2013-10-11 00:26 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 11:03 - 2013-10-11 00:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 11:03 - 2013-07-12 11:41 - 00185344 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 11:03 - 2013-07-12 11:41 - 00100864 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 11:02 - 2013-10-11 00:34 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:34 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 11:02 - 2013-10-11 00:09 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-10-11 00:09 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 11:02 - 2013-07-03 05:05 - 00076800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 11:02 - 2013-07-03 05:05 - 00032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 11:01 - 2013-10-11 00:09 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

==================== One Month Modified Files and Folders =======

2013-11-09 18:45 - 2013-07-31 19:50 - 00001110 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-09 18:42 - 2013-08-01 16:23 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Skype
2013-11-09 18:08 - 2013-07-31 21:11 - 00000884 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-09 13:34 - 2013-08-14 08:41 - 01361095 ____C C:\Windows\WindowsUpdate.log
2013-11-09 12:40 - 2013-11-09 12:40 - 00000000 ___DC C:\Users\Daniel\Documents\ANNO 2070
2013-11-09 11:31 - 2013-11-09 11:10 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Ubisoft Game Launcher
2013-11-09 11:08 - 2013-11-08 21:17 - 00000000 ___DC C:\ProgramData\Solidshield
2013-11-09 10:48 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-09 10:48 - 2009-07-14 05:45 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-09 10:39 - 2013-09-23 06:08 - 00008692 ____C C:\Windows\setupact.log
2013-11-09 10:39 - 2013-07-31 19:50 - 00001106 ____C C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-09 10:39 - 2009-07-14 06:08 - 00000006 ___HC C:\Windows\Tasks\SA.DAT
2013-11-09 10:38 - 2013-09-25 19:03 - 00025168 ____C C:\Windows\PFRO.log
2013-11-08 21:50 - 2013-07-31 21:36 - 00001612 ____C C:\Users\Daniel\Desktop\DivX Movies.lnk
2013-11-08 21:50 - 2013-07-31 21:29 - 00000000 ___DC C:\ProgramData\DivX
2013-11-08 21:49 - 2013-09-10 00:46 - 00001091 ____C C:\Users\Public\Desktop\DivX Converter.lnk
2013-11-08 21:49 - 2013-09-10 00:46 - 00001026 ____C C:\Users\Public\Desktop\DivX Player.lnk
2013-11-08 21:49 - 2013-07-31 21:36 - 00000000 ___DC C:\Program Files\DivX
2013-11-08 21:49 - 2013-07-31 21:31 - 00000000 ___DC C:\Program Files (x86)\DivX
2013-11-08 21:46 - 2013-11-08 21:46 - 00000000 ____C C:\END
2013-11-08 21:22 - 2013-08-03 19:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\CrashDumps
2013-11-08 20:59 - 2013-11-08 20:59 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Ubisoft
2013-11-08 20:58 - 2013-11-08 20:40 - 00000000 ___DC C:\Program Files (x86)\Ubisoft
2013-11-08 20:58 - 2013-07-31 18:53 - 00000000 __HDC C:\Program Files (x86)\InstallShield Installation Information
2013-11-08 20:57 - 2013-09-24 21:28 - 00204562 ____C C:\Windows\DirectX.log
2013-11-08 18:35 - 2013-11-08 18:35 - 00000938 ____C C:\Users\Daniel\Desktop\checkup.txt
2013-11-08 18:24 - 2013-11-08 18:24 - 00000441 ____C C:\Users\Daniel\Desktop\eset.txt
2013-11-08 14:05 - 2013-08-03 15:52 - 00000000 ___DC C:\Users\Daniel\Desktop\tevion usb stick daten
2013-11-08 13:05 - 2013-11-08 13:05 - 00891167 ____C C:\Users\Daniel\Desktop\SecurityCheck.exe
2013-11-08 11:38 - 2013-11-08 11:38 - 00000696 ____C C:\Users\Daniel\Desktop\JRT.txt
2013-11-08 11:32 - 2013-11-08 11:32 - 00000000 ___DC C:\Windows\ERUNT
2013-11-08 11:19 - 2013-11-08 11:17 - 00000000 ___DC C:\AdwCleaner
2013-11-08 10:59 - 2013-11-08 10:59 - 01034531 ____C (Thisisu) C:\Users\Daniel\Desktop\JRT.exe
2013-11-08 10:58 - 2013-11-08 10:58 - 01073262 ____C C:\Users\Daniel\Desktop\adwcleaner.exe
2013-11-07 23:25 - 2013-09-06 12:54 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\.minecraft
2013-11-07 18:42 - 2010-05-12 09:18 - 00654166 ____C C:\Windows\system32\perfh007.dat
2013-11-07 18:42 - 2010-05-12 09:18 - 00130006 ____C C:\Windows\system32\perfc007.dat
2013-11-07 18:42 - 2009-07-14 06:13 - 01498506 ____C C:\Windows\system32\PerfStringBackup.INI
2013-11-07 15:51 - 2013-11-07 15:50 - 00047812 ____C C:\Users\Daniel\Desktop\Addition.txt
2013-11-07 15:40 - 2013-11-07 15:40 - 00000000 ___DC C:\FRST
2013-11-07 15:37 - 2013-07-31 20:43 - 00000000 __RDC C:\Users\Daniel\Desktop\Dj Musik
2013-11-07 15:28 - 2013-11-04 13:31 - 00000000 ___DC C:\Users\Daniel\Downloads\Windows 7 x86-x64
2013-11-07 15:23 - 2013-11-07 15:23 - 01957098 ____C (Farbar) C:\Users\Daniel\Desktop\FRST64.exe
2013-11-07 15:09 - 2013-08-01 21:55 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\BitTorrent
2013-11-07 14:56 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\AntiToolbar
2013-11-07 14:56 - 2013-11-07 14:54 - 00000000 ___DC C:\Program Files\AntiToolbar
2013-11-07 14:55 - 2013-11-07 14:55 - 00001734 ____C C:\Users\Public\Desktop\AntiToolbar.lnk
2013-11-07 14:55 - 2013-11-07 14:55 - 00000000 ___DC C:\ProgramData\CDB
2013-11-07 07:28 - 2013-08-19 06:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\vlc
2013-11-06 17:24 - 2013-11-06 17:23 - 05886237 ____C C:\Users\Daniel\Desktop\BukkitForge-1.5.2-301.jar
2013-11-06 16:20 - 2013-11-06 16:19 - 05143952 ____C (PortableApps.com) C:\Users\Daniel\Downloads\NotepadPlusPlusPortable_6.5.1.paf.exe
2013-11-06 16:07 - 2013-10-20 00:56 - 00000000 ___DC C:\ProgramData\Oracle
2013-11-06 16:06 - 2013-11-06 16:07 - 00312744 ____C (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00189352 ____C (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-06 16:06 - 2013-11-06 16:07 - 00108968 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-06 16:06 - 2013-11-06 16:06 - 00000000 ___DC C:\Program Files\Java
2013-11-06 16:04 - 2013-11-06 16:04 - 30694824 ____C (Oracle Corporation) C:\Users\Daniel\Downloads\jre-7u45-windows-x64.exe
2013-11-06 14:00 - 2013-11-06 14:00 - 00000000 ___DC C:\Users\Daniel\Desktop\Armageddon
2013-11-06 13:21 - 2013-11-06 13:21 - 01137240 ____C (BitTorrent Inc.) C:\Users\Daniel\Downloads\bittorrent.exe
2013-11-06 11:49 - 2013-07-31 20:26 - 00001006 ____C C:\Users\Daniel\Desktop\Challenger.lnk
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\suRf AnD keep
2013-11-06 11:15 - 2013-11-05 23:48 - 00000000 ___DC C:\Program Files (x86)\ss helper
2013-11-06 09:10 - 2013-11-06 09:08 - 209341674 ____C C:\Users\Daniel\Documents\MCGame_Complete_2013-11-06_09-08-48_Backup.mcgame
2013-11-05 23:49 - 2013-11-05 23:49 - 00042255 ____C C:\Users\Daniel\Desktop\WaterShaders-VAN-152.zip
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Packages
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\WinterSoft
2013-11-05 23:48 - 2013-11-05 23:48 - 00000000 ___DC C:\ProgramData\e6d090765b5f02c2
2013-11-05 23:48 - 2013-11-05 23:47 - 00000000 ___DC C:\ProgramData\InstallMate
2013-11-05 23:11 - 2013-11-05 22:55 - 2401416517 ____C C:\Users\Daniel\Downloads\Minecraft Weltuntergangs Special _ Solar Apocalypse Mod _ [Deutsch] [Tim & Fabia.mp4
2013-11-05 22:31 - 2013-11-05 22:31 - 01972044 ____C C:\Users\Daniel\Desktop\Meteors Mod V2.11.2.zip
2013-11-05 20:51 - 2013-11-05 20:25 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TeamViewer
2013-11-05 20:24 - 2013-11-05 20:24 - 11430810 ____C C:\Users\Daniel\Downloads\TeamViewerPortable.zip
2013-11-05 20:22 - 2013-11-05 20:21 - 04550888 ____C (TeamViewer) C:\Users\Daniel\Downloads\TeamViewerQS_de.exe
2013-11-05 16:11 - 2013-11-01 16:12 - 00000000 ___DC C:\Users\Daniel\Downloads\rar verzeichnisse
2013-11-05 16:09 - 2013-11-01 16:13 - 00000000 ___DC C:\Users\Daniel\Downloads\programe
2013-11-05 16:08 - 2013-10-30 17:59 - 00000000 ___DC C:\Users\Daniel\Downloads\The.Shining.(DivX).(1997).DvD-Rip.(Steven Weber Version)
2013-11-05 16:08 - 2013-10-30 15:15 - 00000000 ___DC C:\Users\Daniel\Downloads\bilder
2013-11-05 15:17 - 2013-08-01 15:57 - 00007600 ____C C:\Users\Daniel\AppData\Local\Resmon.ResmonCfg
2013-11-05 15:08 - 2013-10-13 19:09 - 00000000 ___DC C:\Users\Daniel\Documents\Electronic Arts
2013-11-05 13:29 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-02 19:00 - 2013-08-21 22:22 - 00000000 ___DC C:\Users\Daniel\Desktop\spiele
2013-11-02 18:51 - 2013-11-02 18:51 - 00002787 ____C C:\Users\Daniel\Downloads\MTS_werismyki_1390695_RelieveBladderintheShower.rar
2013-11-02 18:47 - 2013-11-02 18:47 - 01553695 ____C C:\Users\Daniel\Downloads\MTS_velocitygrass_1393276_velocitygrass_nomosaic_1_63.zip
2013-11-02 18:33 - 2013-11-02 18:33 - 00250693 ____C C:\Users\Daniel\Downloads\NRaas_Overwatch_V109.zip
2013-11-02 18:24 - 2013-11-02 18:24 - 00000614 ____C C:\Users\Daniel\Downloads\getfile.php
2013-11-02 17:34 - 2013-10-13 18:42 - 00000000 ___DC C:\Program Files (x86)\Electronic Arts
2013-11-01 17:37 - 2013-11-01 17:18 - 00026624 ____C C:\Users\Daniel\Documents\Doe Heer und intruder Ausrüstung.xls
2013-11-01 16:14 - 2013-10-30 15:20 - 00000000 ___DC C:\Users\Daniel\Downloads\psx spiele und ds
2013-10-31 16:46 - 2013-09-08 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\IMVU
2013-10-31 07:34 - 2013-08-06 00:06 - 00000000 ___DC C:\ProgramData\firebird
2013-10-30 19:07 - 2013-10-30 18:34 - 110000000 ____C C:\Users\Daniel\Downloads\FdK1und2uzt58t88i6igv85688t5i889o58.part01.rar
2013-10-30 13:23 - 2013-08-03 15:06 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Dropbox
2013-10-30 13:23 - 2013-07-31 18:47 - 00000000 __RDC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-30 11:47 - 2013-08-03 15:10 - 00000000 __RDC C:\Users\Daniel\Dropbox
2013-10-27 22:09 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\Youcam
2013-10-27 22:07 - 2013-10-27 22:07 - 00000160 ____C C:\Users\Daniel\Downloads\stream (1).asx
2013-10-27 18:54 - 2013-08-06 01:59 - 00000000 ___DC C:\Users\Public\CyberLink
2013-10-27 17:46 - 2013-08-03 15:32 - 00000000 ___DC C:\Program Files (x86)\Winamp
2013-10-27 14:17 - 2013-10-27 14:17 - 00000000 ___DC C:\Program Files (x86)\Origin Games
2013-10-27 14:17 - 2013-10-27 14:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Origin
2013-10-27 14:17 - 2013-10-13 20:14 - 00000000 ___DC C:\ProgramData\Origin
2013-10-27 14:16 - 2013-10-27 14:16 - 00000000 ___DC C:\Program Files (x86)\Origin
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Notepad++
2013-10-27 05:56 - 2013-10-26 17:48 - 00000000 ___DC C:\Program Files (x86)\Notepad++
2013-10-27 05:56 - 2013-10-26 17:25 - 00000000 ___DC C:\Program Files (x86)\BitZipper
2013-10-26 23:47 - 2013-08-01 22:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Utherverse
2013-10-26 21:42 - 2013-07-31 19:56 - 00000000 ___DC C:\ProgramData\CyberLink
2013-10-26 17:29 - 2013-10-26 17:29 - 00000000 ___DC C:\Users\Daniel\Documents\My Extracted Files
2013-10-26 14:45 - 2013-08-03 15:32 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Winamp
2013-10-25 19:21 - 2013-08-01 16:06 - 00000000 ___DC C:\Users\Daniel\Documents\VirtualDJ
2013-10-25 03:00 - 2013-10-25 02:55 - 00000000 ___DC C:\Users\Daniel\Downloads\October Adult
2013-10-24 18:20 - 2013-07-31 21:11 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-24 18:20 - 2013-07-31 21:11 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-24 18:20 - 2013-07-31 21:11 - 00003822 ____C C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-24 18:20 - 2013-07-31 21:10 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Adobe
2013-10-24 16:51 - 2013-10-24 16:51 - 00004608 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf32.dll
2013-10-24 16:51 - 2013-10-24 16:51 - 00002272 ____C (Microsoft Corporation) C:\Windows\SysWOW64\w95inf16.dll
2013-10-24 16:51 - 2009-07-14 04:20 - 00000000 ___DC C:\Windows\Help
2013-10-24 16:51 - 2009-07-14 03:34 - 00000634 ____C C:\Windows\win.ini
2013-10-24 16:50 - 2013-10-24 16:50 - 00000000 ___DC C:\MicroProse
2013-10-24 16:08 - 2013-10-24 16:08 - 00002934 ____C C:\Windows\System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE}
2013-10-24 00:29 - 2013-08-01 16:01 - 00000870 ____C C:\Users\Public\Desktop\CCleaner.lnk
2013-10-23 12:44 - 2013-10-23 12:44 - 00000743 ____C C:\deltaStartup.log
2013-10-22 02:56 - 2013-10-22 02:55 - 03614933 ____C C:\Users\Daniel\Desktop\sani  jar of hearts.2wma.wma
2013-10-21 16:29 - 2013-10-21 16:29 - 00871408 ____C C:\Windows\system32\Drivers\sptd.sys
2013-10-21 14:59 - 2013-10-21 14:59 - 00002934 ____C C:\Windows\System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC}
2013-10-21 14:58 - 2013-10-21 14:58 - 00002934 ____C C:\Windows\System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261}
2013-10-21 14:55 - 2013-09-20 20:07 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-10-21 14:50 - 2013-10-21 14:50 - 00000000 ___DC C:\Team17
2013-10-20 15:47 - 2013-09-24 21:19 - 00000000 ___DC C:\Program Files (x86)\Anno 1701
2013-10-20 14:40 - 2013-10-20 14:40 - 00000000 ___DC C:\ProgramData\EA Core
2013-10-20 13:16 - 2013-08-01 16:01 - 00000000 ___DC C:\Program Files\CCleaner
2013-10-20 13:13 - 2013-09-22 10:57 - 00000000 ___DC C:\Windows\pss
2013-10-20 00:26 - 2013-10-20 00:26 - 00004886 ____C C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 00:26 - 2013-07-31 21:11 - 00000000 ___DC C:\Program Files (x86)\Java
2013-10-20 00:18 - 2013-10-20 00:18 - 01999220 ____C C:\Users\Daniel\Downloads\Kazuki Yamamoto - 3D Coffee Art.mp4
2013-10-18 23:48 - 2013-10-18 23:41 - 00000000 ___DC C:\Users\Daniel\AppData\Local\AChat
2013-10-18 23:17 - 2013-10-18 22:43 - 1275850836 ____C C:\Users\Daniel\blade.rar
2013-10-18 23:17 - 2013-07-31 18:47 - 00000000 ___DC C:\Users\Daniel
2013-10-18 19:58 - 2013-10-18 19:58 - 00000000 ___DC C:\Users\Daniel\BLADE
2013-10-17 10:49 - 2013-07-31 19:51 - 00002147 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 15:25 - 2013-10-16 15:24 - 00000000 ___DC C:\Users\Daniel\Desktop\daten
2013-10-16 10:12 - 2013-08-14 16:22 - 00000952 __SHC C:\ProgramData\KGyGaAvL.sys
2013-10-16 09:24 - 2013-10-16 09:23 - 00000000 ___DC C:\Users\Daniel\Documents\Mama 2013
2013-10-15 17:03 - 2013-10-15 17:03 - 00000070 ____C C:\Users\Daniel\Downloads\listen.pls
2013-10-15 15:51 - 2013-10-15 15:51 - 00000033 ____C C:\Users\Daniel\Downloads\listen.m3u
2013-10-14 19:40 - 2013-07-31 19:50 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-14 19:40 - 2013-07-31 19:50 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-14 16:25 - 2013-08-02 16:48 - 00001054 ____C C:\Users\Public\Desktop\Corel PaintShop Pro X5.lnk
2013-10-14 16:08 - 2013-07-31 23:44 - 00000000 ___DC C:\ProgramData\Corel
2013-10-14 15:47 - 2013-10-14 15:45 - 00000322 ____C C:\Users\Daniel\Documents\Corel PaintShop Pro X6.txt
2013-10-14 15:38 - 2013-10-14 15:02 - 00000000 ___DC C:\ProgramData\Protexis64
2013-10-14 15:01 - 2013-08-02 16:50 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Corel PaintShop Pro
2013-10-14 15:01 - 2013-08-01 16:05 - 00000000 ___DC C:\Users\Daniel\Documents\Corel PaintShop Pro
2013-10-14 15:00 - 2013-10-14 15:00 - 00000000 ___DC C:\Program Files\Common Files\Protexis
2013-10-14 14:58 - 2013-10-14 14:58 - 00000000 ___DC C:\Program Files\Corel
2013-10-14 14:55 - 2013-07-31 23:40 - 00000000 ___DC C:\Program Files (x86)\Corel
2013-10-14 14:26 - 2013-07-31 20:09 - 00000000 ___DC C:\Users\Daniel\AppData\Local\Cyberlink
2013-10-13 22:04 - 2013-10-13 20:16 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Origin
2013-10-13 20:14 - 2013-10-13 19:09 - 00000000 ___DC C:\ProgramData\Electronic Arts
2013-10-13 20:14 - 2009-07-14 04:20 - 00000000 ___DC C:\Program Files\Common Files\Microsoft Shared
2013-10-13 19:06 - 2013-10-13 19:06 - 00000000 ___DC C:\Program Files (x86)\Microsoft WSE
2013-10-13 05:22 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\TS3Client
2013-10-13 04:47 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Local\TeamSpeak 3 Client
2013-10-13 04:45 - 2013-10-13 04:45 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2013-10-12 12:37 - 2013-08-05 15:01 - 00000000 ___DC C:\Program Files\Adobe
2013-10-12 12:34 - 2013-07-31 21:15 - 00000000 ___DC C:\Program Files (x86)\Adobe
2013-10-12 12:20 - 2013-08-05 14:29 - 00001985 ____C C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2013-10-12 11:29 - 2013-08-14 16:20 - 00000000 ___DC C:\ProgramData\FLEXnet
2013-10-12 11:29 - 2013-07-31 21:14 - 00000000 ___DC C:\Users\Daniel\AppData\Roaming\Adobe
2013-10-12 09:12 - 2013-10-12 09:12 - 00000000 ___DC C:\ProgramData\InstallShield
2013-10-12 08:30 - 2013-10-12 08:30 - 00000000 ___DC C:\Program Files (x86)\Sierra
2013-10-12 08:25 - 2013-10-12 08:25 - 00000190 ____C C:\Windows\ODBCINST.INI
2013-10-12 00:06 - 2013-08-13 17:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\SecondLife
2013-10-11 12:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 10:12 - 2013-08-01 04:15 - 00000000 ___DC C:\Windows\Panther
2013-10-11 10:10 - 2013-09-23 06:08 - 03161280 ____C C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:37 - 2013-10-10 11:03 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-11 00:37 - 2013-10-10 11:03 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-11 00:36 - 2013-10-10 11:03 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 00:35 - 2013-10-11 00:35 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 00:35 - 2013-10-11 00:35 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 00:35 - 2013-10-11 00:35 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 00:35 - 2013-10-11 00:34 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-11 00:34 - 2013-10-10 11:03 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:03 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-11 00:34 - 2013-10-10 11:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-11 00:34 - 2013-10-10 11:02 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-11 00:26 - 2013-10-10 11:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-11 00:26 - 2013-10-10 11:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-11 00:26 - 2013-08-01 10:11 - 00000000 ___DC C:\Windows\system32\MRT
2013-10-11 00:22 - 2013-07-31 22:46 - 80541720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-11 00:14 - 2013-08-21 15:34 - 00000000 ___DC C:\Program Files (x86)\GameforgeLive
2013-10-11 00:10 - 2013-10-01 15:12 - 00000000 ___DC C:\Program Files (x86)\Rockstar Games
2013-10-11 00:09 - 2013-10-10 11:02 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-11 00:09 - 2013-10-10 11:02 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:02 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 00:09 - 2013-10-10 11:01 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-11 00:09 - 2013-10-01 19:26 - 00000000 ___DC C:\Users\Daniel\Documents\Rockstar Games
2013-10-11 00:01 - 2013-08-02 18:31 - 00000000 ___DC C:\Program Files (x86)\Microsoft Office
2013-10-10 23:59 - 2013-10-10 23:59 - 00000000 ___DC C:\Program Files (x86)\MSECache
2013-10-10 20:52 - 2013-08-13 09:16 - 00000000 ___DC C:\Users\Daniel\AppData\Local\PhoenixViewer
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 __RDC C:\Program Files (x86)\Skype
2013-10-10 18:44 - 2013-08-01 16:23 - 00000000 ___DC C:\ProgramData\Skype
2013-10-10 10:48 - 2013-09-24 21:34 - 00088480 ____C C:\Windows\system32\Drivers\atksgt.sys
2013-10-10 10:48 - 2013-09-24 21:34 - 00046400 ____C C:\Windows\system32\Drivers\lirsgt.sys

Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\AntiToolbarPackage.exe
C:\Users\Daniel\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Daniel\AppData\Local\Temp\comver.dll
C:\Users\Daniel\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Daniel\AppData\Local\Temp\DivXSetup.exe
C:\Users\Daniel\AppData\Local\Temp\drm_dialogs.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7270007.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7370012.dll
C:\Users\Daniel\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\Daniel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Daniel\AppData\Local\Temp\i4jdel1.exe
C:\Users\Daniel\AppData\Local\Temp\installerdll26202707.dll
C:\Users\Daniel\AppData\Local\Temp\jansi-64-git-Bukkit-1.5.2-R1.0-b2788jnks.dll
C:\Users\Daniel\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Daniel\AppData\Local\Temp\MP3_Launcher_1_27_0_0.exe
C:\Users\Daniel\AppData\Local\Temp\Quarantine.exe
C:\Users\Daniel\AppData\Local\Temp\reieyn3k.dll
C:\Users\Daniel\AppData\Local\Temp\ResetDevice.exe
C:\Users\Daniel\AppData\Local\Temp\SIntf16.dll
C:\Users\Daniel\AppData\Local\Temp\SIntf32.dll
C:\Users\Daniel\AppData\Local\Temp\SIntfNT.dll
C:\Users\Daniel\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Daniel\AppData\Local\Temp\UninstallEADM.dll
C:\Users\Daniel\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Daniel\AppData\Local\Temp\_is22F5.exe
C:\Users\Daniel\AppData\Local\Temp\_is3432.exe
C:\Users\Daniel\AppData\Local\Temp\_is9C38.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-01 18:21

==================== End Of Log ============================

--- --- ---

saufbiene 09.11.2013 19:14

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Daniel at 2013-11-09 19:10:34
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

4shared Desktop (x32)
64 Bit HP CIO Components Installer (Version: 4.2.1)
AC3Filter 2.6.0b (x32 Version: 2.6.0b)
AChat 1.17 high detail textures and additional music (x32)
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.2.443)
Adobe Acrobat 9 Pro - English, Français, Deutsch (x32 Version: 9.5.5)
Adobe Acrobat 9.5.5 - CPSID_83708 (x32)
Adobe AIR (x32 Version: 3.8.0.870)
Adobe Anchor Service CS4 (x32 Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Asset Services CS4 (x32 Version: 4)
Adobe Bridge CS4 (x32 Version: 3)
Adobe CMaps CS4 (x32 Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0)
Adobe Color EU Recommended Settings CS4 (x32 Version: 2.0)
Adobe Color JA Extra Settings CS4 (x32 Version: 2.0)
Adobe Color NA Extra Settings CS4 (x32 Version: 2.0)
Adobe Color Video Profiles CS CS4 (x32 Version: 2.0)
Adobe Creative Suite 4 Design Premium (x32 Version: 4.0)
Adobe CSI CS4 (x32 Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (x32 Version: 2.0)
Adobe Device Central CS4 (x32 Version: 2)
Adobe Dreamweaver CS4 (x32 Version: 10.0)
Adobe Drive CS4 (x32 Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe Dynamiclink Support (x32 Version: 1)
Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0)
Adobe Extension Manager CS4 (x32 Version: 2.0)
Adobe Fireworks CS4 (x32 Version: 10.0)
Adobe Flash CS4 (x32 Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI others (x32 Version: 3.0)
Adobe Flash CS4 STI-other (x32 Version: 10.0)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Fonts All (x32 Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS4 (x32 Version: 14.0)
Adobe InDesign CS4 (x32 Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (x32 Version: 6.0)
Adobe InDesign CS4 Common Base Files (x32 Version: 6.0)
Adobe InDesign CS4 Icon Handler (x32 Version: 6.0)
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0)
Adobe Linguistics CS4 (x32 Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Encoder CS4 (x32 Version: 1.0)
Adobe Media Encoder CS4 Importer (x32 Version: 1.0)
Adobe Media Player (x32 Version: 0.0.0)
Adobe Media Player (x32 Version: 1.1)
Adobe Output Module (x32 Version: 2.0)
Adobe PDF Library Files CS4 (x32 Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (x32 Version: 11.0)
Adobe Photoshop CS4 Support (x32 Version: 11.0)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Adobe Search for Help (x32 Version: 1.0)
Adobe Service Manager Extension (x32 Version: 1.0)
Adobe Setup (x32 Version: 2.0)
Adobe SGM CS4 (x32 Version: 3.0)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.4.144)
Adobe SING CS4 (x32 Version: 2.0)
Adobe Type Support CS4 (x32 Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (x32 Version: 6.0.0)
Adobe Version Cue CS4 Server (x32 Version: 4.0)
Adobe WinSoft Linguistics Plugin (x32 Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (x32 Version: 2.0)
AdobeColorCommonSetCMYK (x32 Version: 2.0)
AdobeColorCommonSetRGB (x32 Version: 2.0)
Age of Wonders Shadow Magic (x32)
Aimersoft DRM Media Converter(Build 1.4.7.2) (x32)
AION Free-to-Play (x32)
ANNO 1503 (x32)
Anno 1602 (x32)
Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03)
Anno 1701 (x32 Version: 1.04)
ANNO 2070 (x32 Version: 1.0.0.0)
AntiToolbar (Version: 1.0.0.5)
Anti-Twin (Installation 07.08.2013) (x32)
Ashampoo Burning Studio 12 v.12.0.5 (x32 Version: 12.0.5)
Ashampoo Photo Commander (x32 Version: 8.3.2)
Ashampoo Photo Optimizer (x32 Version: 3.12.0)
Ashampoo Snap (x32 Version: 3.4.1)
BufferChm (x32 Version: 100.0.170.000)
Caesar 3 (x32)
Caesar IV (x32 Version: 1.2)
CCleaner (Version: 4.06)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
CloneDVD 6.0.0.1 (x32)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
Connect (x32 Version: 1.0.0.1)
Contents (x32 Version: 15.0.0.258)
Corel KPT Collection (x32 Version: 1.0.0.46)
Corel KPT Collection (x32 Version: 1.00.0000)
Corel PaintShop Pro Brush Content (x32 Version: 1.0.0.39)
Corel PaintShop Pro Brush Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.42)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.44)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.45)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.63)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.64)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.65)
Corel PaintShop Pro Misc Content (x32 Version: 1.0.0.66)
Corel PaintShop Pro Misc Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.0.0.41)
Corel PaintShop Pro Picture Frame Content (x32 Version: 1.00.0000)
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.0.0.40)
Corel PaintShop Pro Picture Tube Content (x32 Version: 1.00.0000)
Corel PaintShop Pro X5 (x32 Version: 15.0.0.183)
Corel PaintShop Pro X5 (x32 Version: 15.3.0.8)
Corel PaintShop Pro X6 (x32 Version: 16.0.0.113)
Corel Shell Extension - 64Bit (Version: 14.0)
Corel VideoStudio Pro X5 (x32 Version: 15.0.0.258)
CorelDRAW Essentials 4 - Content (x32 Version: 4.0)
CorelDRAW Essentials 4 - Draw (x32 Version: 4.0)
CorelDRAW Essentials 4 - Extra Content (x32 Version: 4.0)
CorelDRAW Essentials 4 - Extra Content (x32)
CorelDRAW Essentials 4 - Filters (x32 Version: 4.0)
CorelDRAW Essentials 4 - ICA (x32 Version: 4.0)
CorelDRAW Essentials 4 - IPM - No VBA (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang BR (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang DE (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang EN (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang ES (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang FR (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang IT (x32 Version: 4.0)
CorelDRAW Essentials 4 - Lang NL (x32 Version: 4.0)
CorelDRAW Essentials 4 - PHOTO-PAINT (x32 Version: 4.0)
CorelDRAW Essentials 4 - Windows Shell Extension (x32 Version: 1.1)
CorelDRAW Essentials 4 - Windows Shell Extension (x32)
CorelDRAW Essentials 4 (x32 Version: 4.0)
CorelDRAW Essentials 4 (x32)
CustomerResearchQFolder (x32 Version: 1.00.0000)
CyberLink LabelPrint (x32 Version: 2.5.3418)
CyberLink MediaShow (x32 Version: 5.0.1410a)
CyberLink MediaShow Espresso (x32 Version: 5.5.1412_24021a)
CyberLink PhotoNow (x32 Version: 1.1.0.6904)
CyberLink Power2Go (x32 Version: 6.1.3802)
CyberLink PowerDirector (x32 Version: 8.0.3224a)
CyberLink PowerDVD 10 (x32 Version: 10.0.3106.02)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306)
CyberLink PowerProducer (x32 Version: 5.0.2.2429)
CyberLink YouCam (x32 Version: 3.1.3428)
Darkest of Days (x32 Version: 1.0)
Delete Virtual-Mate Launcher (x32 Version: 1.0.0)
DesignPro 5 (x32 Version: 5.5.708)
DeviceDiscovery (x32 Version: 100.0.190.000)
DeviceManagementQFolder (x32 Version: 1.00.0000)
Die Siedler III Gold Edition (x32)
Die Sims™ 3 (x32 Version: 1.63.5)
Die Sims™ 3 70er, 80er & 90er Accessoires (x32 Version: 17.0.77)
Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55)
Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48)
Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96)
Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44)
Die Sims™ 3 Inselparadies (x32 Version: 19.0.101)
Die Sims™ 3 Into the Future (x32 Version: 21.0.150)
Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136)
Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62)
Die Sims™ 3 Late Night (x32 Version: 6.0.81)
Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38)
Die Sims™ 3 Movie-Accessoires (x32 Version: 20.0.53)
Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86)
Die Sims™ 3 Showtime (x32 Version: 12.0.273)
Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73)
Die Sims™ 3 Supernatural (x32 Version: 15.0.135)
Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87)
Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84)
Die Sims™ 3 Wildes Studentenleben (x32 Version: 18.0.126)
Die*Sims™*3 Erstelle einen Sim (x32 Version: 1.0.26)
DivX-Setup (x32 Version: 2.6.1.87)
DivxToDVD 0.5.2b (x32 Version: 0.5.2b)
Drakensang (x32)
Dropbox (HKCU Version: 2.0.26)
DVDFab 9.0.6.3 (09/09/2013) (x32)
Firebird 2.5.0.26074 (Win32) (x32 Version: 2.5.0.26074)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0)
Free Audio Dub version 1.7.9.908 (x32 Version: 1.7.9.908)
Free AVI Video Converter version 5.0.28.827 (x32 Version: 5.0.28.827)
FreeRIP MP3 Converter 4.3 (x32 Version: 4.3)
Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0)
GameSpy Arcade (x32)
Ghost Recon Online (EU) (HKCU Version: 1.34.1166.2)
Google Chrome (x32 Version: 30.0.1599.101)
Google Update Helper (x32 Version: 1.3.21.165)
Haali Media Splitter (x32)
HP Color LaserJet CM1312 MFP Series 5.1 (Version: 5.1)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
hppCLJCM1312 (x32 Version: 005.001.00142)
hppFaxDrvCM1312 (x32 Version: 005.000.00001)
hppFaxUtilityCM1312 (x32 Version: 005.001.00137)
hppFonts (x32 Version: 001.001.00061)
hppManualsCM1312 (x32 Version: 005.001.00145)
hppQFolderCM1312 (x32 Version: 1.00.0000)
hppScanToCM1312 (x32 Version: 005.001.00140)
hppSendFaxCM1312 (x32 Version: 005.000.00001)
hppusgCM1312 (x32 Version: 1.1.0.1)
ICA (x32 Version: 15.0.0.183)
ICA (x32 Version: 15.0.0.258)
ICA (x32 Version: 16.0.0.113)
IMVU Avatar Chat Software (HKCU)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2827)
IPM_PSP_COM (x32 Version: 15.0.0.183)
IPM_PSP_COM (x32 Version: 16.0.0.113)
IPM_PSP_COM64 (Version: 16.0.0.113)
IPM_VS_Pro (x32 Version: 15.0)
ISCOM (x32 Version: 15.0.0.258)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
King Arthur - The Role-playing Wargame (x32)
kuler (x32 Version: 2.0)
LastChaosGER (x32 Version: 1.00.000)
Launch Manager (x32 Version: 1.5.1.2)
Magic ISO Maker v5.5 (build 0272) (x32)
MagicDisc 2.7.106 (x32)
MAGIX Burn routines (Version: 11.0.0.233)
MAGIX Content und Soundpools (x32 Version: 1.0.0.0)
MAGIX Goya burnR (MSI) (Version: 4.3.2.0)
MAGIX Goya burnR (MSI) (x32 Version: 4.3.2.0)
MAGIX Independence Libraries Common Files (Version: 3.1.0.0)
MAGIX Independence Libraries Common Files (x32 Version: 3.1.0.0)
MAGIX Independence Pro 3.1 RTAS-Plugins (Version: 3.1.0.0)
MAGIX Independence Pro 3.1 RTAS-Plugins (x32 Version: 3.1.0.0)
MAGIX Independence Pro 3.1 VST-Plugins (Version: 3.1.0.0)
MAGIX Independence Pro 3.1 VST-Plugins (x32 Version: 3.1.0.0)
MAGIX Independence Pro Software Suite 3.1 (Version: 3.1.0.69)
MAGIX Independence Pro Software Suite 3.1 (x32 Version: 3.1.0.69)
MAGIX Music Maker 2013 Premium (Demosongs) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Demosongs) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Einführungsvideos) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Einführungsvideos) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium (Visuals) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Visuals) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (x32 Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium Update (Version: 19.0.6.58)
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0)
MAGIX Music Maker Hip Hop Edition 5 (Version: 19.0.5.57)
MAGIX Music Maker Hip Hop Edition 5 (x32 Version: 19.0.5.57)
MAGIX Music Maker Hip Hop Edition 5 Trial Soundpools (Version: 1.0.0.0)
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (Version: 17.0.2.6)
MAGIX Music Maker Tait Eita Powered by Harris & KD Supier (x32 Version: 17.0.2.6)
MAGIX Music Maker Techno Edition 5 (Version: 19.0.5.57)
MAGIX Music Maker Techno Edition 5 (x32 Version: 19.0.5.57)
MAGIX Music Maker Techno Edition 5 Trial Soundpools (Version: 1.0.0.0)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 100.0.170.000)
Mass Effect (x32 Version: 1.00)
Medion Home Cinema (x32 Version: 8.0.2213)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Mission Pack (x32)
MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MySQL Connector/ODBC 3.51 (x32 Version: 3.51.12)
NVIDIA PhysX (x32 Version: 9.09.0814)
OpenAL (x32)
Opera 12.15 (x32 Version: 12.15.1748)
Origin (x32 Version: 9.3.10.4710)
PDF Settings CS4 (x32 Version: 9.0)
Personal ID (x32 Version: 1.8.5.202)
Phoenix Viewer 1.6.0.1691 (x32)
Photoshop Camera Raw (x32 Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Pixel Bender Toolkit (x32 Version: 1.0)
PlanetSide 2 (HKCU Version: 1.0.3.183)
Power MP3 WMA Converter 2011, (ver 6.1) (x32 Version: 6.1)
ProtectDisc Driver, Version 11 (x32 Version: 11.0.0.13)
PSPPContent (x32 Version: 15.3.0.8)
PSPPContent (x32 Version: 16.0.0.113)
PSPPHelp (x32 Version: 15.0.0.183)
PSPPHelp (x32 Version: 16.1.0.18)
PSPPro64 (Version: 15.0.0.183)
PSPPro64 (Version: 16.0.0.113)
PunkBuster Services (x32 Version: 0.993)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6237)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30121)
REALTEK Wireless LAN Driver (x32 Version: 1.00.0180)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0)
SAM3 (remove only) (x32)
Samplitude Music Studio 2013 (Demoprojekte) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Demoprojekte) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Independence) (Version: 1.1.0.0)
Samplitude Music Studio 2013 (Independence) (x32 Version: 1.1.0.0)
Samplitude Music Studio 2013 (Objekt-Synthesizer) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Objekt-Synthesizer) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (Version: 1.0.0.0)
Samplitude Music Studio 2013 (Solo Jam-Session & Easy-Recording Content) (x32 Version: 1.0.0.0)
Samplitude Music Studio 2013 (Version: 19.0.0.15)
Samplitude Music Studio 2013 (x32 Version: 19.0.0.15)
Samplitude Music Studio 2013 Soundpools (Version: 1.0.0.0)
SecondLifeViewer (remove only) (x32)
Secret City (x32 Version: 1.9.4152)
Setup (x32 Version: 15.0.0.183)
Setup (x32 Version: 15.0.0.258)
Setup (x32 Version: 16.0.0.113)
Share (x32 Version: 15.0.0.258)
Share64 (Version: 15.0.0.258)
SHOUTcast Source DSP Plug-in v2 (x32 Version: 2.3.2)
Sierra-Dienstprogramme (x32)
Skype™ 6.9 (x32 Version: 6.9.106)
SmartSound Common Data (x32 Version: 1.1.0)
SmartSound Quicktracks 5 (x32 Version: 5.1.6)
Steam (x32 Version: 1.0.0.0)
Suite Shared Configuration CS4 (x32 Version: 1.0)
swMSM (x32 Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 14.0.19.0)
System Requirements Lab for Intel (x32 Version: 4.5.15.0)
TeamSpeak 3 Client (HKCU Version: 3.0.13)
TERA (x32 Version: 7)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
TrayApp (x32 Version: 100.0.170.000)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Virtual DJ Pro Full - Atomix Productions (x32)
Vita 2 (Version: 1.0.0.0)
Vita 2 Zusatzcontent (Version: 1.0.0.0)
Vita Bass Machine (Version: 1.0.0.0)
Vita Rock Drums (Version: 1.0.0.0)
Vita String Ensemble (Version: 1.0.0.0)
Vita World Percussion (Version: 1.0.0.0)
VLC media player 2.0.8 (Version: 2.0.8)
VSClassic (x32 Version: 15.0.0.258)
VSHelp (x32 Version: 15.0.0.258)
VSPro (x32 Version: 15.0.0.258)
WebReg (x32 Version: 100.0.170.000)
Winamp (x32 Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Media Encoder 9 Series (x32 Version: 9.00.2980)
Windows Media Encoder 9 Series (x32)
WinRAR 5.00 (64-Bit) (Version: 5.00.0)
Worms Armageddon (x32)
Worms World Party (x32)
X10 Hardware(TM) (x32)

==================== Restore Points  =========================

08-11-2013 19:53:39 DirectX wurde installiert
08-11-2013 19:58:12 Installed Ubisoft Game Launcher
09-11-2013 09:34:57 Installed Microsoft Fix it 50267

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-09-03 17:19 - 00000833 ___AC C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0052B3E0-CD48-4645-9B05-2DD2D5FE59F2} - System32\Tasks\{7F2BEF3C-1702-4CE3-92A5-31BBBA30A504} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {0146E4C2-13DC-4368-A6B7-D5CF252D6997} - System32\Tasks\{EEEDB95D-08F3-442A-8D8B-D3DA84E659E3} => E:\AUTORUN.EXE
Task: {05463694-75B9-4BE3-9B3B-800D10AB67E5} - System32\Tasks\{92A80300-B86A-4486-83DF-40A2210AD209} => C:\Voelker2\DieVölker2\bin\Game.exe
Task: {06DEDCB4-F84F-4B5C-8B9B-F240DDFF90F2} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2013-08-01] (Microsoft Corporation)
Task: {10CB193C-53C1-4E38-BC3B-8BE0F0EFBA30} - System32\Tasks\{0FF87F05-F93F-4EA6-BB4C-42AC41C141F3} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {141DAE6E-AB19-4698-A390-AA3577138437} - System32\Tasks\{94C030CB-4D91-45C1-A34E-BBA10E012375} => E:\S2\SETUP.EXE
Task: {146E7991-4825-4936-A698-6A2A9ABCB104} - System32\Tasks\{3C36117E-8926-4783-AC4C-D1B8C38F2D02} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {158F82B5-9D27-41D4-9C70-42B888C7C636} - System32\Tasks\{40CF2673-31FE-42B2-B5D6-9EDA7CA7E074} => E:\S2\SETUP.EXE
Task: {15EBF901-034E-4560-86AD-430162A3F85F} - System32\Tasks\{6D05EFDD-B539-4AA5-AA7C-3C3F5EA8B7E7} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {16685128-43F7-4FEB-8EF9-8ED19E50FAB3} - System32\Tasks\{BDEFC5EB-FF3E-4DB9-922F-18F92A8F9501} => E:\S2\SETUP.EXE
Task: {182BD8E5-8F56-4489-B03E-752E05F8B240} - System32\Tasks\{CDA55D36-8DF0-41E4-B91F-A867A295CA40} => E:\S2\SETUP.EXE
Task: {1F9EF73A-547A-499D-81A8-38F5BAAB9D90} - System32\Tasks\{1FB1189B-4A13-4061-8C74-1464D7BFBABF} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {21712D36-1001-44CB-854A-5AD64B1DC146} - System32\Tasks\{BA3F1772-A7D2-4B5A-A09C-0209BB7D8008} => E:\S2\SETUP.EXE
Task: {2275B0EB-3BB1-4D92-AAA9-9E3AF4E64338} - System32\Tasks\{B2DF6533-1AB8-4F64-87E5-0C7F2B7A8261} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {23FC5B23-2D5F-41BB-8197-E5BF90F1094C} - System32\Tasks\{68D46493-E0E4-4139-9E3D-DE0764CB9EA8} => E:\AUTORUN.EXE
Task: {256AB0F1-34E6-44DD-8476-F7FCA8DAAA9B} - System32\Tasks\{966F5682-3102-46EB-9C86-3634FFFE6CFA} => E:\S2\SETUP.EXE
Task: {29CE8A34-DC14-442B-8626-4D134A82C9AE} - System32\Tasks\{E856EACC-A5FB-412B-8CFA-3BB71A8C8E08} => E:\S2\SETUP.EXE
Task: {2B0CD943-0873-489B-8C70-85C6370771A3} - System32\Tasks\{12AE0E5B-084A-4433-90FF-9E76E054AACB} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {2B1FFE5E-812A-4AEC-8869-70FAAAC46EE2} - System32\Tasks\{8FB71093-FDC3-4660-9BA9-AB685F171D45} => C:\Program Files (x86)\Anno 1701\Anno1701.exe [2007-10-20] (Related Designs Software GmbH)
Task: {2BBFF583-2992-496F-BC5F-E4CFA4144CC7} - System32\Tasks\{AED448DE-9E65-4A47-8CED-BCACCE365CB7} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {316BBC71-9744-421E-B08F-4824A90A29EA} - System32\Tasks\{37FCF798-62A0-4DDD-8915-98DF52D67371} => C:\Users\Daniel\Desktop\MassEffect_BDtS_G_a.exe
Task: {35440900-5B0D-45C6-9CA3-1D1630231902} - System32\Tasks\{A1F70949-7DB6-4A23-8B76-293576F1B899} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {40F39DB0-F75F-4F8F-8AA5-A7327A1E290D} - System32\Tasks\{AE5B5A87-81B2-42A9-9A74-550525F4940F} => C:\Program Files (x86)\JoWooD\DieVölker2\Unwise.exe
Task: {41A87A6B-C582-4F2D-8597-A723964CC71A} - System32\Tasks\{5D0B6982-DE4D-4CC0-AB2B-98754F07700B} => C:\Die Völker 2\DieVölker2\bin\Game.exe
Task: {451D621F-6FFD-4089-93FE-270A9D2DE6DA} - System32\Tasks\{E2B047D4-D8BD-4693-B5B3-010EF3D97A56} => E:\bhvstart.exe
Task: {47DF6057-A1FD-4A77-A813-3F691D2DDE1F} - System32\Tasks\{810EBF1A-8F17-441C-B563-3C43E33C03CD} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {48A3C185-9AC2-4F2F-940D-DA73CE675CE4} - System32\Tasks\{073A5D00-C4F9-4990-A885-8D366629D006} => E:\S2\SETUP.EXE
Task: {5E3F78E3-D239-4E26-B09A-1E1D02A3A0F4} - System32\Tasks\{D2222B24-F51D-4DBD-B431-AC065B5CBCA9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {6AAE623A-C236-49D2-BF16-6399AE2B7AE2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-31] (Google Inc.)
Task: {6BD68BC3-51C8-411C-AFA6-8F6729835575} - System32\Tasks\{131AF74A-19DF-443F-B4C1-82A8AA55497A} => E:\S2\SETUP.EXE
Task: {7A4636B7-F05B-4249-8AB0-DAFF11C962A7} - System32\Tasks\{B515B6F0-4FFF-4CBA-893E-D3FCA3106B64} => E:\S2\SETUP.EXE
Task: {7C9D8C03-6A35-487F-9016-E7A5E53BA833} - System32\Tasks\{17F07E10-EA40-481E-888D-AB26AFE52FEE} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {7EF75918-6B2B-4300-888A-ED73DEBECBBF} - System32\Tasks\{3BE362E2-E75B-429E-9FC4-7B3B8D11B963} => E:\S2\SETUP.EXE
Task: {805D9E42-8317-4C78-82F6-946B5DE8A0C7} - System32\Tasks\{678365FC-379B-4E24-8568-D579CE2F2C7E} => E:\S2\SETUP.EXE
Task: {8C335720-465F-4ACF-97C0-6E46FA18E7E9} - System32\Tasks\{F15A6F01-F619-4817-90FB-C09F19CB63F5} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {91F56EAD-6C3B-436A-A540-1B3C95D9A052} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-24] (Adobe Systems Incorporated)
Task: {9431E549-F644-4FE1-98C5-C72AC9CD37ED} - System32\Tasks\{652A2BC8-55C4-41C0-8B47-06EA583CE2D3} => E:\S2\SETUP.EXE
Task: {953A719E-FDEC-4852-BCC9-1459D68B3BC4} - System32\Tasks\{FBB1652A-75F8-4D32-BA6C-0BD7071B4B4A} => E:\S2\SETUP.EXE
Task: {9C100C66-5F10-4548-8B69-E3CDB0BF606D} - System32\Tasks\{4994E248-B0AD-46CA-AF2E-310612827F2E} => E:\S2\SETUP.EXE
Task: {9E16B815-46D6-4F9B-A140-C810E8BD3C46} - System32\Tasks\{87BD9F31-A0C4-47D4-83F6-B3EEAB2B4AEB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {A4EAE39D-C22A-4B89-9758-6DFFD52E1476} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-31] (Google Inc.)
Task: {AB9A30AF-E579-445E-A157-A50D32A862FA} - System32\Tasks\{1BC5009A-C623-4DA0-9118-CADA3959EEAA} => E:\S2\SETUP.EXE
Task: {AC3B6A3B-E516-41A0-BE7B-AE74D6F05EE5} - System32\Tasks\{26F8FEE5-EBEF-4BF2-9960-B3F3C8A758EC} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {ADCDF35A-0D81-4315-B30C-9FAC42DDAE19} - System32\Tasks\{FBFC2A81-70A5-4C34-AD06-B257CD752FE9} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {B0ADE302-1717-472E-912A-21887DE485B5} - System32\Tasks\{C5EB8D0E-8B8B-43C8-8016-A6FCC462946D} => C:\Program Files (x86)\CloneDVD6\MainApp.EXE [2012-11-27] (Aviosoft.)
Task: {B48CDE2F-2934-4D81-BA37-A4CC53492B70} - System32\Tasks\{7126DAF6-E7A6-4025-B30F-0E113A7B46D4} => C:\Program Files (x86)\JoWooD\DieVölker2\bin\Game.exe
Task: {B6184494-F268-4AA5-A390-4FC97BCD71CE} - System32\Tasks\{AC7D1521-F5AE-49AD-9106-6809CBEB4215} => E:\S2\SETUP.EXE
Task: {BCEBC503-CF3B-45A5-9650-966FF580E545} - System32\Tasks\{B5DF1DB1-C0F9-480C-9281-BB0E6C2EB486} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {C191FDC0-4CF1-4F8F-9E82-10875ABED458} - System32\Tasks\{69044440-C839-428E-8079-6D3979B6842D} => E:\S2\SETUP.EXE
Task: {C409ADF5-FF12-4451-B6D1-ABF4D1DC6510} - System32\Tasks\{41DDBE48-43A3-48E0-9048-FF8D6F08DF4F} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {C67A266A-5DC1-41D6-BADD-BC0F4B90CCA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {CD11ECCA-157C-43CA-B7A7-35C95D3EB1E0} - System32\Tasks\{55B58783-E133-4F90-9909-7A0BA16C1073} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {CFE9CA76-1416-4888-BDB0-CF30D54F1E41} - System32\Tasks\{BE174E91-202D-4B20-8B77-A9509C30AF97} => E:\S2\SETUP.EXE
Task: {D24DA4B0-1A08-4A6F-92AB-842D16821219} - System32\Tasks\{5BA2B270-829E-4A02-BE12-DBCFC39F7AFC} => C:\Team17\Worms World Party\wwp.exe [2001-05-14] (Team17 Software Ltd)
Task: {D5475704-31C1-4F9A-9F96-87742F55F1B8} - System32\Tasks\{396AB30D-E0FA-42C6-853F-325CA099A4CA} => C:\Program Files (x86)\Zylom Games\Chocolatier Deluxe\chocolatier.exe
Task: {DAA47877-F275-4DC4-8719-853FA4CA95EE} - System32\Tasks\{663B9866-54C7-46F1-BAAF-0F7203E79B3B} => C:\ANNO1602\1602.EXE [1998-02-16] (MAX DESIGN)
Task: {E057A7C3-A541-43F2-9106-667F7102D12D} - System32\Tasks\{3B22FD6B-6978-4EC1-867B-3AEAC82D7C80} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: {E062A614-05FF-4598-85EE-06AD7420CC8B} - System32\Tasks\{ED0A83FB-4A12-4E5A-B587-37357929ACB1} => C:\Users\Daniel\Desktop\c3up11De.EXE
Task: {E92D482A-975D-487D-BF28-EAFEB9F3B2A1} - System32\Tasks\{DCB5CC94-301F-46D1-9D76-95232ED99F04} => E:\S2\SETUP.EXE
Task: {E9D3F432-A90C-4B1A-8088-6A66F9FF9253} - System32\Tasks\{0C327DCE-02DB-495E-B0EE-43000B4098DE} => C:\BlueByte\Siedler3\s3.exe [2000-02-15] (Blue Byte )
Task: {EC390F5C-2E7E-4509-A5AC-1586E03077EB} - System32\Tasks\{13AC6F75-921C-4FC2-9162-219DC0C4B4EB} => C:\Program Files (x86)\Anno 1701\Rollback\Anno1701.exe [2006-10-05] (Related Designs Software GmbH)
Task: {F423C561-80AB-48ED-B98F-22F5E35F9576} - System32\Tasks\{50E458ED-E7F4-4DB3-A9B8-E8FEBE776D73} => E:\DieVoelkerGE.exe
Task: {FA534E6C-82BF-413F-A76C-44FAF30F4156} - System32\Tasks\{A2C44D26-5E7A-4773-B378-D2EAB102F3DB} => C:\Program Files (x86)\Anno 1701\Anno1701AddOn.exe [2007-09-25] (Related Designs Software GmbH)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-03-14 17:28 - 2013-03-14 17:28 - 00653824 ____C () C:\Program Files (x86)\4shared Desktop\CMenu64.dll
2012-01-10 20:12 - 2012-01-10 20:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2009-11-02 13:20 - 2009-11-02 13:20 - 00619816 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 13:23 - 2009-11-02 13:23 - 00013096 ____C () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2013-10-15 13:34 - 2009-02-27 15:39 - 00019968 ____C () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2013-08-29 01:25 - 2013-08-29 01:25 - 00100688 ____C () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00835584 ____C () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00093696 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00094208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00057344 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00096256 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00062976 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00067072 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00158208 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00312832 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00038912 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00073728 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2013-09-20 13:36 - 2013-09-20 13:36 - 00101888 ____C () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/08/2013 09:49:36 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:36 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:36 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:49:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhängige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2013 09:22:48 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: anno5.exe, Version: 2.0.7780.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: anno5.exe, Version: 2.0.7780.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x01ffbccf
ID des fehlerhaften Prozesses: 0x1280
Startzeit der fehlerhaften Anwendung: 0xanno5.exe0
Pfad der fehlerhaften Anwendung: anno5.exe1
Pfad des fehlerhaften Moduls: anno5.exe2
Berichtskennung: anno5.exe3

Error: (11/08/2013 06:24:55 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (11/09/2013 10:41:21 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HP CUE DeviceDiscovery Service" wurde nicht richtig gestartet.

Error: (11/09/2013 10:40:23 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (11/09/2013 10:40:00 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BuddyVM" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (11/09/2013 10:40:00 AM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/09/2013 10:37:06 AM) (Source: Microsoft-Windows-DNS-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (11/09/2013 10:23:30 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HP CUE DeviceDiscovery Service" wurde nicht richtig gestartet.

Error: (11/09/2013 10:22:38 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (11/09/2013 10:22:09 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BuddyVM" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275

Error: (11/09/2013 10:22:09 AM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Program Files (x86)\VMLaunch\BuddyVM.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (11/08/2013 09:39:34 PM) (Source: NetBT) (User: )
Description: Der Name "WORKGROUP      :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.2.104
registriert werden. Der Computer mit IP-Adresse 192.168.2.105 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.


Microsoft Office Sessions:
=========================
Error: (11/08/2013 09:49:36 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\DivXPropertyHandler.dll

Error: (11/08/2013 09:49:36 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\DivXThumbnailProvider.dll

Error: (11/08/2013 09:49:36 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\ACMWrapperDMO.dll

Error: (11/08/2013 09:49:35 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\ACMWrapperDMO.dll

Error: (11/08/2013 09:49:33 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXMFSource.dll

Error: (11/08/2013 09:49:19 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

Error: (11/08/2013 09:22:48 PM) (Source: Application Error)(User: )
Description: anno5.exe2.0.7780.000000000anno5.exe2.0.7780.000000000c000000501ffbccf128001cedcbfd5e660f3C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\anno5.exeC:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\anno5.exe881abf5c-48b3-11e3-a7ba-00262dc36228

Error: (11/08/2013 06:24:55 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe


CodeIntegrity Errors:
===================================
  Date: 2013-11-09 10:40:00.851
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-09 10:40:00.771
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-09 10:22:09.980
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-09 10:22:09.880
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 21:37:47.245
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 21:37:47.151
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 11:51:05.940
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 11:51:05.846
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 11:22:20.041
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-11-08 11:22:19.941
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\VMLaunch\BuddyVM.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 54%
Total physical RAM: 3893.49 MB
Available physical RAM: 1789.43 MB
Total Pagefile: 7785.16 MB
Available Pagefile: 4891.96 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:546.25 GB) (Free:120.66 GB) NTFS
Drive d: (Recover) (Fixed) (Total:48.83 GB) (Free:6.12 GB) NTFS
Drive e: (WXPOEM_DE) (CDROM) (Total:0.49 GB) (Free:0 GB) CDFS
Drive g: (EOS_DIGITAL) (Removable) (Total:3.68 GB) (Free:3.66 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=546 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=49 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1023 MB) - (Type=12)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================

bitte sehr :)

schrauber 10.11.2013 07:28

wie oft kommt denn diese Meldung?

saufbiene 10.11.2013 13:12

immer im leerlauf des pcs
also sehr odt manchmal beim hochfahren runterfahren etc.

auch wen ich mal nix mache und nur mal den pc laufen lasse

schrauber 10.11.2013 16:16

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\setup.exe


Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Irgendwelche externen Medien am Rechner angeschlossen?

saufbiene 10.11.2013 16:47

Code:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-11-2013
Ran by Daniel at 2013-11-10 16:42:56 Run:1
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
MountPoints2: {302545fa-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {30254619-25dd-11e3-8032-00262dc36228} - I:\AutoRun.exe
MountPoints2: {dc86d06a-fa04-11e2-b7d0-806e6f6e6963} - E:\setup.exe
*****************

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{302545fa-25dd-11e3-8032-00262dc36228} => Key deleted successfully.
HKCR\CLSID\{302545fa-25dd-11e3-8032-00262dc36228} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{30254619-25dd-11e3-8032-00262dc36228} => Key deleted successfully.
HKCR\CLSID\{30254619-25dd-11e3-8032-00262dc36228} => Key not found.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dc86d06a-fa04-11e2-b7d0-806e6f6e6963} => Key deleted successfully.
HKCR\CLSID\{dc86d06a-fa04-11e2-b7d0-806e6f6e6963} => Key not found.

==== End of Fixlog ====

das einzigste angeschlossene ist eine maus und eine sd karte (4 GB)


Alle Zeitangaben in WEZ +1. Es ist jetzt 10:00 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132