Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-12-2013 01
Ran by Mosa (administrator) on MOSA on 18-12-2013 13:17:02
Running from C:\Users\Mosa\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\System32\atiesrxx.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
() C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Apache Software Foundation) C:\Program Files\VMware\VMware Server\tomcat\bin\tomcat6.exe
(Microsoft Corporation) C:\Windows\System32\mqtgsvc.exe
(VMware, Inc.) C:\Program Files\VMware\VMware Server\vmware-authd.exe
() C:\Program Files\VMware\VMware Server\vmware-hostd.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Innovative Solutions) C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(UpdateStar GmbH) C:\Users\Mosa\AppData\Roaming\UpdateStar\UpdateStar.exe
(Axonic) C:\Program Files\Axonic\click.to\clicktoapp.exe
(Dropbox, Inc.) C:\Users\Mosa\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Rainy) C:\Program Files\Rainlendar\Rainlendar.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MsmqIntCert] - regsvr32 /s mqrt.dll
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9726568 2010-09-03] (Realtek Semiconductor)
HKLM\...\Run: [36X Raid Configurer] - C:\Windows\System32\xRaidSetup.exe [1953792 2007-05-25] (Gigabyte Technology Corp.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [AMD AVT] - Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-18] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [421736 2012-03-27] (Apple Inc.)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKCU\...\Run: [DriverMax] - C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe [8220536 2013-12-02] (Innovative Solutions)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [UpdateStar] - C:\Users\Mosa\AppData\Roaming\UpdateStar\UpdateStar.exe [7482000 2012-11-30] (UpdateStar GmbH)
HKU\DefaultAppPool\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [ 2010-11-20] (Microsoft Corporation)
Startup: C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Digsby.lnk
ShortcutTarget: Digsby.lnk -> C:\Program Files\Digsby\digsby.exe ()
Startup: C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Mosa\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainlendar.lnk
ShortcutTarget: Rainlendar.lnk -> C:\Program Files\Rainlendar\Rainlendar.exe (Rainy)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?pc=UP22&ocid=UP22DHP&dt=112412
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0EAB2512-E00A-4E90-B740-1F3F6E55E247} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=971163&p={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Promt IE Helper - {1F13CE11-4FAC-49A9-8155-D4F3F0F91A33} - C:\Program Files\PRMT9\PRMTIE\prmtie.dll (PROMT Ltd.)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: No Name - {4907C0AD-874D-44D9-B13E-7B0A4D8B9D3E} - C:\Program Files\Mediafour\XPlay 3\XPBHO.DLL (Mediafour Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKLM - @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\Windows\System32\Msdxm6.ocx (Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - PROMT-Übersetzer - {C7DDDD27-F303-42A5-B979-51559F7DC0F0} - C:\Program Files\PRMT9\PRMTIE\prmtie.dll (PROMT Ltd.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Axonic\click.to\skype4com.dll (Skype Technologies)
Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\Windows\System32\Msdxm6.ocx (Microsoft Corporation)
Winsock: Catalog5 07 C:\PROGRA~1\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{A6ECF338-06AB-4127-9FD9-6E7510F235FD}: [NameServer]192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default
FF SearchEngineOrder.3: Bing
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @Nero.com/KM - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.1851.5542\npCIDetect14.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Mosa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\anisearchde.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\ask.uk.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-26.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-27.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-28.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-29.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-30.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\icqplugin-31.xml
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\searchplugins\veoh-web-player-customized-web-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: em:name="bug489729(Disable detach and tear off tab)" - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\bug489729@alice0775
FF Extension: Messenger Plus! Community Smartbar - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\linkuryfirefoxremoteplugin@linkury.com
FF Extension: DownloadHelper [AU] - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: azan-times - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\azan-times@hamid.net.xpi
FF Extension: islamicdate - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\islamicdate@tantos.web.id.xpi
FF Extension: fireftp - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi
FF Extension: DVDVideoSoft Menu - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: downbarconfig - C:\Users\Mosa\AppData\Roaming\Mozilla\Firefox\Profiles\pql8exhl.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Messenger Plus Smartbar Search
CHR DefaultSearchURL: hxxp://www.google.com
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR HKLM\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-03-17] ()
R2 CVPND; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [1528616 2010-09-27] (Cisco Systems, Inc.)
S4 dtpd; C:\Program Files\ShrewSoft\VPN Client\dtpd.exe [54544 2010-10-08] ()
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION)
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
S4 iked; C:\Program Files\ShrewSoft\VPN Client\iked.exe [726288 2010-10-08] ()
R2 ipsecd; C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe [541968 2010-10-08] ()
S4 M4iPodWPDService; C:\Program Files\Common Files\Mediafour\iPod\M4iPodWPDService.exe [211968 2010-11-15] (Mediafour Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [8704 2009-07-14] (Microsoft Corporation)
R2 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [126464 2010-11-20] (Microsoft Corporation)
S4 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [687400 2011-11-25] (Nero AG)
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [272024 2007-05-14] ()
S4 SBCSSvc; C:\Program Files\Sunbelt Software\CounterSpy\SBCSSvc.exe [789232 2007-06-15] (Sunbelt Software)
S4 TuneUp.Defrag; C:\WINDOWS\System32\TuneUpDefragService.exe [306432 2008-02-08] (TuneUp Software GmbH)
S4 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1528672 2012-05-29] (TuneUp Software)
S4 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [704760 2010-03-23] (Tunngle.net GmbH)
S4 UserAccess7; C:\WINDOWS\system32\UAService7.exe [126976 2008-07-30] ()
R2 VMAuthdService; C:\Program Files\VMware\VMware Server\vmware-authd.exe [121392 2009-10-20] (VMware, Inc.)
S2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [326192 2009-10-20] (VMware, Inc.)
S2 VMware NAT Service; C:\Windows\system32\vmnat.exe [399920 2009-10-20] (VMware, Inc.)
R2 VMwareHostd; C:\ProgramData\VMware\VMware Server\hostd\config.xml [22131 2013-04-22] ()
R2 VMwareServerWebAccess; C:\Program Files\VMware\VMware Server\tomcat\bin\Tomcat6.exe [57344 2009-10-20] (Apache Software Foundation)
S3 vmwriter; C:\Program Files\VMware\VMware Server\vmVssWriter.exe [22528 2009-10-20] (VMware, Inc.)
S4 WireHelpSvc; C:\Program Files\Common Files\WireHelpSvc.exe [265120 2011-08-08] ()
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
S3 rpcapd; "C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"
==================== Drivers (Whitelisted) ====================
R2 ACEDRV08; C:\WINDOWS\system32\drivers\ACEDRV08.sys [108768 2008-08-20] (Protect Software GmbH)
R2 acedrv09; C:\WINDOWS\system32\drivers\acedrv09.sys [373568 2007-06-18] (Protect Software GmbH)
R2 acedrv11; C:\WINDOWS\system32\drivers\acedrv11.sys [185472 2010-02-24] (Protect Software GmbH)
R2 acehlp09; C:\WINDOWS\system32\drivers\acehlp09.sys [201696 2007-05-30] (Protect Software GmbH)
R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.)
S3 ASPI; C:\WINDOWS\System32\DRIVERS\ASPI32.sys [16512 2002-07-17] (Adaptec)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-01] (Avira Operations GmbH & Co. KG)
R1 CbFs; C:\Windows\system32\drivers\cbfs.sys [145504 2010-11-15] (EldoS Corporation)
S2 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [308859 2010-09-27] (Cisco Systems, Inc.)
R1 DS1410D; C:\Windows\System32\Drivers\DS1410D.sys [6689 2007-01-16] (Dallas Semiconductor MAXIM)
S3 ESLvnic1; C:\Windows\System32\DRIVERS\ESLvnic.sys [24504 2011-06-22] (Turtle Entertainment GmbH)
R2 ESLWireAC; C:\Windows\system32\drivers\ESLWireACD.sys [862496 2011-08-08] (<Turtle Entertainment>)
S3 gdrv; C:\WINDOWS\gdrv.sys [15600 2008-01-07] (Windows (R) 2000 DDK provider)
R2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [693760 2006-11-22] (Aladdin Knowledge Systems Ltd.)
R2 Haspnt; C:\Windows\system32\drivers\Haspnt.sys [47616 2011-10-13] (Aladdin Knowledge Systems)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [32304 2009-10-20] (VMware, Inc.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.)
R0 JRAID; C:\Windows\System32\drivers\jraid.sys [98928 2010-01-27] (JMicron Technology Corp.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MDFSYSNT; C:\Windows\System32\Drivers\MDFSYSNT.sys [259176 2009-09-28] (Mediafour Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [141824 2010-11-20] (Microsoft Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [50704 2009-10-20] (CACE Technologies, Inc.)
S3 PPortJoystick; C:\Windows\System32\drivers\PPortJoy.sys [28800 2004-10-24] (Deon van der Westhuysen)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-10-10] (Duplex Secure Ltd.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-06] (Avira GmbH)
S3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2012-05-08] (TuneUp Software)
S1 vflt; C:\Windows\System32\DRIVERS\vfilter.sys [17920 2010-09-02] (Shrew Soft Inc)
S2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [31280 2009-10-20] (VMware, Inc.)
S2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26288 2009-10-20] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [14896 2009-10-20] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [857520 2009-10-20] (VMware, Inc.)
S3 VSPerfDrv100; m:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [48128 2009-12-08] (Microsoft Corporation)
R2 XilinxPC4Driver; C:\Windows\System32\drivers\xpc4drvr.sys [16000 2011-06-21] (Xilinx, Inc.)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-18 07:12 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-12-18 07:12 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-12-18 07:11 - 2010-02-11 08:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-12-18 07:06 - 2013-12-18 07:06 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-12-18 03:34 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-18 03:33 - 2013-07-09 05:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-18 03:33 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-18 03:33 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-18 03:33 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-18 03:33 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-12-18 03:33 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-12-18 03:33 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-12-18 03:33 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-12-18 03:33 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-12-18 03:33 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-12-18 03:33 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-12-18 03:33 - 2011-04-25 03:18 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-18 03:32 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-18 03:31 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 03:31 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 03:31 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-18 03:31 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-18 03:31 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-18 03:31 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-18 03:31 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-18 03:31 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-18 03:31 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-18 03:31 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-18 03:31 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-18 03:31 - 2013-08-27 09:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-12-18 03:31 - 2013-08-27 09:21 - 00808448 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-12-18 03:31 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-18 03:31 - 2013-07-09 06:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-18 03:31 - 2013-07-09 06:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-18 03:31 - 2013-07-09 05:53 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-18 03:31 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-18 03:31 - 2013-04-10 06:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-12-18 03:31 - 2013-03-19 05:48 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-12-18 03:31 - 2013-03-19 03:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-12-18 03:31 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-12-18 03:31 - 2012-06-06 06:05 - 01236992 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-12-18 03:31 - 2012-06-01 05:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2013-12-18 03:31 - 2012-06-01 05:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2013-12-18 03:31 - 2012-06-01 05:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2013-12-18 03:31 - 2012-06-01 05:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2013-12-18 03:31 - 2012-06-01 05:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2013-12-18 03:31 - 2012-06-01 05:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2013-12-18 03:31 - 2012-04-28 04:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-12-18 03:31 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-12-18 03:31 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-12-18 03:31 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-12-18 03:31 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-12-18 03:31 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-12-18 03:31 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-12-18 03:31 - 2011-02-18 06:43 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-18 03:31 - 2011-02-18 06:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 03:31 - 2010-06-26 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-12-18 03:30 - 2013-11-02 03:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 03:30 - 2013-11-02 03:07 - 00981504 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 03:30 - 2013-11-02 03:07 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-18 03:30 - 2013-11-02 03:04 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 03:30 - 2013-11-02 03:04 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 03:30 - 2013-11-02 03:04 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-18 03:30 - 2013-11-02 03:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 03:30 - 2013-11-02 03:03 - 11020800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 03:30 - 2013-11-02 03:03 - 02078208 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 03:30 - 2013-11-02 03:03 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 03:30 - 2013-11-02 02:13 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 03:30 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 03:30 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 03:30 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 03:30 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-18 03:30 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-18 03:30 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-18 03:30 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-18 03:30 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-18 03:30 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-12-18 03:30 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-12-18 03:30 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-12-18 03:30 - 2013-02-15 05:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-18 03:30 - 2013-02-15 05:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-12-18 03:30 - 2013-02-15 04:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-12-18 03:30 - 2012-11-01 05:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-12-18 03:30 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-12-18 03:30 - 2011-07-09 03:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-12-18 03:30 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-12-18 03:30 - 2011-04-27 03:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-12-18 03:30 - 2011-04-27 03:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-12-18 03:29 - 2013-10-30 02:27 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 03:29 - 2013-07-06 06:05 - 01293760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-18 03:29 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-12-18 03:29 - 2013-01-03 06:04 - 00187752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-12-18 03:29 - 2012-08-22 18:16 - 00240496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-12-18 03:29 - 2012-08-11 00:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-12-18 03:29 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-12-18 03:29 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-12-18 03:29 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-12-18 03:29 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-12-18 03:29 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-12-18 03:29 - 2011-10-26 05:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-12-18 03:29 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-12-18 03:29 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-12-18 03:29 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-12-18 03:29 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-12-18 03:29 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-12-18 03:28 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-18 03:28 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-18 03:28 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-18 03:28 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-18 03:28 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-18 03:28 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-18 03:28 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-18 03:28 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-18 03:28 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-18 03:28 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-12-18 03:28 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-12-18 03:28 - 2012-04-26 05:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-12-18 03:28 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-12-18 03:28 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-12-18 03:28 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-12-18 03:28 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-12-18 03:28 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-12-18 03:28 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2013-12-18 03:28 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-12-18 03:28 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-12-18 03:28 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-12-18 03:28 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-12-18 03:28 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-12-18 03:28 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-12-18 03:27 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 03:27 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 03:27 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 03:27 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 03:27 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-18 03:27 - 2013-08-02 02:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-18 03:27 - 2013-08-02 02:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-18 03:27 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-18 03:27 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-18 03:27 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-18 03:27 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-18 03:27 - 2013-06-15 04:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-18 03:27 - 2013-02-27 06:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-12-18 03:27 - 2013-02-27 05:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-18 03:27 - 2013-02-27 05:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-12-18 03:27 - 2012-11-28 23:57 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-12-18 03:27 - 2012-11-28 23:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-12-18 03:27 - 2012-11-28 23:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-12-18 03:27 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-12-18 03:27 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-12-18 00:51 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-12-18 00:51 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-12-18 00:33 - 2013-12-18 00:33 - 00001409 _____ C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-18 00:33 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-12-18 00:33 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-12-18 00:33 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-12-18 00:33 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-12-18 00:32 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-12-18 00:32 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-12-18 00:32 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-12-18 00:32 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-12-18 00:32 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-12-18 00:31 - 2013-12-18 00:31 - 00000020 ___SH C:\Users\Mosa\ntuser.ini
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\Programme
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-18 00:31 - 2013-12-18 00:31 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-18 00:24 - 2013-12-18 10:58 - 01413798 _____ C:\Windows\WindowsUpdate.log
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2010
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zubehör
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2010
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zubehör
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-12-17 23:59 - 2013-12-17 23:59 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-12-17 22:32 - 2013-12-17 20:14 - 00002173 _____ C:\Windows\iis7_gather.log
2013-12-17 22:28 - 2013-12-18 00:31 - 00000000 ____D C:\Users\Mosa
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\Startmenü
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\Netzwerkumgebung
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\Druckumgebung
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\Documents\Eigene Musik
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\Documents\Eigene Bilder
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 22:28 - 2013-12-17 22:28 - 00000000 _SHDL C:\Users\Mosa\AppData\Local\Verlauf
2013-12-17 22:28 - 2009-07-14 05:42 - 00000000 ___RD C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-17 22:28 - 2009-07-14 05:37 - 00000000 ___RD C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2013-12-17 22:27 - 2013-12-17 22:27 - 00000000 ____D C:\Users\DefaultAppPool
2013-12-17 22:27 - 2009-07-14 05:42 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-17 22:27 - 2009-07-14 05:37 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-17 22:24 - 2013-12-18 09:38 - 00051814 _____ C:\Windows\iis7.log
2013-12-17 22:23 - 2013-12-17 22:23 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01009.Wdf
2013-12-17 22:22 - 2013-12-17 22:47 - 00000000 ____D C:\Program Files\Realtek
2013-12-17 22:22 - 2013-12-17 22:22 - 00000000 ____D C:\Windows\system32\RTCOM
2013-12-17 22:22 - 2013-12-17 22:22 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-12-17 22:20 - 2013-12-17 22:24 - 00001355 _____ C:\Windows\TSSysprep.log
2013-12-17 22:17 - 2013-12-18 00:31 - 00000000 ____D C:\Windows\Panther
2013-12-17 22:14 - 2013-12-17 22:14 - 00262144 _____ C:\Windows\system32\config\userdiff
2013-12-17 22:13 - 2013-12-17 22:13 - 00000000 ____D C:\Windows\system32\msmq
2013-12-17 22:13 - 2013-12-17 22:13 - 00000000 ____D C:\Windows\system32\BestPractices
2013-12-17 22:04 - 2013-12-18 00:13 - 00000000 ___HD C:\$WINDOWS.~Q
2013-12-17 21:37 - 2013-12-17 21:48 - 00000000 ___HD C:\$INPLACE.~TR
2013-12-17 19:55 - 2013-12-18 00:13 - 00006418 _____ C:\Windows\comsetup.log
2013-12-16 15:15 - 2013-12-17 23:38 - 00000000 ____D C:\Users\Mosa\AppData\Local\e-academy Inc
2013-12-16 15:15 - 2013-12-16 15:15 - 00003153 _____ C:\Users\Mosa\Desktop\Secure Download Manager.lnk
2013-12-16 15:10 - 2013-12-16 15:17 - 00000000 _____ C:\Users\Mosa\Desktop\SecureDownloadManager.log
2013-12-16 15:10 - 2013-12-16 15:10 - 00000183 _____ C:\Users\Mosa\Desktop\100252307684.sdx
2013-12-15 12:10 - 2013-12-17 19:48 - 00001982 _____ C:\Windows\CompatibilityIssues.txt
2013-12-15 00:20 - 2013-12-17 22:45 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-12-13 19:17 - 2013-12-13 20:10 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-12-13 19:14 - 2013-12-13 19:14 - 00000207 _____ C:\Windows\tweaking.com-regbackup-MOSA-Microsoft-Windows-7-Professional-(32-bit).dat
2013-12-13 19:13 - 2013-12-13 19:13 - 00000000 ____D C:\RegBackup
2013-12-13 18:09 - 2013-12-17 23:46 - 00000000 ____D C:\Users\Mosa\Desktop\Tweaking.com - Windows Repair
2013-12-13 17:15 - 2013-12-13 17:15 - 02804572 _____ C:\Users\Mosa\Desktop\tweaking.com_windows_repair_aio.zip
2013-12-13 02:12 - 2013-11-26 10:22 - 00004096 ____N (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-13 02:12 - 2013-11-26 09:52 - 00051200 ____N (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-13 02:12 - 2013-11-26 09:29 - 00108032 ____N (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-13 02:12 - 2013-11-26 09:28 - 00553472 ____N (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-13 02:12 - 2013-11-26 09:16 - 04243968 ____N (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 19:46 - 2013-12-12 19:46 - 00002170 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-12 16:42 - 2013-12-12 16:43 - 00001491 _____ C:\Users\Mosa\Desktop\checkup.txt
2013-12-12 16:29 - 2013-12-12 16:29 - 00891200 _____ C:\Users\Mosa\Desktop\SecurityCheck.exe
2013-12-12 10:29 - 2013-12-12 10:29 - 02347384 _____ (ESET) C:\Users\Mosa\Desktop\esetsmartinstaller_enu.exe
2013-12-12 10:05 - 2013-12-17 22:45 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-11 18:06 - 2013-12-18 13:17 - 00023661 _____ C:\Users\Mosa\Desktop\FRST.txt
2013-12-11 18:06 - 2013-12-18 13:16 - 00000000 ____D C:\Users\Mosa\Desktop\FRST-OlderVersion
2013-12-11 18:02 - 2013-12-11 18:12 - 00032433 _____ C:\Users\Mosa\Desktop\JRT.txt
2013-12-11 17:58 - 2013-12-17 22:57 - 00000000 ____D C:\Windows\ERUNT
2013-12-11 17:57 - 2013-12-11 17:57 - 01034531 _____ (Thisisu) C:\Users\Mosa\Desktop\JRT.exe
2013-12-11 17:10 - 2013-12-11 17:10 - 01226802 _____ C:\Users\Mosa\Desktop\adwcleaner.exe
2013-12-10 17:46 - 2013-12-10 17:46 - 00027871 _____ C:\ComboFix.txt
2013-12-10 17:15 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-10 17:15 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-10 17:15 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-10 17:15 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-10 17:15 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-10 17:15 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-10 17:15 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-10 16:37 - 2013-12-10 16:37 - 05153091 ____R (Swearware) C:\Users\Mosa\Desktop\ComboFix.exe
2013-12-09 19:32 - 2013-12-09 19:32 - 00026767 _____ C:\Users\Mosa\Desktop\logs.rar
2013-12-09 19:21 - 2013-12-09 19:22 - 00032718 _____ C:\Users\Mosa\Desktop\Gmer.txt
2013-12-09 18:37 - 2013-12-09 18:38 - 00377856 _____ C:\Users\Mosa\Desktop\lu5ebgmh.exe
2013-12-09 18:29 - 2013-12-18 13:16 - 00000000 ____D C:\FRST
2013-12-09 18:28 - 2013-12-18 13:16 - 01062145 _____ (Farbar) C:\Users\Mosa\Desktop\FRST.exe
2013-12-09 18:28 - 2013-12-09 19:22 - 00000702 _____ C:\Users\Mosa\Desktop\defogger_disable.log
2013-12-09 18:28 - 2013-12-09 18:28 - 00000176 _____ C:\Users\Mosa\defogger_reenable
2013-12-09 18:26 - 2013-12-09 18:27 - 00050477 _____ C:\Users\Mosa\Desktop\Defogger.exe
2013-12-09 18:19 - 2013-12-17 23:39 - 00000000 ____D C:\Users\Mosa\AppData\Roaming\CubicExplorer
2013-12-09 18:18 - 2013-12-17 22:36 - 00000000 ____D C:\Program Files\CubicExplorer
2013-12-09 18:18 - 2013-12-09 18:18 - 00001025 _____ C:\Users\Mosa\Desktop\CubicExplorer.lnk
2013-12-09 18:18 - 2013-12-09 18:18 - 00000000 ____D C:\Users\Mosa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CubicExplorer
2013-12-08 22:24 - 2013-12-17 22:55 - 00000000 ____D C:\ProgramData\ATI
2013-12-08 22:24 - 2013-12-17 22:34 - 00000000 ____D C:\Program Files\AMD AVT
2013-12-08 14:23 - 2013-12-17 23:38 - 00000000 ____D C:\Users\Mosa\AppData\Local\Innovative Solutions
2013-12-08 14:23 - 2013-12-17 22:41 - 00000000 ____D C:\Program Files\Innovative Solutions
2013-12-08 14:23 - 2013-12-08 14:23 - 00001192 _____ C:\Users\Mosa\Desktop\DriverMax.lnk
2013-12-08 13:54 - 2013-12-08 13:54 - 00002051 _____ C:\Users\Mosa\Desktop\UpdateStar.lnk
2013-12-08 13:53 - 2013-12-17 23:41 - 00000000 ____D C:\Users\Mosa\AppData\Roaming\UpdateStar
2013-12-08 12:09 - 2013-10-08 07:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-12-08 12:09 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-12-08 12:09 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-12-08 12:09 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-12-08 12:05 - 2013-12-08 12:09 - 00004266 _____ C:\Windows\system32\jupdate-1.7.0_45-b18.log
2013-12-04 01:25 - 2013-12-04 01:25 - 01051136 ____N (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-04 01:25 - 2013-12-04 01:25 - 00646144 ____N (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-04 01:25 - 2013-12-04 01:25 - 00645120 ____N (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-04 01:25 - 2013-12-04 01:25 - 00194048 ____N (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-04 01:25 - 2013-12-04 01:25 - 00111616 ____N (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-04 01:25 - 2013-12-04 01:25 - 00061952 ____N (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-04 01:25 - 2013-12-04 01:25 - 00034816 ____N (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-04 01:23 - 2013-12-04 01:27 - 00010261 _____ C:\Windows\IE11_main.log |