Alex Pohl | 04.12.2013 11:06 | AdwCleaner: Code:
# AdwCleaner v3.014 - Bericht erstellt am 04/12/2013 um 10:42:22
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Hempf - HEMPF-PC
# Gestartet von : C:\Users\Hempf\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\blekko toolbars
Ordner Gelöscht : C:\ProgramData\RegClean
Ordner Gelöscht : C:\Program Files (x86)\FreeHDSport.TV
Ordner Gelöscht : C:\Program Files (x86)\Toolbar Cleaner
Ordner Gelöscht : C:\Users\Hempf\AppData\Local\Temp\OCS
Ordner Gelöscht : C:\Users\Hempf\AppData\LocalLow\adawaretb
Ordner Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\adawaretb
Ordner Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Conduit
Ordner Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\ConduitEngine
Datei Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\invalidprefs.js
Datei Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\user.js
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322432262}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366436662}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366436662}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKLM\Software\adawaretb
Schlüssel Gelöscht : HKLM\Software\Toolbar Cleaner
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
-\\ Mozilla Firefox v25.0.1 (de)
[ Datei : C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\prefs.js ]
Zeile gelöscht : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Zeile gelöscht : user_pref("CT2269050.CTID", "CT2269050");
Zeile gelöscht : user_pref("CT2269050.CurrentServerDate", "13-8-2010");
Zeile gelöscht : user_pref("CT2269050.DialogsAlignMode", "LTR");
Zeile gelöscht : user_pref("CT2269050.DownloadReferralCookieData", "");
Zeile gelöscht : user_pref("CT2269050.EMailNotifierPollDate", "Fri Aug 13 2010 18:19:57 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.FirstServerDate", "13-8-2010");
Zeile gelöscht : user_pref("CT2269050.FirstTime", true);
Zeile gelöscht : user_pref("CT2269050.FirstTimeFF3", true);
Zeile gelöscht : user_pref("CT2269050.FirstTimeSettingsDone", true);
Zeile gelöscht : user_pref("CT2269050.FixPageNotFoundErrors", true);
Zeile gelöscht : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Zeile gelöscht : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Zeile gelöscht : user_pref("CT2269050.Initialize", true);
Zeile gelöscht : user_pref("CT2269050.InitializeCommonPrefs", true);
Zeile gelöscht : user_pref("CT2269050.InstallationAndCookieDataSentCount", 1);
Zeile gelöscht : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Zeile gelöscht : user_pref("CT2269050.InstalledDate", "Fri Aug 13 2010 18:19:57 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.InvalidateCache", false);
Zeile gelöscht : user_pref("CT2269050.IsGrouping", false);
Zeile gelöscht : user_pref("CT2269050.IsMulticommunity", false);
Zeile gelöscht : user_pref("CT2269050.IsOpenThankYouPage", false);
Zeile gelöscht : user_pref("CT2269050.IsOpenUninstallPage", false);
Zeile gelöscht : user_pref("CT2269050.LanguagePackLastCheckTime", "Fri Aug 13 2010 18:19:59 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Zeile gelöscht : user_pref("CT2269050.LastLogin_2.7.0.14", "Fri Aug 13 2010 18:19:58 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.LatestVersion", "2.1.0.18");
Zeile gelöscht : user_pref("CT2269050.Locale", "en");
Zeile gelöscht : user_pref("CT2269050.LoginCache", 4);
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Zeile gelöscht : user_pref("CT2269050.RadioIsPodcast", false);
Zeile gelöscht : user_pref("CT2269050.RadioLastCheckTime", "Fri Aug 13 2010 18:19:59 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Zeile gelöscht : user_pref("CT2269050.RadioMediaID", "12473383");
Zeile gelöscht : user_pref("CT2269050.RadioMediaType", "Media Player");
Zeile gelöscht : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Zeile gelöscht : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Zeile gelöscht : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Zeile gelöscht : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabEnabled", true);
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Fri Aug 13 2010 18:19:59 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Zeile gelöscht : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Zeile gelöscht : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Zeile gelöscht : user_pref("CT2269050.SettingsLastCheckTime", "Fri Aug 13 2010 18:19:57 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.SettingsLastUpdate", "1281105247");
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Fri Aug 13 2010 18:19:56 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1246790578");
Zeile gelöscht : user_pref("CT2269050.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
Zeile gelöscht : user_pref("CT2269050.UserID", "UN20749918973358952");
Zeile gelöscht : user_pref("CT2269050.WeatherNetwork", "");
Zeile gelöscht : user_pref("CT2269050.WeatherPollDate", "Fri Aug 13 2010 18:19:59 GMT+0200");
Zeile gelöscht : user_pref("CT2269050.WeatherUnit", "C");
Zeile gelöscht : user_pref("CT2269050.alertChannelId", "666138");
Zeile gelöscht : user_pref("CT2269050.clientLogIsEnabled", false);
Zeile gelöscht : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Zeile gelöscht : user_pref("CT2269050.myStuffEnabled", true);
Zeile gelöscht : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Zeile gelöscht : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Zeile gelöscht : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Zeile gelöscht : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Zeile gelöscht : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1060933/CT1060933", "\"0283ead7441bf7747429bb82755891773\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/ct1460988/CT1460988", "\"212b43f543a8c25d79e0f22f35b529823\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/15651/15317/DE", "\"0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/DE", "\"0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1060933", "\"1381823163\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct1460988", "\"1359611868\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=en-us", "G9mW7heT/8xIX1frcduu0A==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=en-us", "2E1/v7EfCEDbv3VaBQMELg==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=en-us", "k9un27OkAvkwB2ZmvXxTnA==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=en-us", "4BgM4MhF/sOgPsDNmIs3Yw==");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"8076e3ce381dcd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"0652eeacc6cb1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.12.2.3", "\"4ead38b3e6bcd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.100", "\"0343677cfb1cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"97e416bb586ce1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"9f8d2729abc2ce1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.0.12", "\"807dc126dd28cc1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.1.0", "\"80ee9485875dcc1:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1060933", "\"9971ee9815a5fc569766cf6ddcaaca8e\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1460988", "\"9971ee9815a5fc569766cf6ddcaaca8e\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT1060933&octid=CT1060933", "\"1321973019\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/ct1460988/CT1460988", "\"1306530423\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/equalizer_dead.gif", "\"0678fe477ac91:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/minimize.gif", "\"046c7ab477ac91:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/play.gif", "\"0484de117c4c91:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/stop.gif", "\"0e7a152347ac91:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/vol.gif", "\"087c778347ac91:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/bankimages/RadioSkins/Tapuz/idel.gif", "\"802b1fef4e19c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/bankimages/RadioSkins/Tapuz/minimize.gif", "\"802b1fef4e19c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/bankimages/RadioSkins/Tapuz/play.gif", "\"802b1fef4e19c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/bankimages/RadioSkins/Tapuz/stop.gif", "\"802b1fef4e19c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/bankimages/RadioSkins/Tapuz/vol.gif", "\"802b1fef4e19c81:0\"");
Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"b6bc6a2fddacf78a7061a3376a714ec9\"");
Zeile gelöscht : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Zeile gelöscht : user_pref("CommunityToolbar.IsEngineShown", false);
Zeile gelöscht : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Zeile gelöscht : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Christian\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\8lhapa00.default\\conduitCommon\\modules\\3.18.0.7");
Zeile gelöscht : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.18.0.7");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Zeile gelöscht : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine");
Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050");
Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList4", "");
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Mon Mar 21 2011 18:39:21 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Mon Jun 20 2011 23:36:38 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.alert.locale", "en");
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Wed Jun 22 2011 07:58:58 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Zeile gelöscht : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Zeile gelöscht : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Zeile gelöscht : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Zeile gelöscht : user_pref("CommunityToolbar.alert.userId", "10ae9d8e-2472-4031-83b7-a711fe8d2b4f");
Zeile gelöscht : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Fri Aug 13 2010 18:19:59 GMT+0200");
Zeile gelöscht : user_pref("CommunityToolbar.globalUserId", "6df96c2f-1be2-4ebd-aa55-65f06d567d9e");
Zeile gelöscht : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Zeile gelöscht : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Zeile gelöscht : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1060933");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Feb 15 2013 15:45:54 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Feb 15 2013 16:46:01 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.locale", "en");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Feb 15 2013 15:45:53 GMT+0100");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Zeile gelöscht : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Zeile gelöscht : user_pref("CommunityToolbar.notifications.userId", "9203ed44-1889-4ba3-b5d8-8913c96e91ed");
Zeile gelöscht : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.de/");
Zeile gelöscht : user_pref("CommunityToolbar.originalSearchEngine", "Google");
Zeile gelöscht : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Tue May 24 2011 14:30:02 GMT+0200");
Zeile gelöscht : user_pref("ConduitEngine.CTID", "ConduitEngine");
Zeile gelöscht : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Mar 21 2011 18:39:22 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.FirstServerDate", "03/21/2011 19");
Zeile gelöscht : user_pref("ConduitEngine.FirstTime", true);
Zeile gelöscht : user_pref("ConduitEngine.FirstTimeFF3", true);
Zeile gelöscht : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Zeile gelöscht : user_pref("ConduitEngine.Initialize", true);
Zeile gelöscht : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Zeile gelöscht : user_pref("ConduitEngine.InstalledDate", "Mon Mar 21 2011 18:39:22 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.IsMulticommunity", false);
Zeile gelöscht : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Zeile gelöscht : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Zeile gelöscht : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Mar 21 2011 18:39:22 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Mar 21 2011 22:05:20 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Zeile gelöscht : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Mar 21 2011 22:05:20 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.UserID", "UN63534227191053859");
Zeile gelöscht : user_pref("ConduitEngine.componentAlertEnabled", false);
Zeile gelöscht : user_pref("ConduitEngine.engineLocale", "de");
Zeile gelöscht : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Mar 21 2011 18:39:22 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Mar 21 2011 22:39:22 GMT+0100");
Zeile gelöscht : user_pref("ConduitEngine.initDone", true);
Zeile gelöscht : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Zeile gelöscht : user_pref("ConduitEngine.usagesFlag", 2);
Zeile gelöscht : user_pref("browser.search.defaultengine", "Ask.com");
Zeile gelöscht : user_pref("extensions.crossrider.bic", "13ee47b73c0baafbeee7e0a27562c05b");
Zeile gelöscht : user_pref("extensions.engine@conduit.com.install-event-fired", true);
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
-\\ Google Chrome v31.0.1650.57
[ Datei : C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [32239 octets] - [04/12/2013 10:40:16]
AdwCleaner[S0].txt - [31292 octets] - [04/12/2013 10:42:22]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [31353 octets] ########## JRT Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x64
Ran by Hempf on 04.12.2013 at 10:52:34,06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\speedupmycomputer
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\smarttweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\hdvid codec v1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21D59046-8568-4E51-BD32-79BD751DCCE6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{499B15AC-881F-4224-9373-E2AF2D95108B}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C2A9ED0-361D-4678-BBB6-FA668315952D}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{82FE22F6-6581-4ED3-B962-D0114CFC8F04}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A178FE10-2662-4286-93AB-0477A425A351}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\speedupmycomputer
~~~ Files
Successfully deleted: [File] "C:\Users\Hempf\desktop\SpeedUpMyComputer.lnk"
~~~ Folders
Successfully deleted: [Folder] "C:\Program Files (x86)\smarttweak"
Successfully deleted: [Folder] "C:\Users\Hempf\AppData\Roaming\microsoft\windows\start menu\programs\smarttweak software"
~~~ FireFox
Successfully deleted: [File] C:\Users\Hempf\AppData\Roaming\mozilla\firefox\profiles\o72474bb.default\extensions\hdvc3@hdvidcodec.com.xpi
Successfully deleted the following from C:\Users\Hempf\AppData\Roaming\mozilla\firefox\profiles\o72474bb.default\prefs.js
user_pref("google.toolbar.button_option.cached.gtbSearchBlogs", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchBlogs\" t
user_pref("google.toolbar.button_option.cached.gtbSearchPhotos", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchPhotos\"
user_pref("google.toolbar.button_option.cached.gtbSearchScholar", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchScholar
user_pref("google.toolbar.button_option.cached.gtbstoolbar-google-com_CTK0Y7F4MTG6NKYH03WT-xml", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.o
user_pref("google.toolbar.button_option.cached.gtbstoolbar-google-com_J66T77NJDBMW4FEUU7FA-xml", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.o
user_pref("google.toolbar.search-icon", "data:image/x-icon;base64,AAABAAEAEBAAAAEAIABoBAAAFgAAACgAAAAQAAAAIAAAAAEAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7PT7/3zF6/9Ptu//RbHx/
Emptied folder: C:\Users\Hempf\AppData\Roaming\mozilla\firefox\profiles\o72474bb.default\minidumps [14 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.12.2013 at 10:57:02,53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ FRST:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013 02
Ran by Hempf (administrator) on HEMPF-PC on 04-12-2013 10:59:32
Running from C:\Users\Hempf\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dropbox, Inc.) C:\Users\Hempf\AppData\Roaming\Dropbox\bin\Dropbox.exe
(E.W.E.-Software) C:\Users\Hempf\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvtip.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [TVTip] - C:\Users\Hempf\AppData\Roaming\TV Movie\TV Movie Clickfinder\tvstart.exe [102400 2010-05-31] (E.W.E.-Software)
MountPoints2: {7ec1b434-ff26-11e2-9722-6036dd8f9cbe} - E:\setup.exe
MountPoints2: {cfc0304f-0030-11e3-9855-6036dd8f9cbe} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL D:\index.html
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-22] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-11-10] (Intel Corporation)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\136e54ef-9f6a-454e-b67f-fbed80ec37da.exe [180184 2013-11-23] (AVAST Software)
Startup: C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Hempf\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x80777C94AF92CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hempf\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Hempf\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\ich@maltegoetz.de
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Google Toolbar for Firefox - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: IE Tab - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\{77b819fa-95ad-4f2c-ac7c-486b356188a9}
FF Extension: No Name - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\sfStatistics.xml
FF Extension: Adblock Plus - C:\Users\Hempf\AppData\Roaming\Mozilla\Firefox\Profiles\o72474bb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR Extension: (ProxTube) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek\1.2.5_0
CHR Extension: (Angry Birds) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (Google Drive) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Add to Amazon Wish List) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced\1.0.0.10_0
CHR Extension: (Google Search) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Unfriend Alerts) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgbeldbnadmemecalekdfnffgobkpafc\2.0.1_0
CHR Extension: (Google Maps) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh\5.2.7_0
CHR Extension: (3D Solar System Web) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdaaepplopehigjgkolniddiadbbkphd\0.50_0
CHR Extension: (dict-cc) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nknonnojlmhnmjhpeokdbeineeajcemh\1.6.88_0
CHR Extension: (Google Wallet) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Hover Zoom) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl\4.26_0
CHR Extension: (YouTube Unblocker) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl\0.5.0_0
CHR Extension: (Picasa) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb\6.2.2_0
CHR Extension: (Gmail) - C:\Users\Hempf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-11-19] (Adobe Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-21] (AVAST Software)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP6\RpcAgentSrv.exe [71832 2008-10-02] (SiSoftware)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-21] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-08] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-21] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-08-08] ()
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-08-07] (DT Soft Ltd)
S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-12-03] (GFI Software)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [110744 2012-07-19] (Qualcomm Atheros Co., Ltd.)
S3 L6UX1; C:\Windows\System32\Drivers\L6UX164.sys [772864 2013-07-11] (Line 6)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-08-08] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
R3 rpkmdrv; C:\Windows\System32\drivers\rpkmdrv.sys [21248 2012-08-16] ()
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP6\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [23552 2009-10-25] (Flint Incorporation)
S3 cpuz135; \??\C:\Users\Hempf\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-04 10:59 - 2013-12-04 10:59 - 01959614 _____ (Farbar) C:\Users\Hempf\Downloads\FRST64.exe
2013-12-04 10:57 - 2013-12-04 10:57 - 00003581 _____ C:\Users\Hempf\Desktop\JRT.txt
2013-12-04 10:52 - 2013-12-04 10:52 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 10:51 - 2013-12-04 10:51 - 01034531 _____ (Thisisu) C:\Users\Hempf\Downloads\JRT.exe
2013-12-04 10:39 - 2013-12-04 10:42 - 00000000 ____D C:\AdwCleaner
2013-12-04 10:39 - 2013-12-04 10:39 - 01110034 _____ C:\Users\Hempf\Downloads\adwcleaner.exe
2013-12-04 10:19 - 2013-12-04 10:31 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-04 10:19 - 2013-12-04 10:19 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-04 10:18 - 2013-12-04 10:31 - 00000000 ____D C:\Users\Hempf\Desktop\mbar
2013-12-04 10:18 - 2013-12-04 10:19 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-04 10:18 - 2013-12-04 10:18 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Hempf\Downloads\mbar-1.07.0.1007.exe
2013-12-03 21:40 - 2013-12-03 21:40 - 00000085 _____ C:\Windows\wininit.ini
2013-12-03 21:23 - 2013-12-04 10:43 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-12-03 21:23 - 2013-12-03 21:40 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-03 21:23 - 2013-12-03 21:23 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-12-03 21:14 - 2013-12-03 21:14 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\LavasoftStatistics
2013-12-03 21:12 - 2013-12-03 21:12 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-12-03 21:12 - 2013-12-03 21:12 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-12-03 21:10 - 2013-12-03 21:10 - 00014456 _____ (GFI Software) C:\Windows\system32\Drivers\gfibto.sys
2013-12-03 21:08 - 2013-12-03 21:09 - 05616264 _____ (Lavasoft Limited) C:\Users\Hempf\Downloads\adaware_installer.exe
2013-12-03 17:27 - 2013-12-03 17:27 - 00026017 _____ C:\Users\Hempf\Desktop\Addition.txt
2013-12-03 17:22 - 2013-12-03 17:22 - 00078957 _____ C:\Users\Hempf\Desktop\FRST.txt
2013-12-03 16:58 - 2013-12-03 16:58 - 00026017 _____ C:\Users\Hempf\Downloads\Addition.txt
2013-12-03 16:57 - 2013-12-04 10:59 - 00016355 _____ C:\Users\Hempf\Downloads\FRST.txt
2013-12-03 16:57 - 2013-12-03 16:57 - 00000000 ____D C:\FRST
2013-12-03 11:24 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-03 11:24 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-03 11:15 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-12-03 11:15 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-12-03 11:15 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-12-03 11:15 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2013-12-03 11:15 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-12-03 11:15 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-12-03 11:15 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-12-03 11:15 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-12-03 11:15 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-12-03 11:15 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-12-03 11:15 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-12-03 11:15 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-12-03 11:15 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-12-03 11:15 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-12-03 11:15 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-12-03 11:15 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-12-03 11:15 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-12-03 11:15 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-12-03 11:15 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-12-03 11:15 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-12-03 11:15 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-12-03 11:15 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-12-03 11:15 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-12-03 11:15 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-12-03 11:15 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-12-03 11:15 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-12-03 11:15 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-12-03 11:15 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-12-03 11:15 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-12-03 11:15 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-12-03 11:15 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-12-03 11:15 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-12-03 11:15 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-12-03 11:15 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-12-03 11:15 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-12-03 11:15 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-12-03 11:15 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-12-03 11:15 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-12-03 11:15 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-12-03 11:15 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-12-03 11:15 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-12-03 11:15 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-12-03 11:15 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-12-03 11:15 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-12-03 11:15 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-12-03 11:15 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-12-03 11:15 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-12-03 11:15 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-12-03 11:15 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-12-03 11:15 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-12-03 11:15 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-12-03 11:15 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-12-03 11:10 - 2013-12-03 11:10 - 00000779 _____ C:\Users\Public\Desktop\Total War - ROME II.lnk
2013-12-03 10:36 - 2013-10-06 10:21 - 4277841920 _____ C:\Users\Hempf\Downloads\ppt-r2m9.iso
2013-12-03 09:53 - 2013-11-29 08:05 - 01202674 _____ C:\Users\Hempf\Downloads\abusefile
2013-12-02 15:15 - 2013-12-02 15:15 - 00000000 ____D C:\Users\Hempf\Documents\ANNO 2070
2013-11-27 08:50 - 2013-12-04 10:55 - 00000908 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001UA.job
2013-11-27 08:50 - 2013-12-04 08:55 - 00000856 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001Core.job
2013-11-27 08:50 - 2013-11-27 08:50 - 00003878 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001UA
2013-11-27 08:50 - 2013-11-27 08:50 - 00003482 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001Core
2013-11-27 08:50 - 2013-11-27 08:50 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager
2013-11-26 14:09 - 2013-11-26 14:09 - 00000000 ____D C:\Users\Hempf\Documents\Ghost Games
2013-11-26 14:04 - 2013-11-26 14:04 - 00000716 _____ C:\Users\Public\Desktop\Need for Speed Rivals 64bit.lnk
2013-11-25 13:57 - 2013-11-25 14:20 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Meine Die Schlacht um Mittelerde™ II-Dateien
2013-11-25 13:42 - 2013-11-25 13:42 - 00001547 _____ C:\Users\Public\Desktop\Die Schlacht um Mittelerde™ II.lnk
2013-11-25 13:42 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-11-20 13:39 - 2013-11-20 13:55 - 00000000 ____D C:\Users\Hempf\Documents\REAPER Media
2013-11-20 13:36 - 2013-11-20 13:56 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\REAPER
2013-11-20 13:36 - 2013-11-20 13:36 - 00000979 _____ C:\Users\Public\Desktop\REAPER.lnk
2013-11-20 13:36 - 2013-11-20 13:36 - 00000000 ____D C:\Program Files (x86)\REAPER
2013-11-20 07:21 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-20 07:21 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2013-11-20 07:21 - 2013-11-14 12:58 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2013-11-19 07:33 - 2013-11-19 07:33 - 00000000 ____D C:\ProgramData\Adobe Systems
2013-11-15 18:54 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-15 18:51 - 2013-11-15 18:51 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-15 18:51 - 2013-11-15 18:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-15 18:51 - 2013-11-15 18:51 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-15 18:51 - 2013-11-15 18:51 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-15 18:51 - 2013-11-15 18:51 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-15 18:51 - 2013-11-15 18:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-15 18:51 - 2013-11-15 18:51 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-15 18:51 - 2013-11-15 18:51 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-15 18:51 - 2013-11-15 18:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-15 18:51 - 2013-11-15 18:51 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-15 18:51 - 2013-11-15 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 18:50 - 2013-11-15 18:54 - 00009669 _____ C:\Windows\IE11_main.log
2013-11-15 18:49 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 18:49 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 18:49 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 18:49 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 18:49 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 18:49 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 15:29 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 15:29 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 15:29 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 15:29 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 15:29 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 15:29 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 15:29 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 15:29 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 15:29 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 15:29 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 15:29 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 15:29 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 15:29 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 15:29 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 15:29 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 15:29 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-15 15:28 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 15:28 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 15:28 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 15:28 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 15:28 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 15:28 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 15:28 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 15:28 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-12 23:49 - 2013-12-03 11:25 - 00000000 ____D C:\Users\Hempf\AppData\Local\NVIDIA Corporation
2013-11-11 17:17 - 2013-11-11 17:17 - 00000000 ____D C:\Users\Hempf\AppData\Local\calibre-cache
2013-11-11 17:11 - 2013-12-01 14:12 - 00000000 ____D C:\Users\Hempf\Documents\Calibre-Bibliothek
2013-11-11 17:11 - 2013-11-11 17:18 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\calibre
2013-11-11 17:11 - 2013-11-11 17:11 - 00000960 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk
2013-11-11 17:11 - 2013-11-11 17:11 - 00000000 ____D C:\Program Files (x86)\Calibre2
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-10 19:23 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-10 19:23 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-10 17:53 - 2013-11-10 17:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2013-11-10 17:53 - 2013-11-10 17:52 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2013-11-10 17:37 - 2013-11-10 17:37 - 00000000 ____D C:\Windows\SysWOW64\SDA
2013-11-10 17:37 - 2013-11-10 17:37 - 00000000 ____D C:\Program Files (x86)\JMicron
2013-11-10 17:37 - 2011-11-29 19:40 - 00568600 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys
2013-11-10 17:36 - 2012-06-22 14:22 - 00174176 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys
2013-11-10 17:36 - 2010-07-27 10:08 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\SysWOW64\jmcricon.dll
2013-11-10 17:36 - 2010-07-27 10:08 - 00203352 _____ (JMicron Technology Corporation) C:\Windows\system32\jmcricon.dll
2013-11-10 17:06 - 2011-12-06 15:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2013-11-10 17:01 - 2013-11-10 17:01 - 00293568 _____ C:\Windows\Minidump\111013-30888-01.dmp
2013-11-10 11:21 - 2013-11-10 11:21 - 00001000 _____ C:\Users\Hempf\Documents\MailShield.der
2013-11-06 14:29 - 2013-11-07 07:11 - 13815808 _____ C:\Users\Hempf\AppData\Roaming\Sandra.mdb
2013-11-06 14:29 - 2013-11-06 14:29 - 00000000 ____D C:\Program Files\SiSoftware
2013-11-05 13:14 - 2013-11-05 13:14 - 01355683 _____ C:\Windows\unins000.exe
2013-11-05 13:14 - 2013-11-05 13:14 - 00032615 _____ C:\Windows\unins000.dat
2013-11-05 13:14 - 2013-11-05 13:14 - 00001047 _____ C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rapoo -Tastatur- und Maustreiber.lnk
2013-11-05 13:14 - 2013-11-05 13:14 - 00000000 ____D C:\Program Files (x86)\Rapoo
2013-11-05 13:14 - 2012-08-16 11:13 - 00021248 _____ () C:\Windows\system32\Drivers\rpkmdrv.sys
2013-11-05 11:41 - 2013-11-05 11:41 - 00001174 _____ C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SiSoftware Sandra Lite 2013.SP6.lnk
==================== One Month Modified Files and Folders =======
2013-12-04 10:59 - 2013-12-04 10:59 - 01959614 _____ (Farbar) C:\Users\Hempf\Downloads\FRST64.exe
2013-12-04 10:59 - 2013-12-03 16:57 - 00016355 _____ C:\Users\Hempf\Downloads\FRST.txt
2013-12-04 10:57 - 2013-12-04 10:57 - 00003581 _____ C:\Users\Hempf\Desktop\JRT.txt
2013-12-04 10:55 - 2013-11-27 08:50 - 00000908 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001UA.job
2013-12-04 10:52 - 2013-12-04 10:52 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 10:51 - 2013-12-04 10:51 - 01034531 _____ (Thisisu) C:\Users\Hempf\Downloads\JRT.exe
2013-12-04 10:51 - 2009-07-14 05:45 - 00031776 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-04 10:51 - 2009-07-14 05:45 - 00031776 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-04 10:44 - 2013-08-07 16:22 - 00000000 ___RD C:\Users\Hempf\Dropbox
2013-12-04 10:44 - 2013-08-07 16:21 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Dropbox
2013-12-04 10:44 - 2013-08-06 21:42 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-04 10:43 - 2013-12-03 21:23 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-12-04 10:43 - 2013-09-04 22:16 - 00051780 _____ C:\Windows\PFRO.log
2013-12-04 10:43 - 2013-09-04 22:16 - 00030837 _____ C:\Windows\setupact.log
2013-12-04 10:43 - 2013-08-06 15:34 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-04 10:43 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-04 10:42 - 2013-12-04 10:39 - 00000000 ____D C:\AdwCleaner
2013-12-04 10:42 - 2013-07-31 17:36 - 01147351 _____ C:\Windows\WindowsUpdate.log
2013-12-04 10:39 - 2013-12-04 10:39 - 01110034 _____ C:\Users\Hempf\Downloads\adwcleaner.exe
2013-12-04 10:31 - 2013-12-04 10:19 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-04 10:31 - 2013-12-04 10:18 - 00000000 ____D C:\Users\Hempf\Desktop\mbar
2013-12-04 10:19 - 2013-12-04 10:19 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-04 10:19 - 2013-12-04 10:18 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-04 10:18 - 2013-12-04 10:18 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Hempf\Downloads\mbar-1.07.0.1007.exe
2013-12-04 10:08 - 2013-08-06 21:42 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-04 08:55 - 2013-11-27 08:50 - 00000856 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001Core.job
2013-12-03 23:26 - 2013-04-15 16:10 - 00699342 _____ C:\Windows\system32\perfh007.dat
2013-12-03 23:26 - 2013-04-15 16:10 - 00149450 _____ C:\Windows\system32\perfc007.dat
2013-12-03 23:26 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-03 23:24 - 2013-08-06 15:19 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\vlc
2013-12-03 21:40 - 2013-12-03 21:40 - 00000085 _____ C:\Windows\wininit.ini
2013-12-03 21:40 - 2013-12-03 21:23 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-03 21:23 - 2013-12-03 21:23 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-12-03 21:14 - 2013-12-03 21:14 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\LavasoftStatistics
2013-12-03 21:12 - 2013-12-03 21:12 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-12-03 21:12 - 2013-12-03 21:12 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2013-12-03 21:10 - 2013-12-03 21:10 - 00014456 _____ (GFI Software) C:\Windows\system32\Drivers\gfibto.sys
2013-12-03 21:09 - 2013-12-03 21:08 - 05616264 _____ (Lavasoft Limited) C:\Users\Hempf\Downloads\adaware_installer.exe
2013-12-03 19:24 - 2013-08-09 14:52 - 00000000 ___HD C:\Misc
2013-12-03 17:27 - 2013-12-03 17:27 - 00026017 _____ C:\Users\Hempf\Desktop\Addition.txt
2013-12-03 17:22 - 2013-12-03 17:22 - 00078957 _____ C:\Users\Hempf\Desktop\FRST.txt
2013-12-03 16:58 - 2013-12-03 16:58 - 00026017 _____ C:\Users\Hempf\Downloads\Addition.txt
2013-12-03 16:57 - 2013-12-03 16:57 - 00000000 ____D C:\FRST
2013-12-03 11:26 - 2013-08-06 21:42 - 00000000 ____D C:\Users\Hempf\AppData\Local\NVIDIA
2013-12-03 11:25 - 2013-11-12 23:49 - 00000000 ____D C:\Users\Hempf\AppData\Local\NVIDIA Corporation
2013-12-03 11:25 - 2013-08-06 15:33 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-03 11:24 - 2013-09-17 20:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-03 11:24 - 2013-08-06 15:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-03 11:15 - 2013-09-10 23:45 - 00205124 _____ C:\Windows\DirectX.log
2013-12-03 11:10 - 2013-12-03 11:10 - 00000779 _____ C:\Users\Public\Desktop\Total War - ROME II.lnk
2013-12-03 10:51 - 2013-08-07 08:27 - 00000000 ____D C:\Spiele
2013-12-03 07:03 - 2013-08-06 21:42 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-03 07:03 - 2013-08-06 21:42 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-02 15:15 - 2013-12-02 15:15 - 00000000 ____D C:\Users\Hempf\Documents\ANNO 2070
2013-12-01 14:12 - 2013-11-11 17:11 - 00000000 ____D C:\Users\Hempf\Documents\Calibre-Bibliothek
2013-12-01 12:53 - 2013-09-19 08:13 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-30 15:39 - 2013-08-07 14:40 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-11-29 17:56 - 2013-10-29 14:44 - 01096480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-29 17:56 - 2013-10-29 14:44 - 00979744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-29 08:05 - 2013-12-03 09:53 - 01202674 _____ C:\Users\Hempf\Downloads\abusefile
2013-11-27 08:50 - 2013-11-27 08:50 - 00003878 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001UA
2013-11-27 08:50 - 2013-11-27 08:50 - 00003482 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2735876334-300528333-2053001241-1001Core
2013-11-27 08:50 - 2013-11-27 08:50 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager
2013-11-27 08:50 - 2013-08-06 21:42 - 00000000 ____D C:\Users\Hempf\AppData\Local\Google
2013-11-27 06:40 - 2013-07-31 17:39 - 01593564 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-11-26 14:09 - 2013-11-26 14:09 - 00000000 ____D C:\Users\Hempf\Documents\Ghost Games
2013-11-26 14:04 - 2013-11-26 14:04 - 00000716 _____ C:\Users\Public\Desktop\Need for Speed Rivals 64bit.lnk
2013-11-26 10:16 - 2013-08-07 17:03 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-11-26 10:02 - 2013-08-07 18:50 - 00000000 ____D C:\Programms
2013-11-25 14:20 - 2013-11-25 13:57 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Meine Die Schlacht um Mittelerde™ II-Dateien
2013-11-25 13:57 - 2013-08-07 08:39 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-25 13:42 - 2013-11-25 13:42 - 00001547 _____ C:\Users\Public\Desktop\Die Schlacht um Mittelerde™ II.lnk
2013-11-25 00:05 - 2013-08-08 07:39 - 00000000 ____D C:\Users\Hempf\AppData\Local\Adobe
2013-11-25 00:04 - 2013-08-08 07:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-25 00:03 - 2013-07-31 17:49 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\Adobe
2013-11-22 11:58 - 2013-08-07 18:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-21 12:38 - 2013-08-08 07:31 - 00000000 ____D C:\Users\Hempf\Documents\Movie Studio Platinum 12.0 Projekte
2013-11-20 13:56 - 2013-11-20 13:36 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\REAPER
2013-11-20 13:55 - 2013-11-20 13:39 - 00000000 ____D C:\Users\Hempf\Documents\REAPER Media
2013-11-20 13:36 - 2013-11-20 13:36 - 00000979 _____ C:\Users\Public\Desktop\REAPER.lnk
2013-11-20 13:36 - 2013-11-20 13:36 - 00000000 ____D C:\Program Files (x86)\REAPER
2013-11-20 12:53 - 2013-08-07 17:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-11-19 20:01 - 2009-07-14 05:45 - 05105016 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-19 15:44 - 2013-09-15 23:15 - 00000000 ____D C:\Program Files (x86)\HDPlayer
2013-11-19 09:30 - 2013-08-07 17:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-19 07:43 - 2013-08-06 21:42 - 00111920 _____ C:\Users\Hempf\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-19 07:41 - 2013-08-08 07:49 - 00000000 ____D C:\ProgramData\Adobe
2013-11-19 07:33 - 2013-11-19 07:33 - 00000000 ____D C:\ProgramData\Adobe Systems
2013-11-17 04:49 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-16 13:31 - 2013-07-31 17:49 - 00001413 _____ C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-16 13:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-15 18:54 - 2013-11-15 18:50 - 00009669 _____ C:\Windows\IE11_main.log
2013-11-15 18:51 - 2013-11-15 18:51 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-15 18:51 - 2013-11-15 18:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-15 18:51 - 2013-11-15 18:51 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-15 18:51 - 2013-11-15 18:51 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-15 18:51 - 2013-11-15 18:51 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-15 18:51 - 2013-11-15 18:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-15 18:51 - 2013-11-15 18:51 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-15 18:51 - 2013-11-15 18:51 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-15 18:51 - 2013-11-15 18:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-15 18:51 - 2013-11-15 18:51 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-15 18:51 - 2013-11-15 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-15 18:51 - 2013-11-15 18:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-15 18:51 - 2013-11-15 18:51 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 15:38 - 2013-08-08 06:37 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-15 15:37 - 2013-08-09 13:42 - 00000000 ____D C:\Windows\system32\MRT
2013-11-15 15:35 - 2013-07-31 17:47 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 15:35 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2013-11-14 12:58 - 2013-11-20 07:21 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-20 07:21 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-20 07:21 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-08-06 15:34 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-11-14 12:58 - 2013-08-06 15:34 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-11-14 12:58 - 2013-08-06 15:33 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-08-06 15:33 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2013-08-06 15:33 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-14 12:58 - 2013-08-06 15:33 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2013-08-06 15:33 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-11 17:18 - 2013-11-11 17:11 - 00000000 ____D C:\Users\Hempf\AppData\Roaming\calibre
2013-11-11 17:17 - 2013-11-11 17:17 - 00000000 ____D C:\Users\Hempf\AppData\Local\calibre-cache
2013-11-11 17:11 - 2013-11-11 17:11 - 00000960 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk
2013-11-11 17:11 - 2013-11-11 17:11 - 00000000 ____D C:\Program Files (x86)\Calibre2
2013-11-11 16:02 - 2013-08-06 15:34 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2013-08-06 15:34 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2013-08-06 15:34 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2013-08-06 15:34 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2013-08-06 15:34 - 00598304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\oemdspif.dll
2013-11-11 16:01 - 2013-08-06 15:34 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2013-08-06 15:34 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-11 01:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-11-10 17:53 - 2013-11-10 17:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2013-11-10 17:52 - 2013-11-10 17:53 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2013-11-10 17:52 - 2013-07-18 01:43 - 00795632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2013-11-10 17:52 - 2013-07-18 01:43 - 00358896 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2013-11-10 17:52 - 2013-07-18 01:43 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2013-11-10 17:52 - 2009-07-14 14:21 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2013-11-10 17:37 - 2013-11-10 17:37 - 00000000 ____D C:\Windows\SysWOW64\SDA
2013-11-10 17:37 - 2013-11-10 17:37 - 00000000 ____D C:\Program Files (x86)\JMicron
2013-11-10 17:37 - 2013-08-07 12:19 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-10 17:24 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-10 17:01 - 2013-11-10 17:01 - 00293568 _____ C:\Windows\Minidump\111013-30888-01.dmp
2013-11-10 17:01 - 2013-08-07 18:04 - 00000000 ____D C:\Windows\Minidump
2013-11-10 17:01 - 2013-07-31 17:49 - 00000000 ____D C:\Users\Hempf
2013-11-10 17:00 - 2013-11-02 21:17 - 559686519 _____ C:\Windows\MEMORY.DMP
2013-11-10 11:21 - 2013-11-10 11:21 - 00001000 _____ C:\Users\Hempf\Documents\MailShield.der
2013-11-09 21:23 - 2013-07-31 17:49 - 00000000 ___RD C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-08 19:59 - 2013-09-19 08:14 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-11-07 07:11 - 2013-11-06 14:29 - 13815808 _____ C:\Users\Hempf\AppData\Roaming\Sandra.mdb
2013-11-06 14:29 - 2013-11-06 14:29 - 00000000 ____D C:\Program Files\SiSoftware
2013-11-06 13:10 - 2013-08-15 01:01 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-11-05 13:14 - 2013-11-05 13:14 - 01355683 _____ C:\Windows\unins000.exe
2013-11-05 13:14 - 2013-11-05 13:14 - 00032615 _____ C:\Windows\unins000.dat
2013-11-05 13:14 - 2013-11-05 13:14 - 00001047 _____ C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rapoo -Tastatur- und Maustreiber.lnk
2013-11-05 13:14 - 2013-11-05 13:14 - 00000000 ____D C:\Program Files (x86)\Rapoo
2013-11-05 13:14 - 2013-11-02 21:46 - 00022020 _____ C:\Windows\DPINST.LOG
2013-11-05 13:06 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-11-05 11:41 - 2013-11-05 11:41 - 00001174 _____ C:\Users\Hempf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SiSoftware Sandra Lite 2013.SP6.lnk
Some content of TEMP:
====================
C:\Users\Hempf\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-30 00:45
==================== End Of Log ============================ --- --- ---
Addition:
...da hat sich kein Log geöffnet. Wo wird das denn gespeichert? |