Trojaner-Board
Seite 2 von 3 1 2 3
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Ebay Mail mit Mahnung von Anwaltskanzlei - Anhang geöffnet :( (https://www.trojaner-board.de/155693-ebay-mail-mahnung-anwaltskanzlei-anhang-geoeffnet.html)

cosinus 25.06.2014 15:18
Ich seh noch keinen Anlass hier alles zu editieren. Man kann keinen Rückschluss ziehen auf deine Person, es sei denn du hast irgendwelche signifikante persönliche Daten im Log nicht zensiert.

Wir haben erst vor kurzem unsere Crack-Regeln gelockert. Davor wurde jeder Crack-User formatieren geschickt, wenn man Hinweise auf illegale Software in den Logs gefunden hatte.

Wenn ich hier jetzt ne Ausnahme mach wollen zukünftige Crackies auch ne Ausnahme. Sry ich finde das geht einfach nicht.

ynotia 25.06.2014 15:22
Hab ich befürchtet, aber versteh ich. Trotzdem danke!

cosinus 26.06.2014 08:37
Wir werden hier jetzt doch einfach mal weitermachen; aber bitte nicht rumjammern, falls eins unserer Tools deine gecrackten Software-Installationen unbrauchbar machen sollte.


Dann bitte jetzt Combofix ausführen:

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

ynotia 26.06.2014 13:11
du bist ein Schatz!!!

Also ich hab ja selber auch recherchiert und folgendes hab ich schon gemacht:

ComboFix:

Code:
Combofix Logfile:

       
Code:

       
ComboFix 14-06-24.01 - User 25.06.2014  17:16:07.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.8073.4848 [GMT 2:00]
ausgeführt von:: d:\downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Java\jre7\bin\jp2ssv.dll
c:\programdata\Roaming
c:\users\User\AppData\Local\assembly\tmp
c:\windows\security\Database\tmp.edb
c:\windows\SysWow64\Inetde.dll
E:\install.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-05-25 bis 2014-06-25  ))))))))))))))))))))))))))))))
.
.
2014-06-25 15:19 . 2014-06-25 15:19        --------        d-----w-        c:\users\Default\AppData\Local\temp
2014-06-25 11:57 . 2014-06-25 13:01        --------        d-----w-        c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-06-25 10:17 . 2014-06-25 10:19        --------        d-----w-        C:\FRST
2014-06-24 14:57 . 2014-06-24 20:32        --------        d-----w-        c:\programdata\wjin
2014-06-24 14:57 . 2014-06-24 19:37        --------        d-----w-        c:\programdata\vhtarhu
2014-06-24 10:12 . 2014-06-24 11:05        --------        d-----w-        c:\programdata\doyao
2014-06-24 00:01 . 2014-06-24 00:02        --------        d-----w-        c:\program files (x86)\Rising
2014-06-23 21:22 . 2014-06-24 14:57        --------        d-----w-        c:\programdata\dwqplug
2014-06-23 21:22 . 2014-06-24 14:57        --------        d-----w-        c:\programdata\wddyol
2014-06-23 21:22 . 2014-06-23 21:22        --------        d-----w-        c:\programdata\iql
2014-06-23 20:49 . 2014-06-24 20:32        --------        d-----w-        c:\program files (x86)\WinHTTrack
2014-06-22 19:58 . 2014-06-24 20:32        --------        d-----w-        c:\program files (x86)\Mozilla Maintenance Service
2014-06-21 17:56 . 2014-06-21 17:56        --------        d-----w-        c:\programdata\newbackup
2014-06-21 17:44 . 2014-06-21 17:44        --------        d-----w-        c:\programdata\managecapsule
2014-06-21 17:08 . 2014-06-21 17:08        --------        d-----w-        c:\programdata\ibackupvhd
2014-06-21 17:08 . 2014-06-21 17:08        --------        d-----w-        c:\programdata\logsaver
2014-06-21 15:54 . 2014-06-21 15:54        --------        d-----w-        c:\programdata\ftw
2014-06-21 13:52 . 2014-06-21 13:52        --------        d-----w-        c:\programdata\explauncher
2014-06-21 13:52 . 2014-06-21 13:52        --------        d-----w-        c:\programdata\launcher
2014-06-21 13:48 . 2014-06-21 13:48        --------        d-----w-        c:\program files\Paragon Software
2014-06-21 13:31 . 2014-06-21 13:37        --------        d-----w-        c:\program files (x86)\Nero
2014-06-21 13:31 . 2014-06-21 13:46        --------        d-----w-        c:\program files (x86)\Common Files\Nero
2014-06-21 13:31 . 2014-06-21 13:32        --------        d-----w-        c:\programdata\Nero
2014-06-21 13:00 . 2014-06-21 13:00        --------        d-----w-        c:\program files (x86)\CDBurnerXP
2014-06-21 13:00 . 2014-06-21 13:00        --------        d-----w-        c:\programdata\Canneverbe Limited
2014-06-17 17:02 . 2014-06-17 17:03        --------        d-----w-        c:\program files (x86)\FileZilla FTP Client
2014-06-17 16:40 . 2014-06-17 16:40        --------        d-----w-        c:\programdata\Power Soft
2014-06-17 16:40 . 2014-06-17 16:40        --------        d-----w-        c:\program files (x86)\Power Soft
2014-06-17 15:37 . 2014-06-17 15:37        --------        d-----w-        c:\program files\003
2014-06-17 15:06 . 2014-06-17 15:06        --------        d-----w-        c:\program files (x86)\Cheat Engine 6.3
2014-06-17 14:52 . 2014-06-17 14:52        --------        d-----w-        c:\program files (x86)\TomTom HOME 2
2014-06-17 14:52 . 2014-06-17 14:52        --------        d-----w-        c:\program files (x86)\TomTom International B.V
2014-06-15 11:00 . 2014-06-15 11:00        --------        d-----w-        c:\program files (x86)\Tesseract-OCR
2014-06-15 11:00 . 2014-06-15 11:00        --------        d-----w-        c:\program files (x86)\JDownloader
2014-06-14 18:21 . 2014-06-14 18:54        --------        d-----w-        C:\Rainmeter
2014-06-14 13:00 . 2014-06-14 13:00        --------        d-----w-        c:\program files (x86)\DeskSpace
2014-06-13 17:32 . 2014-06-13 17:32        --------        d-----w-        c:\program files (x86)\Alastria Software
2014-06-13 16:53 . 2014-06-13 16:53        --------        d-----w-        c:\program files\Rainlendar2
2014-06-13 16:46 . 2014-06-16 10:53        23365632        ----a-w-        c:\windows\system32\imageres.dll
2014-06-13 16:40 . 2014-06-13 16:40        --------        d-----w-        c:\programdata\Stardock
2014-06-13 16:40 . 2014-06-19 11:32        --------        d-----w-        c:\program files (x86)\Stardock
2014-06-12 16:31 . 2014-06-12 16:37        --------        d-----w-        C:\HP Universal Print Driver
2014-06-12 16:06 . 2008-05-07 17:59        99840        ----a-w-        c:\windows\system32\Spool\prtprocs\x64\HPZPPLHN.DLL
2014-06-12 14:51 . 2014-06-12 14:53        --------        d-----w-        c:\program files (x86)\Klebezettel NG
2014-06-12 10:21 . 2014-06-12 10:21        --------        d-----w-        c:\program files (x86)\Software4u
2014-06-12 09:29 . 2014-06-12 09:29        --------        dc----w-        c:\windows\system32\DRVSTORE
2014-06-12 09:29 . 2012-08-21 11:01        33240        ----a-w-        c:\windows\system32\drivers\GEARAspiWDM.sys
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\program files (x86)\iTunes
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\program files\iPod
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\program files\iTunes
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\programdata\Apple Computer
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\program files (x86)\Apple Software Update
2014-06-12 09:29 . 2014-06-12 09:29        --------        d-----w-        c:\program files\Common Files\Apple
2014-06-12 09:28 . 2014-06-12 09:29        --------        d-----w-        c:\program files (x86)\Common Files\Apple
2014-06-10 22:43 . 2014-06-10 22:43        --------        d-----w-        c:\program files (x86)\Microsoft OneDrive
2014-06-10 22:43 . 2014-06-10 22:43        --------        d-----w-        c:\programdata\Microsoft OneDrive
2014-06-10 17:47 . 2014-06-10 17:47        --------        d-----w-        c:\program files\Common Files\DESIGNER
2014-06-09 15:50 . 2014-06-09 15:50        --------        d-----w-        c:\windows\PCHEALTH
2014-06-09 15:49 . 2014-06-09 15:49        --------        d-----w-        c:\program files\Microsoft Analysis Services
2014-06-09 15:49 . 2014-06-09 15:49        --------        d-----w-        c:\program files (x86)\Microsoft Analysis Services
2014-06-09 15:49 . 2014-06-09 15:50        --------        d-----w-        c:\program files\Microsoft Office
2014-06-09 15:48 . 2014-06-09 15:48        --------        d-----r-        C:\MSOCache
2014-06-08 20:00 . 2014-06-24 20:32        --------        d-----w-        c:\program files (x86)\RocketDock
2014-06-08 19:59 . 2011-02-25 06:19        2871808        ----a-w-        c:\windows\explorer_edit_w7sbc.exe
2014-06-08 19:59 . 2011-02-25 06:19        2871808        ----a-w-        c:\windows\explorer_backup_w7sbc.exe
2014-06-08 19:59 . 2011-02-25 06:19        2871808        ----a-w-        c:\windows\explorer.exe
2014-06-08 19:59 . 2011-02-25 06:19        2871808        ----a-w-        c:\windows\explorer.backup.exe
2014-06-08 18:04 . 2014-06-08 18:04        --------        d-----w-        c:\program files (x86)\Tor
2014-06-08 17:54 . 2014-06-08 17:54        --------        d-----w-        c:\program files (x86)\Driver Identifier
2014-06-08 17:21 . 2014-06-08 17:21        --------        d-----w-        c:\program files (x86)\QUALCOMM
2014-06-08 17:21 . 2014-06-08 17:21        --------        d-----w-        c:\programdata\QUALCOMM
2014-06-08 17:13 . 2014-06-24 20:32        --------        d--h--w-        c:\windows\system32\WLANProfiles
2014-06-08 17:13 . 2014-06-08 17:13        --------        d-----w-        c:\users\Public\Roaming
2014-06-08 17:13 . 2014-06-08 17:13        --------        d-----w-        c:\users\Default\Roaming
2014-06-08 17:12 . 2014-06-08 17:12        --------        d-----w-        c:\program files\Intel
2014-06-08 17:12 . 2014-06-08 17:12        --------        d-----w-        c:\program files\Common Files\Intel
2014-06-08 17:12 . 2014-06-08 17:12        --------        d-----w-        c:\program files (x86)\Cisco
2014-06-08 17:09 . 2014-06-08 17:20        --------        d-----w-        c:\program files (x86)\Dell
2014-06-08 17:09 . 2014-06-19 09:46        --------        d-----w-        c:\windows\{69093D49-3DD1-4FB5-A378-0D4DB4CF86EA}
2014-06-08 16:51 . 2012-08-10 13:44        482128        ----a-w-        c:\windows\system32\drivers\e1c62x64.sys
2014-06-08 16:51 . 2012-08-09 11:56        101224        ----a-w-        c:\windows\system32\NicInstC.dll
2014-06-08 16:51 . 2012-08-09 07:54        73032        ----a-w-        c:\windows\system32\e1cmsg.dll
2014-06-08 15:07 . 2014-06-08 18:26        925184        ----a-w-        c:\windows\expstart.exe
2014-06-08 14:37 . 2010-11-21 03:23        2851840        ----a-w-        c:\windows\system32\themeui.dll.backup
2014-06-08 14:37 . 2009-07-14 01:41        332288        ----a-w-        c:\windows\system32\uxtheme.dll.backup
2014-06-08 14:37 . 2009-07-14 01:41        44544        ----a-w-        c:\windows\system32\themeservice.dll.backup
2014-06-08 14:29 . 2014-06-08 14:32        --------        d-----w-        c:\windows\W7SBC
2014-06-08 13:57 . 2014-06-08 13:57        --------        d-----w-        c:\program files (x86)\MSXML 4.0
2014-06-08 13:53 . 2014-06-08 13:53        --------        d-----w-        c:\program files\CCleaner
2014-06-08 13:52 . 2014-06-08 13:52        --------        d-----w-        c:\program files (x86)\TeamViewer
2014-06-08 13:40 . 2003-04-18 16:06        8192        ----a-w-        c:\windows\SysWow64\srvany.exe
2014-06-08 13:40 . 2010-08-13 15:25        223848        ----a-w-        c:\windows\SysWow64\SDIOAssist.exe
2014-06-08 13:40 . 2003-04-18 16:05        32256        ----a-w-        c:\windows\SysWow64\instsrv.exe
2014-06-08 13:40 . 2014-06-08 13:40        --------        d-----w-        c:\windows\SysWow64\SDA
2014-06-08 13:40 . 2014-06-08 13:40        --------        d-----w-        c:\program files (x86)\O2Micro
2014-06-08 13:39 . 2014-06-08 13:39        --------        d-----w-        c:\program files\IDT
2014-06-07 19:25 . 2013-12-24 23:09        1987584        ----a-w-        c:\windows\SysWow64\d3d10warp.dll
2014-06-07 19:25 . 2013-12-24 22:48        2565120        ----a-w-        c:\windows\system32\d3d10warp.dll
2014-06-07 19:25 . 2013-11-23 18:26        417792        ----a-w-        c:\windows\SysWow64\WMPhoto.dll
2014-06-07 19:25 . 2013-11-23 17:47        465920        ----a-w-        c:\windows\system32\WMPhoto.dll
2014-06-07 19:25 . 2013-11-22 22:48        3928064        ----a-w-        c:\windows\system32\d2d1.dll
2014-06-07 19:25 . 2011-02-25 05:30        2616320        ----a-w-        c:\windows\SysWow64\explorer.exe
2014-06-07 19:25 . 2013-11-26 08:16        3419136        ----a-w-        c:\windows\SysWow64\d2d1.dll
2014-06-07 17:55 . 2014-06-24 20:32        --------        d-----w-        c:\windows\AutoKMS
2014-06-07 17:54 . 2014-06-07 17:54        --------        d-----w-        c:\programdata\Microsoft Toolkit
2014-06-07 15:48 . 2014-06-07 17:02        --------        d-----w-        c:\programdata\Folderico
2014-06-07 15:48 . 2014-06-07 15:48        --------        d-----w-        c:\program files (x86)\Folderico
2014-06-07 15:26 . 2014-06-07 15:26        --------        d-----w-        c:\program files (x86)\IrfanView
2014-06-07 15:22 . 2014-06-07 15:22        --------        d-----w-        c:\program files (x86)\NexusFont
2014-06-07 15:12 . 2014-06-07 15:12        --------        d-----w-        c:\program files (x86)\Tools&More
2014-06-07 14:58 . 2008-01-29 04:57        450560        ----a-w-        c:\windows\SysWow64\fldrvw90.ocx
2014-06-07 14:58 . 2014-06-07 15:13        --------        d-----w-        c:\program files (x86)\AllDup
2014-06-07 14:58 . 2014-06-07 15:13        --------        d-----w-        c:\programdata\AllDup
2014-06-07 14:58 . 2010-10-13 03:42        2369456        ----a-w-        c:\windows\SysWow64\Codejock.CommandBars.v13.4.2.ocx
2014-06-07 14:58 . 2010-08-20 18:53        86016        ----a-w-        c:\windows\SysWow64\mtSplitter.ocx
2014-06-07 14:58 . 2010-06-11 07:50        89888        ----a-w-        c:\windows\SysWow64\mtFrame.ocx
2014-06-07 14:58 . 2010-06-01 11:45        1005088        ----a-w-        c:\windows\SysWow64\TList8.ocx
2014-06-07 14:58 . 2010-03-25 07:33        171752        ----a-w-        c:\windows\SysWow64\mtRTF2.ocx
2014-06-07 14:58 . 2009-10-12 21:02        44736        ----a-w-        c:\windows\SysWow64\mtSubclass.dll
2014-06-07 14:58 . 2009-10-12 21:01        77504        ----a-w-        c:\windows\SysWow64\mtScrollContainer.ocx
2014-06-07 14:42 . 2014-06-12 09:29        --------        d-----w-        c:\programdata\Apple
2014-06-07 14:42 . 2014-06-07 14:42        --------        d-----w-        c:\program files\Bonjour
2014-06-07 14:42 . 2014-06-07 14:42        --------        d-----w-        c:\program files (x86)\Bonjour
2014-06-07 14:42 . 2014-06-07 14:42        --------        d-----w-        c:\program files (x86)\AirVideoServer HD
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-08 14:37 . 2010-11-21 03:23        2851840        ----a-w-        c:\windows\system32\themeui.dll
2014-06-08 14:37 . 2009-07-13 23:55        332288        ----a-w-        c:\windows\system32\uxtheme.dll
2014-06-08 14:37 . 2009-07-13 23:54        44544        ----a-w-        c:\windows\system32\themeservice.dll
2014-05-02 02:37 . 2010-11-21 03:23        116736        ----a-w-        c:\windows\system32\drivers\UMDF\WUDFUsbccidDriver.dll
2014-03-31 07:35 . 2010-11-21 03:27        270496        ----a-w-        c:\windows\system32\MpSigStub.exe
2012-04-14 06:45 . 2012-04-14 07:02        85504        ----a-w-        c:\program files\filterinstaller.exe.64.exe
2012-04-14 06:45 . 2012-04-14 07:02        52312        ----a-w-        c:\program files\stdriver32.sys
2012-04-14 06:45 . 2012-04-14 07:02        421888        ----a-w-        c:\program files\x264enc2.exe
2012-04-14 06:45 . 2012-04-14 07:02        196608        ----a-w-        c:\program files\mp3el2.exe
2012-04-14 06:45 . 2012-04-14 07:02        103512        ----a-w-        c:\program files\stdriver64.sys
2012-04-14 06:45 . 2012-04-14 07:02        77824        ----a-w-        c:\program files\filterinstaller.exe
2012-04-14 06:45 . 2012-04-14 07:02        69632        ----a-w-        c:\program files\debuthooksdll.dll
2012-04-14 06:45 . 2012-04-14 07:02        1778180        ----a-w-        c:\program files\uninst.exe
2012-02-16 07:25 . 2012-04-14 07:02        1471592        ----a-w-        c:\program files\debutsetup_v1.64.exe
2009-12-18 16:03 . 2012-04-14 07:02        1069060        ----a-w-        c:\program files\debut.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2011-02-26 . 3B69712041F3D63605529BD66DC00C48 . 2871808 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[-] 2011-02-25 . 78F13CFE0250EA7308146FA97E0FFFF5 . 2871808 . . [6.1.7600.16385] .. c:\windows\explorer.exe
[7] 2011-02-25 . 332FEAB1435662FC6C672E25BEB37BE3 . 2871808 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[7] 2010-11-21 . AC4C51EB24AA95B77F705AB159189E24 . 2872320 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-06-10 22:43        223432        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-06-10 22:43        223432        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-06-10 22:43        223432        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:38        1720976        ----a-w-        c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:38        1720976        ----a-w-        c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:38        1720976        ----a-w-        c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        131248        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        131248        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        131248        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FalNET G19 Display Manager"="c:\program files (x86)\FalNET G19 Display Manager\FalNET G19 Display Manager.exe" [2014-06-06 1380864]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"AirVideoServerHD"="c:\program files (x86)\AirVideoServer HD\AirVideoServerStarter.exe" [2014-03-10 2141448]
"Digiarty_Software_AirPlayit"="c:\program files\Digiarty\Air_Playit\airplayit.exe" [2012-02-08 10468672]
"SAFE14 Browser Monitor"="c:\program files (x86)\Steganos Safe 14\SteganosBrowserMonitor.exe" [2012-10-02 71168]
"SkyDrive"="c:\users\User\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" [2014-06-10 257224]
"iDevice Manager Launcher"="c:\program files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe" [2014-03-15 139216]
"Klebezettel NG"="c:\program files (x86)\Klebezettel NG\klebez.exe" [2014-02-20 4418048]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2014-03-16 4411488]
"TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2014-06-05 248176]
"Freebie Notes"="c:\program files (x86)\Power Soft\Freebie Notes\FreebieNotes.exe" [2013-11-13 6343824]
"RocketDock"="c:\program files (x86)\RocketDock\RocketDock.exe" [2007-09-02 495616]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-09-05 937920]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2011-09-05 36760]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-09-05 2904984]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2014-05-07 256896]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-05-09 737872]
"BrMfcWnd"="c:\program files (x86)\Brother\Brmfcmon\BrMfcWnd.exe" [2009-08-03 1167360]
"ControlCenter3"="c:\program files (x86)\Brother\ControlCenter3\brctrcen.exe" [2008-12-24 114688]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2013-01-23 113656]
"SAFE14 HotKeys"="c:\program files (x86)\Steganos Safe 14\SteganosHotKeyService.exe" [2012-10-02 84992]
"SAFE14 File Redirection Starter"="c:\program files (x86)\Steganos Safe 14\fredirstarter.exe" [2012-10-02 17408]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2014-05-26 152392]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
DeskSpace.lnk - c:\program files (x86)\DeskSpace\deskspace.exe [2012-5-28 9092816]
Dropbox.lnk - c:\users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-6-13 33322976]
.
c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled\
Logitech . Produktregistrierung.lnk - c:\program files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe /remind /language=DEU /_WFM="." [2009-11-16 517384]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Snagit 11.lnk - c:\program files (x86)\TechSmith\Snagit 11\Snagit32.exe [2013-1-25 9564528]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute        REG_MULTI_SZ           autocheck autochk *\0OODBS
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 O2SDIOAssist;O2SDIOAssist;c:\windows\SysWOW64\srvany.exe;c:\windows\SysWOW64\srvany.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 SLEE_17_DRIVER;Steganos Live Encryption Engine 17 [Driver];c:\windows\Sleen1764.sys;c:\windows\Sleen1764.sys [x]
S1 Uim_DEVIM;UIM Direct Device Image Plugin;c:\windows\system32\DRIVERS\uim_devim.sys;c:\windows\SYSNATIVE\DRIVERS\uim_devim.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 GatewayAgentService;O&O Gateway Agent Service;c:\program files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe;c:\program files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe [x]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 OODefragAgent;O&O Defrag;c:\program files\OO Software\Defrag\oodag.exe;c:\program files\OO Software\Defrag\oodag.exe [x]
S2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell);c:\program files (x86)\QUALCOMM\QDLService2k\QDLService2kDell.exe;c:\program files (x86)\QUALCOMM\QDLService2k\QDLService2kDell.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 WMCoreService;Mobile Broadband Service;c:\program files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode;c:\program files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys;c:\windows\SYSNATIVE\DRIVERS\CAXHWAZL.sys [x]
S3 d554gps;Dell Wireless  HSPA Mini-Card GPS Port;c:\windows\system32\DRIVERS\d554gps64.sys;c:\windows\SYSNATIVE\DRIVERS\d554gps64.sys [x]
S3 d554scard;Dell Wireless  HSPA Mini-Card USIM Port;c:\windows\system32\DRIVERS\d554scard.sys;c:\windows\SYSNATIVE\DRIVERS\d554scard.sys [x]
S3 ecnssndis; Mobile Broadband Driver;c:\windows\system32\Drivers\wwuss64.sys;c:\windows\SYSNATIVE\Drivers\wwuss64.sys [x]
S3 ecnssndisfltr; Mobile Broadband Driver Filter;c:\windows\system32\Drivers\wwussf64.sys;c:\windows\SYSNATIVE\Drivers\wwussf64.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGPBTDD;LGPBTDD.sys Display Driver;c:\windows\system32\Drivers\LGPBTDD.sys;c:\windows\SYSNATIVE\Drivers\LGPBTDD.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 Mbm3CBus;Dell Wireless 5550 HSPA+ Mini-Card Device (WDM);c:\windows\system32\DRIVERS\Mbm3CBus.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3CBus.sys [x]
S3 Mbm3DevMt;Dell Wireless  HSPA Mini-Card Device Management Driver (WDM);c:\windows\system32\DRIVERS\Mbm3DevMt.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3DevMt.sys [x]
S3 Mbm3mdfl;Dell Wireless  HSPA Mini-Card Modem Filter;c:\windows\system32\DRIVERS\Mbm3mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3mdfl.sys [x]
S3 Mbm3Mdm;Dell Wireless  HSPA Mini-Card Modem Driver;c:\windows\system32\DRIVERS\Mbm3Mdm.sys;c:\windows\SYSNATIVE\DRIVERS\Mbm3Mdm.sys [x]
S3 O2MDRRDR;O2MDRRDR;c:\windows\system32\DRIVERS\O2MDRw7x64.sys;c:\windows\SYSNATIVE\DRIVERS\O2MDRw7x64.sys [x]
S3 O2SDJRDR;O2SDJRDR;c:\windows\system32\DRIVERS\o2sdjw7x64.sys;c:\windows\SYSNATIVE\DRIVERS\o2sdjw7x64.sys [x]
S3 WwanUsbServ;Mobile Broadband Driver;c:\windows\system32\DRIVERS\WwanUsbMp64.sys;c:\windows\SYSNATIVE\DRIVERS\WwanUsbMp64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - MBAMSWISSARMY
.
Inhalt des "geplante Tasks" Ordners
.
2014-06-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-07 08:14]
.
2014-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06 19:26]
.
2014-06-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06 19:26]
.
2014-06-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core.job
- c:\users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-08 14:40]
.
2014-06-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA.job
- c:\users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-08 14:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-06-10 22:43        262344        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-06-10 22:43        262344        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-06-10 22:43        262344        ----a-w-        c:\users\User\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:37        2322576        ----a-w-        c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:37        2322576        ----a-w-        c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:37        2322576        ----a-w-        c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        164016        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        164016        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        164016        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-05-28 23:44        164016        ----a-w-        c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-29 171992]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-29 399832]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-29 442328]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-04-15 10396440]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2013-07-08 708952]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2014-05-19 3100440]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2012-08-23 4805936]
"OODefragTray"="c:\program files\OO Software\Defrag\oodtray.exe" [2010-09-10 4041032]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.dell.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: An OneNote s&enden - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: An vorhandene PDF-Datei anfügen - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: In Adobe PDF konvertieren - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Linkziel an vorhandene PDF-Datei anhängen - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Linkziel in Adobe PDF konvertieren - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
Trusted Zone: dell.com
TCP: DhcpNameServer = 192.168.1.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - c:\program files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe
AddRemove-{10CD364B-FFCC-48BE-B469-B9622A033075} - c:\programdata\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}\Fences.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-4212815359-2683884995-303209184-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{094A5CB4-8F65-CA76-E9C0-9BAAA959DAE9}*]
"haocmcfhhmdjjknl"=hex:6e,62,68,65,6a,70,63,6c,6f,70,6b,65,62,70,63,6e,68,66,
   6f,6f,63,68,70,69,67,6b,63,6b,70,65,65,69,70,70,6e,6d,61,6a,61,68,69,61,69,\
"jaocmcfhhmdjjknlmjcj"=hex:66,61,68,65,6c,70,6a,66,64,6b,63,61,00,17
"pagclifnkganloilhdadgkoakfngdkko"=hex:64,61,67,65,63,70,70,69,00,6b
.
[HKEY_USERS\S-1-5-21-4212815359-2683884995-303209184-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{C7B91D5D-1C71-F361-773C-520D2D16984E}*]
@Allowed: (Read) (RestrictedCode)
"bblnmfcklhgjeibaibcaoifnpebkocafhlem"=hex:6a,61,6b,67,69,67,61,70,70,6a,6c,6c,
   6c,69,63,64,6a,70,61,6b,00,00
"abblchlihdgebpejfhicjkpfchdeahknhh"=hex:6a,61,70,68,6d,65,65,61,6e,6f,6d,6b,
   62,67,66,64,65,61,70,6c,00,00
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-06-25  17:20:39
ComboFix-quarantined-files.txt  2014-06-25 15:20
.
Vor Suchlauf: 13 Verzeichnis(se), 103.209.177.088 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 102.934.028.288 Bytes frei
.
- - End Of File - - 620333D53EFD701F81F9B89797706E4B

--- --- ---
A36C5E4F47E84449FF07ED3517B43A31
AdwareCleaner:

AdwCleaner Logfile:
Code:
# AdwCleaner v3.213 - Bericht erstellt am 25/06/2014 um 17:29:31
# Aktualisiert 23/06/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : User - User-PC
# Gestartet von : D:\Desktop\adwcleaner_3.213.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Program Files (x86)\software4u
Ordner Gelöscht : C:\Program Files\003
Ordner Gelöscht : C:\Users\User\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\User\AppData\Roaming\software4u
Ordner Gelöscht : C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Ordner Gelöscht : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\obciceimmggglbmelaidpjlmodcebijb

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v29.0.1 (de)

[ Datei : C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\prefs.js ]


-\\ Google Chrome v37.0.2062.0

[ Datei : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1624 octets] - [25/06/2014 17:26:46]
AdwCleaner[S0].txt - [1499 octets] - [25/06/2014 17:29:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1559 octets] ##########
--- --- ---

[/CODE]


ESET

Code:
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=76172f0b884dc6409b2b8d51797865b9
# engine=18879
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-06-26 10:44:16
# local_time=2014-06-26 12:44:16 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 100 70525 4152454 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 1669658 155409306 0 0
# scanned=663225
# found=52
# cleaned=0
# scan_time=68867
sh=E9ADBE0526FFA374216D542E0D602E5533482114 ft=1 fh=df26b92e9b512772 vn="Variante von Win32/Toolbar.Conduit.H evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files\debutsetup_v1.64.exe"
sh=1E20CB8C6CFBC05671F0279F4580A6AD8DEE56DF ft=1 fh=9f5b6f0cc5235c49 vn="Variante von Win32/Toolbar.Conduit.H evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files\uninst.exe"
sh=F4D4A4EE23EC8D46EDE2205DDEDF978C96552103 ft=1 fh=86949fba87c26f28 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="D:\Desktop\WinHTTrack - CHIP-Installer.exe"
sh=BEE96291323D129CF104D0FA8ECBE8AAB5E4BCA5 ft=1 fh=c71c001156299171 vn="Win32/Toolbar.AskSBar evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\03 Work\_Desktop Werden\Programme\Nero Ultra Edition v8.0.3.0\Toolbar.exe"
sh=151DCF40EE9B65604F9DE2455FEB6A3773807702 ft=1 fh=bcde3234b1316e9a vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Opera - CHIP-Installer.exe"
sh=F4D4A4EE23EC8D46EDE2205DDEDF978C96552103 ft=1 fh=86949fba87c26f28 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\WinHTTrack (Webseiten herunterladen).exe"
sh=ABA28F3F4E528B9388604DAA77FE8266DC389585 ft=0 fh=0000000000000000 vn="Variante von Java/Adwind.A Trojaner" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Anwendungen Desktop\Rainmeter\Skins\WinEight\update\update.jar"
sh=E7218FC3731C96589F30B15429C25EDA9D0C5FC0 ft=1 fh=44f2b697800a060c vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Brenner - Audio\DeepBurner.exe"
sh=2FFDED46BE3B96B3D8F482B3EF2193BB0A123203 ft=1 fh=8a8ff7b6b1b6c1cf vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\DVD brennen\Funktioniert\FreeVideoToDVDConverter16.exe"
sh=112A4F59BB998C0869312A6782CB240DA513091B ft=1 fh=ad42c3c8de114a8b vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\IPhone - Pad\NEU für IPad Sicherungen iDevice Manager - funktionert nicht\iDevice Manager iPhone Explorer - CHIP-Installer.exe"
sh=C3E986C9521A9B316233660D5928240CCE357CAA ft=1 fh=8962d531049041b4 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Outlook Backups\MOBackup - CHIP-Installer.exe"
sh=F0C7E09D17BE5B2761E123DE2C0FCC13409A4BA5 ft=1 fh=2682b07d15fee4ab vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\PDF\GPL Ghostscript 64 Bit (für pdfCreator zur Berarbeitung von PDFs).exe"
sh=7AD95CB4E80B611C1FCCF5E00E31F3C5583EE2EE ft=1 fh=84a89a3586440c33 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\PDF\pdfcreator 1.7.1 (druck in allen programmen).exe"
sh=3D42D88D50A2916D4A27360D5A5C62A1C09C1E41 ft=1 fh=922633ad68ab0444 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Screenshots\ashampoo_magical (KOSTET Screenshots).exe"
sh=ACC0245A42DF227D4555733B4C8FD4AD92A1151B ft=1 fh=7b51f69847296fef vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Video + Audio\cdex_151 (wandelt CDs in MP3s um).exe"
sh=73E38F87B22147BB82C7765F75863476E75B9B9A ft=1 fh=9b78355e12c22f81 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Video + Audio\Bildschirm abfilmen\CamStudio.exe"
sh=B3F76FB12066DC4F51780F3F9DABA5A9018F359F ft=1 fh=70d549a263d539ed vn="Variante von Win32/Toolbar.Conduit.H evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Video + Audio\Bildschirm abfilmen\debut video capture\Debut Software NCH.exe"
sh=283FFF1CF5E5F24A6A15139BFFD1B1D35BCC0DEA ft=1 fh=bfa1a31277ad8659 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Files\Joe 4.0 letzte Freeware Version.exe"
sh=D3E4D80B25C5C0A3AE4A8BBC9E61921669220515 ft=1 fh=2dc5b3d95d4c9a74 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Grafik\NexusFont (Fontmanager).exe"
sh=A81179DF94786B3D660496244649BEFB2002FAFD ft=1 fh=def5dcfb798dceae vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\Freebie Notes.exe"
sh=E931C6BE4F9E345B13BD31494AA13C7575C15901 ft=1 fh=06d1cd4d498391bf vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\Microsoft OneDrive SkyDrive - CHIP-Downloader.exe"
sh=F1EFF6451CED129C0E5C0A510955F234A01158A0 ft=1 fh=332b4278a72373e2 vn="Variante von Win32/Toolbar.Babylon.E evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\Unlocker1.9.2.exe"
sh=07DA3014E64C489EDBFCEB7368B75D5ED6C44226 ft=1 fh=5c82542f3c4a0a82 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\Fences Letzte Freeware Version - CHIP-Installer.exe"
sh=39E799BA9DB8D77D1E2EBE627FEDE0CF296CE507 ft=1 fh=7173b3d1c11879cb vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\00 nich so gut\ObjectDock - kostet (mac symbolleiste).exe"
sh=131AC05ECFCA62EDFB1E32FD328882F6A13C9D9C ft=1 fh=c71c0011632e8e41 vn="Variante von Win32/InstallCore.OY evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\00 nich so gut\3d innen desktop\Bumptop\BumpTop-2.1-6225_CB-DL-Manager.exe"
sh=0CDB92602B2949E323B9A3425D88EC67F7D63E6C ft=1 fh=149e7fc8a5c00a5b vn="Win32/Somoto.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\00 nich so gut\3d innen desktop\RealDesktop - zu langsam\Real Desktop - Setup.exe"
sh=6F29A55425754BCE3B3EDCE785D19B2C963BC5C2 ft=1 fh=5121968bcf75aa90 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\00 nich so gut\shock-4way 3d (zu alt)\Shock 4Way 3D - CHIP-Installer.exe"
sh=06E9852901075ED704156E475AA7479EF1603110 ft=1 fh=9aabfbcec36d2cff vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\custo pack - windows design ändern zB mac\CustoPack Tools - komplettes design aendern, zb mac.exe"
sh=ABA28F3F4E528B9388604DAA77FE8266DC389585 ft=0 fh=0000000000000000 vn="Variante von Java/Adwind.A Trojaner" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\Rainmeter\Skins\WinEight\update\update.jar"
sh=553AD70C9C2631D4A4BB06493D0C4C4321EC67FA ft=1 fh=f931597085596cad vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\_mac symbolleiste\nexus\Nexus - CHIP-Installer.exe"
sh=E8F8988C24C2C10D08046AC288D9AC0C5885DFA6 ft=1 fh=24c7dbfe65e1b6e8 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\_mac symbolleiste\rocket dock (mac leiste) auf 2. monitor\RocketDock.exe"
sh=40E7FA833F78CC5AD0985E375E8CDA6B06AB9101 ft=1 fh=15ab978f0cf13db0 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\_Ordner HG ändern\AveFolderBG 64 Bit - CHIP-Installer.exe"
sh=8E0464F82EF6BEE018BED978114482231F417397 ft=1 fh=afc34fcb5e4fd155 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\_Ordner HG ändern\Windows 7 Folder Background Changer - CHIP-Installer.exe"
sh=D680C4BBB1694BF4EF4A92C186AA2F32BA0B8D81 ft=1 fh=62fcaf095a9bce76 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\_windows 7 design ändern - Themes\Universal Theme Patcher - CHIP-Installer.exe"
sh=D65437677AD4DFA5AE4D0BA99FCC013CFD8A7336 ft=1 fh=3b42b0edc9ae71ea vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\LogMeIn Hamachi (VPN - versuchen).exe"
sh=F8119CA23D07A0BECEFF7350D9231FCB9382157C ft=1 fh=e32d2a098e2721d9 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\Tor Browser Paket - CHIP-Installer.exe"
sh=ABE731BA3E5E92912CF0C3B6075973A954D2A467 ft=1 fh=0ddcd826aafc1859 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\WOT_web_of_trust_wot-20131118-fx - CHIP-Installer.exe"
sh=2E61DB8A6F9EC5473B422648BDAB2B7640897EEC ft=1 fh=7a3c667d2961cc05 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\XPAntiSpy (verhindert datensendung an ms).exe"
sh=22F7B6545EB7CB7466811EA971232F98F506C2E5 ft=1 fh=e091c27eb3bb786c vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\deinstalliert programme vollständig\Revo Uninstaller - CHIP-Installer.exe"
sh=015D22927D0FD1276B1548AF527130144AB66097 ft=1 fh=72c3fc454c4cc8d3 vn="Variante von Win32/RegistryBooster evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_Sicherheit, System & Schnelligkeit\Pc Scan Systemfehler\registrybooster.exe"
sh=ABA28F3F4E528B9388604DAA77FE8266DC389585 ft=0 fh=0000000000000000 vn="Variante von Java/Adwind.A Trojaner" ac=I fn="E:\Dokumente - Bilder - Work - Inst\Eigene Dokumente\Rainmeter\Skins\WinEight\update\update.jar"
sh=282E43766D30716E793A5122951C2AE76FD8CBCC ft=0 fh=0000000000000000 vn="Win32/DealPly.J evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\Eigene Dokumente\_Programme und Sicherungen\Firefox Lesezeichen\7otfhij7.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}\chrome\content\dealply.xul"
sh=282E43766D30716E793A5122951C2AE76FD8CBCC ft=0 fh=0000000000000000 vn="Win32/DealPly.J evtl. unerwünschte Anwendung" ac=I fn="E:\Dokumente - Bilder - Work - Inst\Eigene Dokumente\_Programme und Sicherungen\Firefox Profil\Profiles\7otfhij7.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}\chrome\content\dealply.xul"
sh=F57E3DF68511ACE24BDDC793426A09BCAD05450D ft=0 fh=0000000000000000 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="E:\User-PC\Backup Set 2014-06-06 205132\Backup Files 2014-06-06 205132\Backup files 26.zip"
sh=77BA3C6294D4542BAF01908D7D8AAE652C160DE1 ft=0 fh=0000000000000000 vn="Variante von Win32/Toolbar.Conduit.H evtl. unerwünschte Anwendung" ac=I fn="E:\User-PC\Backup Set 2014-06-06 205132\Backup Files 2014-06-08 080001\Backup files 2.zip"
sh=B8E5778B5922FAAC5C1DE225D85930F8184DC48A ft=0 fh=0000000000000000 vn="HTML/ScrInject.B.Gen Virus" ac=I fn="E:\User-PC\Backup Set 2014-06-06 205132\Backup Files 2014-06-22 080001\Backup files 4.zip"
sh=AA4BFDD1F8EB93F8E293233153905CA67B7F5F7D ft=0 fh=0000000000000000 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="E:\User-PC\Backup Set 2014-06-06 205132\Backup Files 2014-06-22 080001\Backup files 5.zip"
Malwarebytes

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 26.06.2014
Suchlauf-Zeit: 13:38:40
Logdatei: 'Malwarebytes-log.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.26.03
Rootkit Datenbank: v2014.06.23.02
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: User

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 292857
Verstrichene Zeit: 5 Min, 19 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
Folgende Datei habe ich gelöscht:

sh=ABA28F3F4E528B9388604DAA77FE8266DC389585 ft=0 fh=0000000000000000 vn="Variante von Java/Adwind.A Trojaner" ac=I fn="E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\_organisation + anwendungen\_desktop\Rainmeter\Skins\WinEight\update\update.jar"

Folgende war nicht zu finden: sh=B8E5778B5922FAAC5C1DE225D85930F8184DC48A ft=0 fh=0000000000000000 vn="HTML/ScrInject.B.Gen Virus" ac=I fn="E:\User-PC\Backup Set 2014-06-06 205132\Backup Files 2014-06-22 080001\Backup files 4.zip"

War das richtig? :wtf::heilig:

Temp File Cleaner hab ich laufen lassen und dann wollt ich jetzt noch mal Malewarebytes und Antivir laufen lassen. Aber warte erstmal auf deine Antwort...

cosinus 26.06.2014 14:16
Adware/Junkware/Toolbars entfernen


1. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




2. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


ynotia 26.06.2014 14:49
JRT:

Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by User on 26.06.2014 at 15:27:24,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Tony\AppData\Roaming\mozilla\firefox\profiles\7sap0mbh.default\extensions\staged



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.06.2014 at 15:33:10,59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST:

Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2014
Ran by User (administrator) on User-PC on 26-06-2014 15:44:08
Running from D:\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(O&O Software GmbH) C:\Program Files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
() C:\Windows\SysWOW64\srvany.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
(QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kDell.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Ericsson AB) C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
() C:\Program Files\Rainlendar2\Rainlendar2.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPictureViewer.exe
(Otaku Software Pty Ltd) C:\Program Files (x86)\DeskSpace\otomowindowx64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Otaku Software Pty Ltd) C:\Program Files (x86)\DeskSpace\otomodesktopx64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [708952 2013-07-08] (Alps Electric Co., Ltd.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [IntelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4805936 2012-08-23] (Intel(R) Corporation)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4041032 2010-09-10] (O&O Software GmbH)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1167360 2009-08-03] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [113656 2013-01-24] (Intel Corporation)
HKLM-x32\...\Run: [SAFE14 HotKeys] => C:\Program Files (x86)\Steganos Safe 14\SteganosHotKeyService.exe [84992 2012-10-02] (Steganos Software GmbH)
HKLM-x32\...\Run: [SAFE14 File Redirection Starter] => C:\Program Files (x86)\Steganos Safe 14\fredirstarter.exe [17408 2012-10-02] (Steganos Software GmbH)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [FalNET G19 Display Manager] => C:\Program Files (x86)\FalNET G19 Display Manager\FalNET G19 Display Manager.exe [1380864 2014-06-06] (FalNET)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [AirVideoServerHD] => C:\Program Files (x86)\AirVideoServer HD\AirVideoServerStarter.exe [2141448 2014-03-11] (inMethod)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [Digiarty_Software_AirPlayit] => C:\Program Files\Digiarty\Air_Playit\airplayit.exe [10468672 2012-02-08] ()
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [SAFE14 Browser Monitor] => C:\Program Files (x86)\Steganos Safe 14\SteganosBrowserMonitor.exe [71168 2012-10-02] (Steganos Software GmbH)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [SkyDrive] => C:\Users\User\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-06-11] (Microsoft Corporation)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [iDevice Manager Launcher] => "C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe" /run
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [Klebezettel NG] => C:\Program Files (x86)\Klebezettel NG\klebez.exe [4418048 2014-02-20] (Hollie-Soft)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [4411488 2014-03-16] ()
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [Freebie Notes] => C:\Program Files (x86)\Power Soft\Freebie Notes\FreebieNotes.exe [6343824 2013-11-13] (Power Soft)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [FalNET G19 Display Manager] => C:\Program Files (x86)\FalNET G19 Display Manager\FalNET G19 Display Manager.exe [1380864 2014-06-06] (FalNET)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AirVideoServerHD] => C:\Program Files (x86)\AirVideoServer HD\AirVideoServerStarter.exe [2141448 2014-03-11] (inMethod)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Digiarty_Software_AirPlayit] => C:\Program Files\Digiarty\Air_Playit\airplayit.exe [10468672 2012-02-08] ()
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SAFE14 Browser Monitor] => C:\Program Files (x86)\Steganos Safe 14\SteganosBrowserMonitor.exe [71168 2012-10-02] (Steganos Software GmbH)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SkyDrive] => C:\Users\User\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-06-11] (Microsoft Corporation)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [iDevice Manager Launcher] => "C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe" /run
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Klebezettel NG] => C:\Program Files (x86)\Klebezettel NG\klebez.exe [4418048 2014-02-20] (Hollie-Soft)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [4411488 2014-03-16] ()
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Freebie Notes] => C:\Program Files (x86)\Power Soft\Freebie Notes\FreebieNotes.exe [6343824 2013-11-13] (Power Soft)
HKU\S-1-5-21-4212815359-2683884995-303209184-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 11.lnk
ShortcutTarget: Snagit 11.lnk -> C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe (TechSmith Corporation)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeskSpace.lnk
ShortcutTarget: DeskSpace.lnk -> C:\Program Files (x86)\DeskSpace\deskspace.exe (Otaku Software Pty Ltd)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk * OODBS

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Youtube MP3 Podcaster - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com [2014-06-07]
FF Extension: WOT - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-06-07]
FF Extension: Firebug - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\firebug@software.joehewitt.com.xpi [2014-06-07]
FF Extension: KGen - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\kgen@elitwork.com.xpi [2014-06-22]
FF Extension: Stealthy - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\stealthyextension@gmail.com.xpi [2014-06-07]
FF Extension: LinkChecker - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\{49f3fc85-dcfe-4e42-9301-226ebe658509}.xpi [2014-06-07]
FF Extension: eBay Sidebar for Firefox - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}.xpi [2014-06-07]
FF Extension: Web Developer - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2014-06-07]
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7sap0mbh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-06-06]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-06-07]

Chrome:
=======
CHR Extension: (SEOquake) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc [2014-06-22]
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-06]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-06]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-08]
CHR Extension: (Web Developer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2014-06-07]
CHR Extension: (Brushed) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg [2014-06-08]
CHR Extension: (WOT) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-06-08]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-06]
CHR Extension: (Firebug Lite for Google Chrome™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench [2014-06-07]
CHR Extension: (Nimbus Screenshot) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [2014-06-07]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-06]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-06-07]
CHR Extension: (Nimbus Notes) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\haafigbapbpbpnmgcknnmilaaaimggpk [2014-06-07]
CHR Extension: (Multilink) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakpaefefpemiaahboigpjchbmgkejaj [2014-06-22]
CHR Extension: (KGen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkpcelefglapiahikhocfdcigfpaagcl [2014-06-22]
CHR Extension: (eBay Extension for Google Chrome™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhckppjhonfmcpegdjdibmngahahhck [2014-06-07]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-06]
CHR Extension: (No Name) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\obciceimmggglbmelaidpjlmodcebijb [2014-06-07]
CHR Extension: (Neater Bookmarks) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofgjggbjanlhbgaemjbkiegeebmccifi [2014-06-07]
CHR Extension: (Stylebot) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiaejidbmkiecgbjeifoejpgmdaleoha [2014-06-07]
CHR Extension: (Image Size Info) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\oihdhfbfoagfkpcncinlbhfdgpegcigf [2014-06-07]
CHR Extension: (video2mp3.net) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgehlfiodkonepliockofnonigghjkge [2014-06-07]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-06]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 GatewayAgentService; C:\Program Files (x86)\OO Software\Shared\GatewayAgent\ooemcgats.exe [311296 2010-07-05] (O&O Software GmbH) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272688 2012-08-23] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [File not signed]
R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3065160 2010-09-10] (O&O Software GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [File not signed]
R2 QDLService2kDell; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kDell.exe [331512 2010-06-25] (QUALCOMM, Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-06-08] (Microsoft Corporation) [File not signed]
R2 WMCoreService; C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe [688024 2012-05-31] (Ericsson AB)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3342640 2012-08-23] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-05-09] (Avira Operations GmbH & Co. KG)
R3 d554gps; C:\Windows\System32\DRIVERS\d554gps64.sys [103184 2012-03-01] (Ericsson AB)
R3 d554scard; C:\Windows\System32\DRIVERS\d554scard.sys [61992 2011-01-14] (Ericsson AB)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-06] (Disc Soft Ltd)
R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-10-05] (Ericsson AB)
R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [29736 2011-10-05] (Ericsson AB)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-06-26] (Malwarebytes Corporation)
R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-10-05] (MCCI Corporation)
R3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-10-05] (MCCI Corporation)
R3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-10-05] (MCCI Corporation)
R3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-10-05] (MCCI Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 UimBus; C:\Windows\System32\DRIVERS\UimBus.sys [102664 2014-01-23] ()
R1 Uim_DEVIM; C:\Windows\System32\DRIVERS\uim_devim.sys [25992 2014-01-23] ()
R1 Uim_IM; C:\Windows\System32\DRIVERS\uim_im.sys [700680 2014-01-23] ()
R3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [279312 2012-04-27] (Ericsson AB)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

ynotia 26.06.2014 14:51
FRST Part2:

Code:
==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-26 15:27 - 2014-06-26 15:27 - 00000000 ____D () C:\Windows\ERUNT
2014-06-25 17:26 - 2014-06-25 17:29 - 00000000 ____D () C:\AdwCleaner
2014-06-25 17:20 - 2014-06-25 17:20 - 00038452 _____ () C:\ComboFix.txt
2014-06-25 17:15 - 2014-06-25 17:20 - 00000000 ____D () C:\ComboFix
2014-06-25 17:12 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-06-25 17:12 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-06-25 17:12 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-06-25 17:12 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-06-25 17:12 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-06-25 17:12 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-06-25 17:12 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-06-25 17:12 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-06-25 17:11 - 2014-06-25 17:20 - 00000000 ____D () C:\Qoobox
2014-06-25 17:11 - 2014-06-25 17:19 - 00000000 ____D () C:\Windows\erdnt
2014-06-25 13:57 - 2014-06-25 15:01 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-25 12:17 - 2014-06-26 15:44 - 00000000 ____D () C:\FRST
2014-06-24 16:57 - 2014-06-24 22:32 - 00000000 ____D () C:\ProgramData\wjin
2014-06-24 16:57 - 2014-06-24 21:37 - 00000000 ____D () C:\ProgramData\vhtarhu
2014-06-24 12:12 - 2014-06-24 13:05 - 00000000 ____D () C:\ProgramData\doyao
2014-06-24 02:01 - 2014-06-24 02:02 - 00000000 ____D () C:\Program Files (x86)\Rising
2014-06-23 23:22 - 2014-06-24 16:57 - 00000000 ____D () C:\ProgramData\wddyol
2014-06-23 23:22 - 2014-06-24 16:57 - 00000000 ____D () C:\ProgramData\dwqplug
2014-06-23 23:22 - 2014-06-23 23:22 - 00000000 ____D () C:\ProgramData\iql
2014-06-23 23:13 - 2014-06-24 21:37 - 00000000 ____D () C:\ProgramData\doyaoqq
2014-06-23 22:49 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files (x86)\WinHTTrack
2014-06-22 21:58 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-22 21:58 - 2014-06-22 21:58 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-22 13:46 - 2014-06-22 13:46 - 00000000 ____D () C:\Users\User\AppData\Local\Nero
2014-06-22 01:02 - 2014-06-22 13:46 - 00000237 _____ () C:\Users\User\AppData\Roaming\default.rss
2014-06-21 19:56 - 2014-06-21 19:56 - 00000000 ____D () C:\ProgramData\newbackup
2014-06-21 19:44 - 2014-06-21 19:44 - 00000000 ____D () C:\ProgramData\managecapsule
2014-06-21 19:08 - 2014-06-21 19:08 - 00000000 ____D () C:\ProgramData\logsaver
2014-06-21 19:08 - 2014-06-21 19:08 - 00000000 ____D () C:\ProgramData\ibackupvhd
2014-06-21 17:54 - 2014-06-21 17:54 - 00000000 ____D () C:\ProgramData\ftw
2014-06-21 15:52 - 2014-06-22 03:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nero
2014-06-21 15:52 - 2014-06-21 15:52 - 00000000 ____D () C:\ProgramData\launcher
2014-06-21 15:52 - 2014-06-21 15:52 - 00000000 ____D () C:\ProgramData\explauncher
2014-06-21 15:49 - 2014-06-21 15:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_blockmounter_01_09_00.Wdf
2014-06-21 15:49 - 2014-06-21 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon Backup & Recovery™ 2014 Free
2014-06-21 15:48 - 2014-06-21 15:48 - 00000000 ____D () C:\Program Files\Paragon Software
2014-06-21 15:38 - 2014-06-21 15:38 - 00004767 _____ () C:\Windows\Irremote.ini
2014-06-21 15:31 - 2014-06-21 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-06-21 15:31 - 2014-06-21 15:37 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-06-21 15:31 - 2014-06-21 15:32 - 00000000 ____D () C:\ProgramData\Nero
2014-06-21 15:30 - 2014-06-21 15:30 - 00025685 _____ () C:\Windows\DirectX.log
2014-06-21 15:30 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-06-21 15:03 - 2014-06-21 15:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Canneverbe Limited
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-06-18 23:21 - 2014-06-18 23:27 - 00000000 ____D () C:\Users\User\AppData\Roaming\NexusFont
2014-06-18 21:56 - 2014-06-18 21:56 - 00003086 _____ () C:\Windows\System32\Tasks\{A600625B-7018-4F01-B74F-AF33F469F2FD}
2014-06-17 23:05 - 2014-06-17 23:23 - 00000132 _____ () C:\Users\User\AppData\Roaming\Adobe CS6-BMP-Format - Voreinstellungen
2014-06-17 19:03 - 2014-06-17 19:05 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2014-06-17 19:02 - 2014-06-17 19:03 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-06-17 19:02 - 2014-06-17 19:02 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\ProgramData\Power Soft
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power Soft
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\Program Files (x86)\Power Soft
2014-06-17 17:06 - 2014-06-17 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-06-17 17:06 - 2014-06-17 17:06 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\Program Files (x86)\TomTom International B.V
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\Program Files (x86)\TomTom HOME 2
2014-06-15 23:50 - 2014-06-17 21:25 - 00001456 _____ () C:\Users\User\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-06-15 15:21 - 2014-06-15 15:21 - 00029539 _____ () C:\Users\User\Documents.jdDLMenu
2014-06-15 14:44 - 2014-06-15 14:44 - 00003324 _____ () C:\Windows\System32\Tasks\{11DDE373-F55C-451A-92B1-CD201FB78B8B}
2014-06-15 13:00 - 2014-06-15 13:00 - 00000000 ____D () C:\Program Files (x86)\Tesseract-OCR
2014-06-15 13:00 - 2014-06-15 13:00 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-06-14 20:21 - 2014-06-14 20:54 - 00000000 ____D () C:\Rainmeter
2014-06-14 16:55 - 2014-06-14 16:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\Stardock
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\OtakuSoftware
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeskSpace
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Program Files (x86)\DeskSpace
2014-06-13 21:12 - 2014-06-13 21:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Thinking Minds Budiling Bytes
2014-06-13 20:51 - 2014-06-13 20:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\7stacks
2014-06-13 19:32 - 2014-06-13 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7stacks
2014-06-13 19:32 - 2014-06-13 19:32 - 00000000 ____D () C:\Program Files (x86)\Alastria Software
2014-06-13 18:53 - 2014-06-25 17:31 - 00000000 ____D () C:\Users\User\.rainlendar2
2014-06-13 18:53 - 2014-06-13 18:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainlendar2
2014-06-13 18:53 - 2014-06-13 18:53 - 00000000 ____D () C:\Program Files\Rainlendar2
2014-06-13 18:46 - 2014-06-16 12:53 - 23365632 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2014-06-13 18:40 - 2014-06-19 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2014-06-13 18:40 - 2014-06-19 13:32 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-06-13 18:40 - 2014-06-13 18:40 - 00000000 ____D () C:\ProgramData\Stardock
2014-06-13 03:09 - 2014-06-25 17:35 - 00000000 ____D () C:\Users\User\AppData\Roaming\DropboxMaster
2014-06-13 03:09 - 2014-06-13 03:09 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-06-13 03:07 - 2014-06-25 17:35 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2014-06-13 00:51 - 2014-06-17 17:21 - 00000132 _____ () C:\Users\User\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2014-06-12 22:12 - 2014-06-12 22:12 - 00000000 ____D () C:\Users\User\AppData\Local\colorpicker
2014-06-12 18:31 - 2014-06-12 18:37 - 00000000 ____D () C:\HP Universal Print Driver
2014-06-12 17:40 - 2014-06-12 17:40 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-06-12 17:40 - 2014-06-12 17:40 - 00000000 _____ () C:\Windows\HPMProp.INI
2014-06-12 17:40 - 2013-12-04 00:14 - 00601376 _____ (HP) C:\Windows\SysWOW64\hpcdmc32.dll
2014-06-12 17:40 - 2013-12-04 00:14 - 00237344 _____ (Hewlett-Packard Company) C:\Windows\system32\hpmlm135.dll
2014-06-12 17:40 - 2013-12-04 00:13 - 00217376 _____ (Hewlett-Packard) C:\Windows\system32\hpmml160.dll
2014-06-12 17:40 - 2013-12-04 00:13 - 00189728 _____ (Hewlett-Packard) C:\Windows\system32\hpmpm081.dll
2014-06-12 17:40 - 2013-12-04 00:13 - 00162080 _____ (Hewlett-Packard) C:\Windows\system32\hpmtp160.dll
2014-06-12 17:40 - 2013-12-04 00:13 - 00074016 _____ (Hewlett-Packard) C:\Windows\system32\hpmpw081.dll
2014-06-12 17:40 - 2013-12-04 00:12 - 00199968 _____ (Hewlett-Packard) C:\Windows\system32\hpmja160.dll
2014-06-12 17:40 - 2013-12-04 00:11 - 00447264 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpcpn160.dll
2014-06-12 17:40 - 2013-12-04 00:11 - 00140064 _____ (Hewlett-Packard) C:\Windows\system32\hpcjpm.dll
2014-06-12 17:40 - 2013-12-04 00:07 - 00446240 _____ (Hewlett Packard Corporation) C:\Windows\SysWOW64\hpcc3160.dll
2014-06-12 17:40 - 2011-02-11 14:23 - 00193592 _____ (Hewlett-Packard) C:\Windows\system32\hppdcompio.dll
2014-06-12 17:40 - 2011-02-11 14:23 - 00167480 _____ (Hewlett-Packard) C:\Windows\SysWOW64\hppccompio.dll
2014-06-12 17:40 - 2009-02-25 16:32 - 00060440 _____ (Hewlett-Packard) C:\Windows\system32\FxCompChannel_x64.dll
2014-06-12 16:51 - 2014-06-12 16:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Klebezettel
2014-06-12 16:51 - 2014-06-12 16:53 - 00000000 ____D () C:\Program Files (x86)\Klebezettel NG
2014-06-12 12:21 - 2014-06-12 12:21 - 00000000 ____D () C:\Users\User\AppData\Local\IsolatedStorage
2014-06-12 12:21 - 2014-06-12 12:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDevice Manager
2014-06-12 11:30 - 2014-06-12 11:30 - 00000000 ____D () C:\Users\User\AppData\Local\Apple Computer
2014-06-12 11:30 - 2014-06-12 11:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-12 11:29 - 2014-06-12 11:36 - 00000000 ____D () C:\Users\User\AppData\Roaming\Apple Computer
2014-06-12 11:29 - 2014-06-12 11:29 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Users\User\AppData\Local\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\iTunes
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\iPod
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-06-12 11:29 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-06-11 22:27 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 22:27 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-11 22:27 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 22:27 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 22:27 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 22:27 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 22:27 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 22:27 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 22:27 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 22:27 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 22:27 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 22:27 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 22:27 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 22:27 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 22:27 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 22:27 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 22:27 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 22:27 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 22:27 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 22:27 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 22:27 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 22:27 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 22:27 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 22:27 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 22:27 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 22:27 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 22:27 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 22:27 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 22:27 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 22:27 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 22:27 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 22:27 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 22:27 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 22:27 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 22:27 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 22:27 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 22:27 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 22:27 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 22:27 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 22:27 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 22:27 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 22:27 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 22:27 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 22:27 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 22:27 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 22:27 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 22:27 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 22:27 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 22:27 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 22:27 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 22:27 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 22:27 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 22:27 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-11 22:27 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 22:27 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 22:27 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 22:27 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 22:27 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 22:27 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 22:27 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 22:27 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 22:27 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 22:27 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 22:27 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 22:27 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 22:27 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 00:43 - 2014-06-11 00:46 - 00000000 ___RD () C:\Users\User\OneDrive
2014-06-11 00:43 - 2014-06-11 00:43 - 00002190 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00002120 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00002120 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-06-11 00:43 - 2014-06-11 00:43 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
2014-06-11 00:31 - 2014-06-25 17:54 - 00005112 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for User-PC-User User-PC
2014-06-10 19:50 - 2014-06-25 17:30 - 00028072 _____ () C:\Windows\system32\oodbs.lor
2014-06-10 19:47 - 2014-06-10 19:47 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-06-10 19:47 - 2014-06-10 19:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-06-10 18:55 - 2014-06-10 18:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe.ExMan
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\PACE Anti-Piracy
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\Users\User\AppData\Local\PACE Anti-Piracy
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\ProgramData\PACE Anti-Piracy
2014-06-10 15:33 - 2014-06-22 17:35 - 00000000 ____D () C:\Users\User\AppData\Roaming\Steganos
2014-06-10 15:33 - 2014-06-10 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steganos Safe 14
2014-06-10 15:33 - 2014-06-10 15:33 - 00000000 ____D () C:\Program Files (x86)\Steganos Safe 14
2014-06-10 15:24 - 2014-06-10 15:24 - 00000000 ____D () C:\Windows\system32\oodag
2014-06-10 15:22 - 2014-06-10 15:22 - 00000000 ____D () C:\Users\User\AppData\Local\O&O
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\ProgramData\OO Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\Program Files\OO Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\Program Files (x86)\OO Software
2014-06-10 14:24 - 2014-06-10 14:25 - 00000000 ____D () C:\Program Files\FolderIco
2014-06-10 14:16 - 2014-06-10 14:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigaset QuickSync
2014-06-10 14:16 - 2014-06-10 14:16 - 00000000 ____D () C:\Program Files (x86)\Gigaset QuickSync
2014-06-10 14:10 - 2014-06-10 14:17 - 00000000 ____D () C:\Users\User\AppData\Local\Gigaset_Communications_Gm
2014-06-09 18:57 - 2014-06-09 18:57 - 00000000 ____D () C:\Users\User\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-06-09 17:50 - 2014-06-10 19:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-06-09 17:50 - 2014-06-10 19:47 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-06-09 17:50 - 2014-06-09 17:50 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-09 17:49 - 2014-06-09 17:50 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-06-09 17:48 - 2014-06-09 17:48 - 00000000 ___RD () C:\MSOCache
2014-06-09 01:04 - 2014-06-25 17:31 - 00006516 _____ () C:\Windows\setupact.log
2014-06-09 01:04 - 2014-06-09 01:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-09 01:03 - 2014-06-25 17:30 - 00594836 _____ () C:\Windows\PFRO.log
2014-06-08 23:29 - 2014-06-08 23:29 - 00000000 ____D () C:\Users\User\AppData\Roaming\Windows SideBar
2014-06-08 22:00 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files (x86)\RocketDock
2014-06-08 22:00 - 2014-06-08 22:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2014-06-08 21:59 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer_edit_w7sbc.exe
2014-06-08 21:59 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer_backup_w7sbc.exe
2014-06-08 21:59 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe.0.oldcpt
2014-06-08 21:59 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-06-08 21:59 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.backup.exe
2014-06-08 20:54 - 2014-06-08 20:55 - 00002411 _____ () C:\Windows\system32\ushupgrade.log
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieUserList
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieSiteList
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Zeon
2014-06-08 20:04 - 2014-06-08 20:14 - 00000000 ____D () C:\Users\User\AppData\Roaming\Tor
2014-06-08 20:04 - 2014-06-08 20:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tor
2014-06-08 20:04 - 2014-06-08 20:04 - 00000000 ____D () C:\Program Files (x86)\Tor
2014-06-08 19:59 - 2014-06-08 19:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\driveridentifier
2014-06-08 19:54 - 2014-06-08 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
2014-06-08 19:54 - 2014-06-08 19:54 - 00000000 ____D () C:\Program Files (x86)\Driver Identifier
2014-06-08 19:22 - 2014-06-08 19:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WwanUsbMp64_01009.Wdf
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_d554scard_01007.Wdf
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____D () C:\ProgramData\QUALCOMM
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____D () C:\Program Files (x86)\QUALCOMM
2014-06-08 19:20 - 2014-06-08 19:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wwussf64_01009.Wdf
2014-06-08 19:20 - 2014-06-08 19:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wwuss64_01009.Wdf
2014-06-08 19:20 - 2012-04-27 14:09 - 00279312 _____ (Ericsson AB) C:\Windows\system32\Drivers\WwanUsbMp64.sys
2014-06-08 19:20 - 2012-03-01 16:09 - 00103184 _____ (Ericsson AB) C:\Windows\system32\Drivers\d554gps64.sys
2014-06-08 19:20 - 2011-11-04 10:53 - 00035404 ____R () C:\Windows\ConnectionProfiles.dat
2014-06-08 19:20 - 2011-10-05 12:38 - 00029736 _____ (Ericsson AB) C:\Windows\system32\Drivers\wwussf64.sys
2014-06-08 19:20 - 2011-10-05 12:38 - 00026664 _____ (Ericsson AB) C:\Windows\system32\Drivers\wwuss64.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00483400 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3Mdm.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00430664 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3DevMt.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00419400 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3CBus.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00019528 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3mdfl.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00015944 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3whnt.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00015944 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3wh.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00015432 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3cmnt.sys
2014-06-08 19:20 - 2011-10-05 11:58 - 00015432 _____ (MCCI Corporation) C:\Windows\system32\Drivers\Mbm3cm.sys
2014-06-08 19:20 - 2011-01-14 14:49 - 00061992 _____ (Ericsson AB) C:\Windows\system32\Drivers\d554scard.sys
2014-06-08 19:20 - 2008-03-27 17:51 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll
2014-06-08 19:19 - 2014-06-08 19:19 - 00003138 _____ () C:\Windows\System32\Tasks\{14E6BC68-A461-40C7-903D-313764A8C895}
2014-06-08 19:18 - 2014-06-08 19:18 - 00003144 _____ () C:\Windows\System32\Tasks\{242E0CDB-2E98-4302-94E6-EF2FC7DBF7C6}
2014-06-08 19:17 - 2014-06-21 15:47 - 00000000 ____D () C:\Users\User\AppData\Local\Downloaded Installations
2014-06-08 19:13 - 2014-06-08 19:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-06-08 19:11 - 2014-06-08 19:11 - 00000000 ____D () C:\ProgramData\Intel.sav
2014-06-08 19:10 - 2014-06-08 19:10 - 00003122 _____ () C:\Windows\System32\Tasks\{EDDA55E3-7F44-4AF8-97BE-FA20095812AD}
2014-06-08 19:09 - 2014-06-19 11:46 - 00000000 ____D () C:\Windows\{69093D49-3DD1-4FB5-A378-0D4DB4CF86EA}
2014-06-08 19:09 - 2014-06-08 19:20 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-06-08 19:09 - 2014-06-08 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-08 18:51 - 2014-06-08 18:51 - 00003132 _____ () C:\Windows\System32\Tasks\{75CDD922-E3EF-43A1-A71B-C52EB4D57918}
2014-06-08 18:51 - 2012-08-10 15:44 - 00482128 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1c62x64.sys
2014-06-08 18:51 - 2012-08-09 13:56 - 00101224 _____ (Intel Corporation) C:\Windows\system32\NicInstC.dll
2014-06-08 18:51 - 2012-08-09 09:54 - 00073032 _____ (Intel Corporation) C:\Windows\system32\e1cmsg.dll
2014-06-08 18:42 - 2014-06-08 18:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-06-08 17:07 - 2014-06-08 20:26 - 00925184 _____ () C:\Windows\expstart.exe
2014-06-08 16:41 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
2014-06-08 16:40 - 2014-06-26 14:50 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA.job
2014-06-08 16:40 - 2014-06-25 17:50 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core.job
2014-06-08 16:40 - 2014-06-18 17:45 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA
2014-06-08 16:40 - 2014-06-18 17:45 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core
2014-06-08 16:37 - 2010-11-21 05:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll.backup
2014-06-08 16:37 - 2009-07-14 03:41 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll.backup
2014-06-08 16:37 - 2009-07-14 03:41 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll.backup
2014-06-08 16:29 - 2014-06-08 16:32 - 00000000 ____D () C:\Windows\W7SBC
2014-06-08 15:57 - 2014-06-08 15:57 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-08 15:53 - 2014-06-08 15:53 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-08 15:53 - 2014-06-08 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-08 15:53 - 2014-06-08 15:53 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-08 15:52 - 2014-06-17 16:08 - 00001102 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-08 15:52 - 2014-06-09 01:15 - 00000000 ____D () C:\Users\User\AppData\Roaming\TeamViewer
2014-06-08 15:52 - 2014-06-08 15:52 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-08 15:40 - 2014-06-08 15:40 - 00000000 ____D () C:\Windows\SysWOW64\SDA
2014-06-08 15:40 - 2014-06-08 15:40 - 00000000 ____D () C:\Program Files (x86)\O2Micro
2014-06-08 15:40 - 2010-08-13 17:25 - 00223848 _____ (O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
2014-06-08 15:40 - 2003-04-18 18:06 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe
2014-06-08 15:40 - 2003-04-18 18:05 - 00032256 _____ () C:\Windows\SysWOW64\instsrv.exe
2014-06-08 15:39 - 2014-06-08 15:39 - 00000000 ____D () C:\Program Files\IDT
2014-06-08 15:22 - 2014-06-24 17:00 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-06-07 21:25 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-06-07 21:25 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-06-07 21:25 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-06-07 21:25 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-06-07 21:25 - 2013-11-23 19:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-06-07 21:25 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-06-07 21:25 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-06-07 21:24 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-06-07 21:24 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-06-07 21:24 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-06-07 21:24 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-06-07 21:24 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-06-07 21:24 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-06-07 21:24 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-06-07 21:24 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-06-07 21:24 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-06-07 21:24 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-06-07 21:24 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-06-07 21:24 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-06-07 21:24 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-06-07 21:24 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-06-07 21:24 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-06-07 21:24 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-06-07 19:56 - 2014-06-07 19:56 - 00003238 _____ () C:\Windows\System32\Tasks\AutoKMSCustom
2014-06-07 19:55 - 2014-06-24 22:32 - 00000000 ____D () C:\Windows\AutoKMS
2014-06-07 19:54 - 2014-06-07 19:54 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-06-07 19:01 - 2014-06-07 19:01 - 00000000 ____D () C:\Users\User\AppData\Local\Folderico
2014-06-07 17:48 - 2014-06-10 14:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folderico
2014-06-07 17:48 - 2014-06-07 19:02 - 00000000 ____D () C:\ProgramData\Folderico
2014-06-07 17:48 - 2014-06-07 17:48 - 00000000 ____D () C:\Program Files (x86)\Folderico
2014-06-07 17:26 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\IrfanView
2014-06-07 17:26 - 2014-06-07 17:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-06-07 17:26 - 2014-06-07 17:26 - 00000000 ____D () C:\Program Files (x86)\IrfanView
2014-06-07 17:22 - 2014-06-07 17:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NexusFont
2014-06-07 17:22 - 2014-06-07 17:22 - 00000000 ____D () C:\Program Files (x86)\NexusFont
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\Users\User\AppData\Local\Tools&More
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tools&More
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\Program Files (x86)\Tools&More
2014-06-07 16:58 - 2014-06-07 17:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\AllDup
2014-06-07 16:58 - 2014-06-07 17:13 - 00000000 ____D () C:\ProgramData\AllDup
2014-06-07 16:58 - 2014-06-07 17:13 - 00000000 ____D () C:\Program Files (x86)\AllDup
2014-06-07 16:58 - 2014-06-07 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AllDup
2014-06-07 16:58 - 2010-10-13 05:42 - 02369456 _____ (Codejock Software) C:\Windows\SysWOW64\Codejock.CommandBars.v13.4.2.ocx
2014-06-07 16:58 - 2010-08-20 20:53 - 00086016 _____ (Michael Thummerer Software Design) C:\Windows\SysWOW64\mtSplitter.ocx
2014-06-07 16:58 - 2010-06-11 09:50 - 00089888 _____ (Michael Thummerer Software Design) C:\Windows\SysWOW64\mtFrame.ocx
2014-06-07 16:58 - 2010-06-01 13:45 - 01005088 _____ (Bennet-Tec Information Systems, Inc) C:\Windows\SysWOW64\TList8.ocx
2014-06-07 16:58 - 2010-03-25 09:33 - 00171752 _____ (Michael Thummerer Software Design) C:\Windows\SysWOW64\mtRTF2.ocx
2014-06-07 16:58 - 2009-10-12 23:02 - 00044736 _____ (Michael Thummerer Software Design) C:\Windows\SysWOW64\mtSubclass.dll
2014-06-07 16:58 - 2009-10-12 23:01 - 00077504 _____ (Michael Thummerer Software Design) C:\Windows\SysWOW64\mtScrollContainer.ocx
2014-06-07 16:58 - 2008-01-29 06:57 - 00450560 _____ (LogicNP Software (hxxp://www.ssware.com)) C:\Windows\SysWOW64\fldrvw90.ocx
2014-06-07 16:42 - 2014-06-12 11:29 - 00000000 ____D () C:\ProgramData\Apple
2014-06-07 16:42 - 2014-06-09 23:18 - 00000000 ____D () C:\Users\User\AppData\Local\AirVideoServerHD
2014-06-07 16:42 - 2014-06-07 16:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Video Server HD
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files (x86)\AirVideoServer HD
2014-06-07 15:56 - 2014-06-08 19:12 - 00000000 ____D () C:\ProgramData\Intel
2014-06-07 15:21 - 2010-07-22 11:40 - 00041280 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\system32\Drivers\PCASp50a64.sys
2014-06-07 15:20 - 2014-06-08 19:17 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-07 15:12 - 2014-06-07 15:12 - 00003298 _____ () C:\Windows\System32\Tasks\{48A88281-289D-428B-BC18-C91AC0E35220}
2014-06-07 15:07 - 2014-06-07 15:07 - 00000000 ____D () C:\Program Files (x86)\Broadcom
2014-06-07 14:44 - 2014-06-07 14:44 - 00000000 ____D () C:\Program Files\CONEXANT
2014-06-07 14:44 - 2009-04-29 11:21 - 00436736 _____ (Conexant Systems, Inc.) C:\Windows\SysWOW64\XAudio64.dll
2014-06-07 14:44 - 2009-04-29 11:21 - 00010240 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\XAudio64.sys
2014-06-07 14:44 - 2009-04-23 10:26 - 00394240 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64M40.dll
2014-06-07 14:44 - 2009-02-12 22:24 - 01485824 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\CAX_DPV.sys
2014-06-07 14:44 - 2009-02-12 22:20 - 00292864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\CAXHWAZL.sys
2014-06-07 14:44 - 2009-02-12 22:19 - 00740864 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\CAX_CNXT.sys
2014-06-07 14:44 - 2008-03-27 11:33 - 00146146 _____ () C:\Windows\system32\Drivers\del1028.cty
2014-06-07 14:44 - 2006-06-18 06:27 - 00017024 _____ (Conexant) C:\Windows\system32\Drivers\mdmxsdk.sys
2014-06-07 14:44 - 2006-06-18 06:26 - 00094208 _____ (Conexant) C:\Windows\SysWOW64\mdmxsdk.dll
2014-06-07 14:41 - 2014-06-08 20:51 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-06-07 14:41 - 2014-06-08 15:38 - 00000000 ____D () C:\ProgramData\dell
2014-06-07 14:41 - 2014-06-07 14:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-06-07 14:41 - 2014-06-07 14:41 - 00000000 ____D () C:\Program Files\DellTPad
2014-06-07 14:41 - 2013-05-21 22:04 - 00496432 _____ (Alps Electric Co., Ltd.) C:\Windows\system32\Drivers\Apfiltr.sys
2014-06-07 14:41 - 2013-03-01 04:29 - 00116056 _____ (Alps Electric Co., Ltd.) C:\Windows\system32\Vxdif.dll
2014-06-07 14:41 - 2013-01-24 01:19 - 00057376 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2014-06-07 14:41 - 2013-01-24 01:19 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-06-07 14:41 - 2010-09-16 01:00 - 00017776 _____ () C:\Windows\EvtMessage.dll
2014-06-07 14:41 - 2009-07-14 21:21 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2014-06-07 14:40 - 2011-04-16 07:00 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-06-07 14:39 - 2010-01-27 03:30 - 00162816 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAC64.dll
2014-06-07 14:39 - 2009-10-10 00:45 - 00442368 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTEC64.dll
2014-06-07 14:39 - 2009-03-03 02:58 - 00068608 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTAR64.dll
2014-06-07 14:38 - 2011-01-25 02:57 - 11941376 _____ (IDT, Inc.) C:\Windows\system32\idtsg64.cpl
2014-06-07 14:38 - 2011-01-25 02:57 - 04637184 _____ (IDT, Inc.) C:\Windows\system32\stlang64.dll
2014-06-07 14:38 - 2011-01-25 02:57 - 01499136 _____ (IDT, Inc.) C:\Windows\system32\stapo64.dll
2014-06-07 14:38 - 2011-01-25 02:57 - 00651776 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2014-06-07 14:38 - 2011-01-25 02:57 - 00520192 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2014-06-07 14:38 - 2011-01-25 02:57 - 00431616 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2014-06-07 14:38 - 2011-01-25 02:57 - 00220160 _____ (IDT, Inc.) C:\Windows\system32\st646324.dll
2014-06-07 13:57 - 2014-06-07 13:57 - 00000000 ____D () C:\Users\User\AppData\Local\Dell
2014-06-07 13:03 - 2014-06-07 13:44 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-06-07 11:19 - 2014-06-07 11:26 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-06-07 11:19 - 2014-06-07 11:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biet-O-Matic
2014-06-07 11:19 - 2000-12-05 23:00 - 00109248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mswinsck.ocx
2014-06-07 11:19 - 2000-10-01 23:00 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6de.dll
2014-06-07 11:19 - 2000-05-22 15:58 - 00115920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2014-06-07 11:19 - 2000-04-03 19:06 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winskde.dll
2014-06-07 11:19 - 2000-04-03 19:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2014-06-07 11:19 - 1999-07-14 13:07 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stdftde.dll
2014-06-07 11:19 - 1998-07-05 23:00 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mscmcde.dll
2014-06-07 11:19 - 1998-07-05 23:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Tabctde.dll
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\Users\User\AppData\Local\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\ProgramData\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\Program Files (x86)\TechSmith
2014-06-07 10:52 - 2014-06-07 10:52 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-07 10:44 - 2014-06-07 10:44 - 00083138 _____ () C:\Program Files\Uninstal.exe
2014-06-07 10:44 - 2014-06-07 10:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Debut Video Capture
2014-06-07 10:19 - 2014-06-07 10:19 - 00000000 ____D () C:\Users\User\AppData\Local\Macromedia
2014-06-07 10:18 - 2014-06-26 02:00 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-06-07 10:14 - 2014-06-26 14:59 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-07 10:14 - 2014-06-07 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-07 10:14 - 2014-06-07 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-07 10:14 - 2014-06-07 10:14 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-07 10:10 - 2014-06-12 03:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-07 10:10 - 2014-06-12 03:01 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-07 04:56 - 2014-06-12 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-07 04:37 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-06-07 04:37 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-06-07 04:37 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-06-07 04:37 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-06-07 04:24 - 2014-06-08 03:01 - 01592784 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-07 04:14 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-06-07 04:05 - 2014-06-07 04:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-07 04:05 - 2014-06-07 04:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-07 04:05 - 2014-06-07 04:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-07 04:05 - 2014-06-07 04:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-07 04:05 - 2014-06-07 04:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-07 04:05 - 2014-06-07 04:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-07 04:05 - 2014-06-07 04:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-07 04:00 - 2014-06-07 04:00 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-07 03:31 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-06-07 03:12 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-06-07 03:12 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-06-07 03:12 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-06-07 03:12 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-06-07 03:12 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-06-07 03:12 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-06-07 03:12 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-06-07 03:12 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-06-07 03:04 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-06-07 03:04 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-06-07 03:04 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-06-07 00:54 - 2014-06-07 11:13 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-06-07 00:54 - 2014-06-07 10:44 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-06-07 00:54 - 2014-06-07 00:54 - 00000000 ____D () C:\ProgramData\NCH Software
2014-06-07 00:33 - 2014-06-07 00:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-06-07 00:31 - 2014-06-07 00:33 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-06-07 00:30 - 2014-06-07 00:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-06-07 00:12 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files\Unlocker
2014-06-07 00:12 - 2014-06-07 00:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-06-06 23:48 - 2014-06-24 22:32 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-06-06 23:47 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft Help
2014-06-06 23:47 - 2014-06-10 19:48 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-06 23:44 - 2014-06-09 00:05 - 00000000 ____D () C:\Windows\Panther
2014-06-06 23:44 - 2014-06-06 23:44 - 00000000 ____D () C:\Hotfix
2014-06-06 23:44 - 2011-02-16 04:16 - 00000029 ___RH () C:\Windows\version
2014-06-06 23:44 - 2011-02-16 04:16 - 00000013 ____R () C:\Windows\csup.txt
2014-06-06 23:43 - 2014-06-25 17:37 - 00702612 _____ () C:\Windows\system32\perfh007.dat
2014-06-06 23:43 - 2014-06-25 17:37 - 00150164 _____ () C:\Windows\system32\perfc007.dat
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\system32\de
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\system32\0407
2014-06-06 23:43 - 2014-06-06 23:42 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-06 23:43 - 2014-06-06 23:42 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-06 23:14 - 2014-06-06 23:14 - 00003498 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User
2014-06-06 23:08 - 2014-06-06 23:08 - 00000000 _____ () C:\Users\User\Sti_Trace.log
2014-06-06 22:13 - 2014-06-06 22:13 - 00000000 ____D () C:\Users\User\AppData\Local\Scansoft
2014-06-06 22:04 - 2014-06-25 15:38 - 00000000 ____D () C:\Users\User\AppData\Roaming\DAEMON Tools Lite
2014-06-06 22:04 - 2014-06-06 22:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-06-06 22:04 - 2014-06-06 22:04 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-06-06 22:04 - 2014-06-06 22:04 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-06-06 22:03 - 2014-06-06 23:05 - 00000425 _____ () C:\Windows\BRWMARK.INI
2014-06-06 22:03 - 2014-06-06 23:05 - 00000027 _____ () C:\Windows\BRPP2KA.INI
2014-06-06 22:03 - 2014-06-06 22:03 - 00000256 _____ () C:\Windows\Brpfx04a.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000093 _____ () C:\Windows\brpcfx.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000066 _____ () C:\Windows\Brfaxrx.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000050 _____ () C:\Windows\system32\bridf09d.dat
2014-06-06 22:03 - 2014-06-06 22:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-06-06 22:03 - 2010-04-14 17:15 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2014-06-06 22:03 - 2009-04-07 12:02 - 01560576 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWia09b.dll
2014-06-06 22:03 - 2009-02-24 14:01 - 00082944 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrNetSti.dll
2014-06-06 22:03 - 2009-02-24 12:52 - 00058368 _____ (Brother Industries,Ltd.) C:\Windows\system32\BrWiaNCp.dll
2014-06-06 22:03 - 2009-02-24 12:52 - 00047616 _____ (Brother Industries,Ltd) C:\Windows\system32\Brnsplg.dll
2014-06-06 22:03 - 2008-10-17 20:04 - 00179712 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrfxDA5b.dll
2014-06-06 22:03 - 2008-08-23 19:17 - 00118784 ____N (Brother Industries,LTD.) C:\Windows\SysWOW64\BrMfNt.dll
2014-06-06 22:03 - 2008-06-17 15:35 - 00207872 _____ (brother) C:\Windows\system32\NSSRH64.dll
2014-06-06 22:03 - 2007-12-13 22:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2014-06-06 22:03 - 2007-12-13 22:16 - 00005632 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2014-06-06 22:03 - 2006-12-28 13:39 - 00176128 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll
2014-06-06 22:03 - 2006-07-07 12:40 - 00073728 ____N (Brother Industories Ltd. P&S Company) C:\Windows\SysWOW64\BRCrypt.dll
2014-06-06 22:03 - 2005-04-22 13:36 - 00143360 _____ () C:\Windows\system32\BrSNMP64.dll
2014-06-06 22:03 - 2003-11-28 18:57 - 00000000 _____ () C:\Windows\brdfxspd.dat
2014-06-06 22:03 - 2002-11-26 13:43 - 00106496 ____N () C:\Windows\SysWOW64\BrMuSNMP.dll
2014-06-06 22:02 - 2014-06-06 22:03 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-06-06 22:02 - 2008-06-17 15:33 - 00167936 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2014-06-06 22:00 - 2014-06-24 22:32 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-06-06 22:00 - 2014-06-06 22:04 - 00000000 ____D () C:\ProgramData\InstallShield
2014-06-06 22:00 - 2014-06-06 22:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\InstallShield
2014-06-06 22:00 - 2014-06-06 22:00 - 00000000 ____D () C:\Program Files\Nuance
2014-06-06 21:58 - 2014-06-06 21:58 - 00000000 ____D () C:\ProgramData\Brother
2014-06-06 21:27 - 2014-06-06 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-06 21:26 - 2014-06-26 15:37 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-06 21:26 - 2014-06-26 13:37 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-06 21:26 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2014-06-06 21:26 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-06 21:26 - 2014-06-17 13:32 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-06 21:26 - 2014-06-17 13:32 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-06 21:06 - 2014-06-06 21:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-06-06 21:05 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Local\JDownloader2
2014-06-06 21:04 - 2014-06-06 21:04 - 35197680 _____ (AppWork GmbH) C:\Users\User\Downloads\JD2Setup_x64_oc.exe
2014-06-06 20:44 - 2014-06-06 20:44 - 00000000 ____D () C:\Users\User\AppData\Local\Logitech
2014-06-06 20:44 - 2014-06-06 20:44 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2014-06-06 20:43 - 2014-06-07 18:25 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-06-06 20:43 - 2014-06-07 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-06 20:43 - 2014-06-07 18:24 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Leadertech
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Users\User\AppData\Local\Logishrd
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Logitech
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Program Files\Logitech
2014-06-06 20:40 - 2014-06-06 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FalNET G19 Display Manager
2014-06-06 20:40 - 2014-06-06 20:47 - 00000000 ____D () C:\Program Files (x86)\FalNET G19 Display Manager
2014-06-06 20:40 - 2014-06-06 20:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logishrd
2014-06-06 20:40 - 2014-06-06 20:40 - 00000000 ____D () C:\Users\User\AppData\Local\FalNET
2014-06-06 20:26 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-06-06 20:16 - 2014-06-08 19:20 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-06 20:16 - 2014-06-07 18:25 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-06-06 20:16 - 2014-06-06 20:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logitech
2014-06-06 20:16 - 2014-06-06 20:16 - 00047166 _____ () C:\DEBUG.TXT
2014-06-06 20:16 - 2014-06-06 20:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2014-06-06 20:16 - 2014-06-06 20:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2014-06-06 20:16 - 2009-07-20 12:35 - 00096272 _____ (Logitech, Inc.) C:\Windows\system32\KemXML.dll
2014-06-06 20:16 - 2009-07-20 12:34 - 00235536 _____ (Logitech, Inc.) C:\Windows\system32\KemUtil.dll
2014-06-06 20:16 - 2009-07-20 12:34 - 00235536 _____ (Logitech, Inc.) C:\Windows\system32\kemutb.dll
2014-06-06 20:16 - 2009-07-20 12:34 - 00159248 _____ (Logitech, Inc.) C:\Windows\system32\KemWnd.dll
2014-06-06 19:27 - 2014-06-26 15:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2014-06-06 19:26 - 2014-06-06 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-06 19:26 - 2014-06-06 19:26 - 00000000 ____D () C:\Program Files\VideoLAN
2014-06-06 18:58 - 2014-06-08 18:20 - 00000000 ____D () C:\Users\User\AppData\Local\Deployment
2014-06-06 18:58 - 2014-06-06 18:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-06 18:58 - 2014-06-06 18:58 - 00000000 ____D () C:\Users\User\AppData\Local\Apps\2.0
2014-06-06 18:54 - 2014-06-26 15:25 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-06 18:39 - 2014-06-25 14:20 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-06 18:39 - 2014-06-06 18:39 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\Users\User\AppData\Roaming\Avira
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-06 18:39 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-06 18:39 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-06 18:37 - 2014-06-06 18:37 - 00000000 ____D () C:\ProgramData\Avira
2014-06-06 18:37 - 2014-06-06 18:37 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-06 18:37 - 2014-05-09 11:16 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-06 18:37 - 2014-05-09 11:16 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-06 18:37 - 2014-05-09 11:16 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-06-06 18:07 - 2014-06-06 18:07 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Sun
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-06 18:06 - 2014-06-06 18:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\WinRAR
2014-06-06 18:06 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-06-06 18:06 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-06-06 18:06 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-06 18:06 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-06-06 18:06 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-06-06 18:06 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-06-06 18:06 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-06-06 18:06 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-06-06 18:06 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-06-06 18:06 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-06-06 18:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-06-06 18:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-06-06 18:06 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-06-06 18:06 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-06-06 18:06 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-06-06 18:06 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-06-06 18:06 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-06-06 18:06 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-06-06 18:06 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-06-06 18:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-06-06 18:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-06-06 18:06 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-06-06 18:06 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-06-06 18:06 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-06-06 18:06 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-06-06 18:06 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-06-06 18:06 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-06-06 18:06 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-06-06 18:06 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-06-06 18:06 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-06-06 18:06 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-06-06 18:06 - 2013-11-12 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-06-06 18:06 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-06-06 18:06 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-06-06 18:06 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-06-06 18:06 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-06-06 18:06 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-06-06 18:06 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-06-06 18:06 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-06-06 18:06 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-06-06 18:06 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-06-06 18:06 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-06-06 18:06 - 2013-10-04 04:24 - 01930240 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll.0.oldcpt
2014-06-06 18:06 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-06-06 18:06 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-06-06 18:06 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-06-06 18:06 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-06-06 18:06 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-06-06 18:06 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-06-06 18:06 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-06-06 18:06 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-06-06 18:06 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-06-06 18:06 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-06-06 18:06 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-06-06 18:06 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-06-06 18:06 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-06-06 18:06 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-06-06 18:06 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-06-06 18:06 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-06-06 18:06 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-06-06 18:06 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-06-06 18:06 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-06-06 18:06 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-06-06 18:06 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-06-06 18:06 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-06-06 18:06 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-06-06 18:06 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-06-06 18:06 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-06-06 18:06 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-06-06 18:06 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-06-06 18:06 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-06-06 18:06 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-06-06 18:06 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-06-06 18:06 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-06-06 18:06 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-06-06 18:06 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-06-06 18:06 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-06-06 18:06 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-06-06 18:06 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-06-06 18:06 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-06-06 18:06 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-06-06 18:06 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-06-06 18:06 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-06-06 18:06 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-06-06 18:06 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-06-06 18:06 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-06-06 18:06 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-06-06 18:06 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-06-06 18:06 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-06-06 18:06 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-06-06 18:06 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-06-06 18:06 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-06-06 18:06 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-06-06 18:06 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-06-06 18:06 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-06-06 18:06 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-06-06 18:06 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-06-06 18:06 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-06-06 18:06 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-06-06 18:06 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-06-06 18:06 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-06-06 18:06 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-06-06 18:06 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-06-06 18:06 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-06-06 18:06 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-06-06 18:06 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-06-06 18:06 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-06-06 18:06 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-06 18:05 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-06-06 18:05 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-06-06 18:05 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-06-06 18:05 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-06-06 18:05 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-06-06 18:05 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-06-06 18:05 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-06-06 18:05 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-06-06 18:05 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-06-06 18:05 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-06 18:05 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-06-06 18:05 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-06-06 18:05 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-06-06 18:05 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-06-06 18:05 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-06-06 18:05 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-06-06 18:05 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-06-06 18:05 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-06-06 18:05 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-06-06 18:05 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-06-06 18:05 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-06-06 18:05 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-06-06 18:05 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-06-06 18:05 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-06-06 18:05 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-06-06 18:05 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-06-06 18:05 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-06-06 18:05 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-06-06 18:05 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-06-06 18:05 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-06-06 18:05 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-06-06 18:05 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-06-06 18:05 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-06-06 18:05 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-06-06 18:05 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-06-06 18:05 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-06-06 18:05 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-06-06 18:05 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-06-06 18:05 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-06-06 18:05 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-06-06 18:05 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-06-06 18:05 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-06-06 18:05 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-06-06 18:05 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-06-06 18:05 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-06-06 18:05 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-06-06 18:05 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-06-06 18:05 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-06-06 18:05 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-06-06 18:05 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-06-06 18:05 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-06-06 18:05 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-06-06 18:05 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-06-06 18:05 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-06-06 18:05 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-06-06 18:05 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-06-06 18:05 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-06-06 18:05 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-06-06 18:05 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-06-06 18:05 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-06-06 18:05 - 2012-11-29 00:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-06-06 18:05 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-06-06 18:05 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-06-06 18:05 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-06-06 18:05 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-06-06 18:05 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-06-06 18:05 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-06-06 18:05 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-06-06 18:05 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-06-06 18:05 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-06-06 18:05 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-06-06 18:05 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-06-06 18:05 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-06 18:05 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-06-06 18:05 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-06-06 18:05 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-06-06 18:05 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-06-06 18:05 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-06-06 18:05 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-06-06 18:05 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-06-06 18:05 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-06-06 18:05 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-06-06 18:05 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-06-06 18:05 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-06-06 18:05 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-06-06 18:05 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-06-06 18:05 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-06-06 18:05 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-06-06 18:05 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-06-06 18:05 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-06-06 18:05 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-06-06 18:05 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-06-06 18:05 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-06-06 18:05 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-06-06 18:05 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-06-06 18:05 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-06-06 18:05 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-06-06 18:05 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-06-06 18:05 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-06-06 18:05 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-06-06 18:05 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-06-06 18:05 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-06-06 18:05 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-06-06 18:05 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-06-06 18:05 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-06-06 18:05 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-06-06 18:05 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-06-06 18:05 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-06-06 18:05 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-06 18:05 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-06-06 18:05 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

ynotia 26.06.2014 14:52
FRST Part3:

Code:
2014-06-06 18:05 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-06-06 18:05 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-06-06 18:05 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-06-06 18:05 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-06-06 18:05 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-06-06 18:05 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-06-06 18:05 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-06-06 18:05 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-06-06 18:05 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-06-06 18:05 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-06-06 18:05 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-06-06 18:05 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-06-06 18:04 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-06-06 18:04 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-06-06 18:04 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-06-06 18:04 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-06-06 18:04 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-06-06 18:04 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-06-06 18:04 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-06-06 18:04 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-06-06 18:04 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-06-06 18:04 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-06-06 18:04 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-06-06 18:04 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-06-06 18:04 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-06-06 18:04 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-06-06 18:04 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-06-06 18:04 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-06-06 18:04 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-06-06 18:04 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-06-06 18:04 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-06-06 18:04 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-06-06 18:04 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-06-06 18:04 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-06-06 18:04 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-06-06 18:04 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-06-06 18:04 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-06-06 18:04 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-06-06 18:04 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-06-06 18:04 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-06-06 18:04 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-06-06 18:04 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-06-06 18:04 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-06-06 18:04 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-06-06 18:04 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-06-06 18:04 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-06 18:04 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-06 18:04 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-06-06 18:04 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-06-06 18:04 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-06-06 18:04 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-06-06 18:04 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-06-06 18:04 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-06-06 18:04 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-06 18:04 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-06 18:04 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-06-06 18:04 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-06-06 18:04 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-06-06 18:04 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-06-06 18:04 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-06-06 18:04 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-06-06 18:04 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-06-06 18:04 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-06-06 18:04 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-06-06 18:04 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-06-06 18:04 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-06-06 18:04 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-06-06 18:04 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-06-06 18:04 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-06-06 18:04 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-06-06 18:04 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-06-06 18:04 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-06-06 18:04 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-06-06 18:04 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-06-06 18:04 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-06-06 18:04 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-06 18:04 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-06-06 18:04 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-06-06 18:04 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-06-06 18:04 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-06-06 18:04 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-06-06 18:04 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-06-06 18:04 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-06-06 18:04 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-06-06 18:04 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-06-06 18:04 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-06-06 18:04 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-06-06 18:04 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-06-06 18:04 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-06-06 18:04 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-06-06 18:04 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-06-06 18:04 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-06-06 18:04 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-06-06 18:04 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-06-06 18:04 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-06-06 18:04 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-06-06 18:04 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-06-06 18:04 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-06-06 18:04 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-06-06 18:04 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-06-06 18:04 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-06-06 18:04 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-06-06 18:04 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-06-06 18:04 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-06-06 18:01 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-06-06 18:01 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-06-06 18:01 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-06-06 18:01 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-06-06 18:01 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-06-06 17:58 - 2014-06-24 22:32 - 00000000 ____D () C:\Users\User\AppData\Local\Mozilla
2014-06-06 17:58 - 2014-06-24 22:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-06 17:58 - 2014-06-06 17:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mozilla
2014-06-06 17:57 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-06-06 17:57 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-06-06 17:51 - 2014-06-06 17:51 - 00000000 ____D () C:\Windows\Dell
2014-06-06 17:51 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-06-06 17:51 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-06-06 17:51 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-06-06 17:48 - 2014-06-06 17:48 - 00003104 _____ () C:\Windows\System32\Tasks\{0E3F0A2F-3362-4A91-8D46-B47C03B17CD4}
2014-06-06 17:48 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-06-06 17:48 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-06-06 17:48 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-06-06 17:48 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-06-06 17:48 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-06-06 17:48 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-06-06 17:48 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-06-06 17:48 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-06-06 17:48 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-06-06 17:47 - 2014-06-06 17:47 - 00000000 ____D () C:\Intel
2014-06-06 17:47 - 2013-02-06 17:17 - 00544568 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2014-06-06 17:47 - 2012-01-06 14:02 - 00003114 _____ () C:\Windows\system32\e1c62x64.din
2014-06-06 17:47 - 2009-05-26 10:05 - 00036472 _____ (Intel Corporation) C:\Windows\system32\NicCo36.dll
2014-06-06 17:47 - 2006-01-12 15:52 - 00001904 _____ () C:\Windows\system32\SetupBD.din
2014-06-06 17:13 - 2014-06-06 17:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-06-06 16:11 - 2014-06-06 16:12 - 00000000 ____D () C:\dell
2014-06-06 15:45 - 2014-06-06 15:45 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-06-06 15:42 - 2014-06-06 15:42 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-06 15:42 - 2014-06-06 15:42 - 00000000 ____D () C:\ProgramData\ALM
2014-06-06 15:40 - 2014-06-06 15:40 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-06-06 15:40 - 2014-06-06 15:40 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2014-06-06 15:40 - 2014-06-06 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-06-06 15:39 - 2014-06-06 15:39 - 00001097 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
2014-06-06 15:39 - 2014-06-06 15:39 - 00000000 ____D () C:\Program Files (x86)\My Company Name
2014-06-06 15:39 - 2011-11-03 03:01 - 00056208 ____N (Rovi Corporation) C:\Windows\system32\Drivers\PxHlpa64.sys
2014-06-06 15:39 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdralw2k.sys
2014-06-06 15:39 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdr4_xp.sys
2014-06-06 15:37 - 2014-06-06 15:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-06-06 15:37 - 2014-06-06 15:37 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2014-06-06 15:37 - 2014-06-06 15:37 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-06 15:37 - 2014-06-06 15:37 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-06 15:36 - 2014-06-06 15:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
2014-06-06 15:36 - 2014-06-06 15:44 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-06 15:36 - 2014-06-06 15:44 - 00000000 ____D () C:\Program Files\Adobe
2014-06-06 15:36 - 2014-06-06 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-06 15:33 - 2014-06-15 23:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2014-06-06 15:33 - 2014-06-09 22:57 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-06 15:33 - 2014-06-06 15:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2014-06-06 14:06 - 2014-06-16 00:18 - 00117136 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-06 13:50 - 2014-06-26 03:00 - 01871788 _____ () C:\Windows\WindowsUpdate.log
2014-06-06 13:50 - 2014-06-24 22:34 - 00000000 ____D () C:\Users\User
2014-06-06 13:50 - 2014-06-21 16:26 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-06-06 13:50 - 2014-06-07 10:08 - 00001381 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-06 13:50 - 2014-06-06 13:50 - 00000020 ___SH () C:\Users\User\ntuser.ini
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Netzwerkumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Lokale Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Eigene Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Druckumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 ____D () C:\Recovery
2014-06-06 13:50 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-06 13:50 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-06 13:47 - 2014-06-06 13:47 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-06-06 13:47 - 2014-06-06 13:47 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-06 13:46 - 2014-06-06 13:46 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf


==================== One Month Modified Files and Folders =======

2014-06-26 15:44 - 2014-06-25 12:17 - 00000000 ____D () C:\FRST
2014-06-26 15:37 - 2014-06-06 21:26 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-26 15:27 - 2014-06-26 15:27 - 00000000 ____D () C:\Windows\ERUNT
2014-06-26 15:25 - 2014-06-06 18:54 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-26 15:17 - 2014-06-06 19:27 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2014-06-26 14:59 - 2014-06-07 10:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-26 14:50 - 2014-06-08 16:40 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA.job
2014-06-26 14:00 - 2014-06-06 13:50 - 01871788 _____ () C:\Windows\WindowsUpdate.log
2014-06-26 13:37 - 2014-06-06 21:26 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-26 02:00 - 2014-06-07 10:18 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-06-25 20:01 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-25 20:01 - 2009-07-14 06:45 - 00021088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-25 17:54 - 2014-06-11 00:31 - 00005112 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for User-PC-User User-PC
2014-06-25 17:50 - 2014-06-08 16:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core.job
2014-06-25 17:37 - 2014-06-06 23:43 - 00702612 _____ () C:\Windows\system32\perfh007.dat
2014-06-25 17:37 - 2014-06-06 23:43 - 00150164 _____ () C:\Windows\system32\perfc007.dat
2014-06-25 17:37 - 2009-07-14 07:13 - 01627120 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-25 17:35 - 2014-06-13 03:09 - 00000000 ____D () C:\Users\User\AppData\Roaming\DropboxMaster
2014-06-25 17:35 - 2014-06-13 03:07 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2014-06-25 17:31 - 2014-06-13 18:53 - 00000000 ____D () C:\Users\User\.rainlendar2
2014-06-25 17:31 - 2014-06-09 01:04 - 00006516 _____ () C:\Windows\setupact.log
2014-06-25 17:31 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-25 17:30 - 2014-06-10 19:50 - 00028072 _____ () C:\Windows\system32\oodbs.lor
2014-06-25 17:30 - 2014-06-09 01:03 - 00594836 _____ () C:\Windows\PFRO.log
2014-06-25 17:29 - 2014-06-25 17:26 - 00000000 ____D () C:\AdwCleaner
2014-06-25 17:20 - 2014-06-25 17:20 - 00038452 _____ () C:\ComboFix.txt
2014-06-25 17:20 - 2014-06-25 17:15 - 00000000 ____D () C:\ComboFix
2014-06-25 17:20 - 2014-06-25 17:11 - 00000000 ____D () C:\Qoobox
2014-06-25 17:20 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-06-25 17:19 - 2014-06-25 17:11 - 00000000 ____D () C:\Windows\erdnt
2014-06-25 17:19 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-06-25 15:38 - 2014-06-06 22:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\DAEMON Tools Lite
2014-06-25 15:01 - 2014-06-25 13:57 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-25 14:20 - 2014-06-06 18:39 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-24 22:34 - 2014-06-06 13:50 - 00000000 ____D () C:\Users\User
2014-06-24 22:32 - 2014-06-24 16:57 - 00000000 ____D () C:\ProgramData\wjin
2014-06-24 22:32 - 2014-06-23 22:49 - 00000000 ____D () C:\Program Files (x86)\WinHTTrack
2014-06-24 22:32 - 2014-06-22 21:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-24 22:32 - 2014-06-08 22:00 - 00000000 ____D () C:\Program Files (x86)\RocketDock
2014-06-24 22:32 - 2014-06-08 16:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
2014-06-24 22:32 - 2014-06-07 19:55 - 00000000 ____D () C:\Windows\AutoKMS
2014-06-24 22:32 - 2014-06-07 17:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\IrfanView
2014-06-24 22:32 - 2014-06-07 00:12 - 00000000 ____D () C:\Program Files\Unlocker
2014-06-24 22:32 - 2014-06-06 23:48 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-06-24 22:32 - 2014-06-06 23:47 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft Help
2014-06-24 22:32 - 2014-06-06 22:00 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-06-24 22:32 - 2014-06-06 21:26 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2014-06-24 22:32 - 2014-06-06 21:26 - 00000000 ____D () C:\Program Files (x86)\Google
2014-06-24 22:32 - 2014-06-06 21:05 - 00000000 ____D () C:\Users\User\AppData\Local\JDownloader2
2014-06-24 22:32 - 2014-06-06 17:58 - 00000000 ____D () C:\Users\User\AppData\Local\Mozilla
2014-06-24 22:32 - 2014-06-06 17:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-24 22:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-06-24 21:37 - 2014-06-24 16:57 - 00000000 ____D () C:\ProgramData\vhtarhu
2014-06-24 21:37 - 2014-06-23 23:13 - 00000000 ____D () C:\ProgramData\doyaoqq
2014-06-24 17:00 - 2014-06-08 15:22 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-06-24 16:57 - 2014-06-23 23:22 - 00000000 ____D () C:\ProgramData\wddyol
2014-06-24 16:57 - 2014-06-23 23:22 - 00000000 ____D () C:\ProgramData\dwqplug
2014-06-24 13:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-06-24 13:05 - 2014-06-24 12:12 - 00000000 ____D () C:\ProgramData\doyao
2014-06-24 02:02 - 2014-06-24 02:01 - 00000000 ____D () C:\Program Files (x86)\Rising
2014-06-23 23:22 - 2014-06-23 23:22 - 00000000 ____D () C:\ProgramData\iql
2014-06-22 21:58 - 2014-06-22 21:58 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-22 17:35 - 2014-06-10 15:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\Steganos
2014-06-22 13:46 - 2014-06-22 13:46 - 00000000 ____D () C:\Users\User\AppData\Local\Nero
2014-06-22 13:46 - 2014-06-22 01:02 - 00000237 _____ () C:\Users\User\AppData\Roaming\default.rss
2014-06-22 03:32 - 2014-06-21 15:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nero
2014-06-21 19:56 - 2014-06-21 19:56 - 00000000 ____D () C:\ProgramData\newbackup
2014-06-21 19:44 - 2014-06-21 19:44 - 00000000 ____D () C:\ProgramData\managecapsule
2014-06-21 19:08 - 2014-06-21 19:08 - 00000000 ____D () C:\ProgramData\logsaver
2014-06-21 19:08 - 2014-06-21 19:08 - 00000000 ____D () C:\ProgramData\ibackupvhd
2014-06-21 17:54 - 2014-06-21 17:54 - 00000000 ____D () C:\ProgramData\ftw
2014-06-21 16:26 - 2014-06-06 13:50 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-06-21 15:52 - 2014-06-21 15:52 - 00000000 ____D () C:\ProgramData\launcher
2014-06-21 15:52 - 2014-06-21 15:52 - 00000000 ____D () C:\ProgramData\explauncher
2014-06-21 15:49 - 2014-06-21 15:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_blockmounter_01_09_00.Wdf
2014-06-21 15:49 - 2014-06-21 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon Backup & Recovery™ 2014 Free
2014-06-21 15:48 - 2014-06-21 15:48 - 00000000 ____D () C:\Program Files\Paragon Software
2014-06-21 15:47 - 2014-06-08 19:17 - 00000000 ____D () C:\Users\User\AppData\Local\Downloaded Installations
2014-06-21 15:39 - 2014-06-21 15:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-06-21 15:38 - 2014-06-21 15:38 - 00004767 _____ () C:\Windows\Irremote.ini
2014-06-21 15:37 - 2014-06-21 15:31 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-06-21 15:32 - 2014-06-21 15:31 - 00000000 ____D () C:\ProgramData\Nero
2014-06-21 15:30 - 2014-06-21 15:30 - 00025685 _____ () C:\Windows\DirectX.log
2014-06-21 15:03 - 2014-06-21 15:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Canneverbe Limited
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-06-21 15:00 - 2014-06-21 15:00 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-06-19 13:32 - 2014-06-13 18:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2014-06-19 13:32 - 2014-06-13 18:40 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-06-19 11:46 - 2014-06-08 19:09 - 00000000 ____D () C:\Windows\{69093D49-3DD1-4FB5-A378-0D4DB4CF86EA}
2014-06-18 23:27 - 2014-06-18 23:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\NexusFont
2014-06-18 21:56 - 2014-06-18 21:56 - 00003086 _____ () C:\Windows\System32\Tasks\{A600625B-7018-4F01-B74F-AF33F469F2FD}
2014-06-18 17:45 - 2014-06-08 16:40 - 00004084 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA
2014-06-18 17:45 - 2014-06-08 16:40 - 00003688 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core
2014-06-17 23:23 - 2014-06-17 23:05 - 00000132 _____ () C:\Users\User\AppData\Roaming\Adobe CS6-BMP-Format - Voreinstellungen
2014-06-17 21:50 - 2009-07-14 06:45 - 05171688 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-17 21:25 - 2014-06-15 23:50 - 00001456 _____ () C:\Users\User\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-06-17 19:05 - 2014-06-17 19:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2014-06-17 19:03 - 2014-06-17 19:02 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-06-17 19:02 - 2014-06-17 19:02 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\ProgramData\Power Soft
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power Soft
2014-06-17 18:40 - 2014-06-17 18:40 - 00000000 ____D () C:\Program Files (x86)\Power Soft
2014-06-17 17:21 - 2014-06-13 00:51 - 00000132 _____ () C:\Users\User\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2014-06-17 17:06 - 2014-06-17 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
2014-06-17 17:06 - 2014-06-17 17:06 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.3
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\Program Files (x86)\TomTom International B.V
2014-06-17 16:52 - 2014-06-17 16:52 - 00000000 ____D () C:\Program Files (x86)\TomTom HOME 2
2014-06-17 16:08 - 2014-06-08 15:52 - 00001102 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-17 13:32 - 2014-06-06 21:26 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-17 13:32 - 2014-06-06 21:26 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-16 12:53 - 2014-06-13 18:46 - 23365632 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2014-06-16 00:18 - 2014-06-06 14:06 - 00117136 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-15 23:48 - 2014-06-06 15:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2014-06-15 15:21 - 2014-06-15 15:21 - 00029539 _____ () C:\Users\User\Documents.jdDLMenu
2014-06-15 14:44 - 2014-06-15 14:44 - 00003324 _____ () C:\Windows\System32\Tasks\{11DDE373-F55C-451A-92B1-CD201FB78B8B}
2014-06-15 13:00 - 2014-06-15 13:00 - 00000000 ____D () C:\Program Files (x86)\Tesseract-OCR
2014-06-15 13:00 - 2014-06-15 13:00 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-06-14 20:54 - 2014-06-14 20:21 - 00000000 ____D () C:\Rainmeter
2014-06-14 16:55 - 2014-06-14 16:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\Stardock
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\OtakuSoftware
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeskSpace
2014-06-14 15:00 - 2014-06-14 15:00 - 00000000 ____D () C:\Program Files (x86)\DeskSpace
2014-06-13 21:12 - 2014-06-13 21:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Thinking Minds Budiling Bytes
2014-06-13 20:51 - 2014-06-13 20:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\7stacks
2014-06-13 19:32 - 2014-06-13 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7stacks
2014-06-13 19:32 - 2014-06-13 19:32 - 00000000 ____D () C:\Program Files (x86)\Alastria Software
2014-06-13 18:53 - 2014-06-13 18:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainlendar2
2014-06-13 18:53 - 2014-06-13 18:53 - 00000000 ____D () C:\Program Files\Rainlendar2
2014-06-13 18:40 - 2014-06-13 18:40 - 00000000 ____D () C:\ProgramData\Stardock
2014-06-13 03:09 - 2014-06-13 03:09 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-06-12 22:12 - 2014-06-12 22:12 - 00000000 ____D () C:\Users\User\AppData\Local\colorpicker
2014-06-12 18:37 - 2014-06-12 18:31 - 00000000 ____D () C:\HP Universal Print Driver
2014-06-12 17:40 - 2014-06-12 17:40 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-06-12 17:40 - 2014-06-12 17:40 - 00000000 _____ () C:\Windows\HPMProp.INI
2014-06-12 16:53 - 2014-06-12 16:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Klebezettel
2014-06-12 16:53 - 2014-06-12 16:51 - 00000000 ____D () C:\Program Files (x86)\Klebezettel NG
2014-06-12 12:21 - 2014-06-12 12:21 - 00000000 ____D () C:\Users\User\AppData\Local\IsolatedStorage
2014-06-12 12:21 - 2014-06-12 12:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDevice Manager
2014-06-12 11:36 - 2014-06-12 11:29 - 00000000 ____D () C:\Users\User\AppData\Roaming\Apple Computer
2014-06-12 11:30 - 2014-06-12 11:30 - 00000000 ____D () C:\Users\User\AppData\Local\Apple Computer
2014-06-12 11:30 - 2014-06-12 11:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-06-12 11:29 - 2014-06-12 11:29 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Users\User\AppData\Local\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\iTunes
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\iPod
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-06-12 11:29 - 2014-06-12 11:29 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-06-12 11:29 - 2014-06-07 16:42 - 00000000 ____D () C:\ProgramData\Apple
2014-06-12 03:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-12 03:02 - 2014-06-07 10:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 03:01 - 2014-06-07 10:10 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-12 03:00 - 2014-06-07 04:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-11 00:46 - 2014-06-11 00:43 - 00000000 ___RD () C:\Users\User\OneDrive
2014-06-11 00:43 - 2014-06-11 00:43 - 00002190 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00002120 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00002120 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-06-11 00:43 - 2014-06-11 00:43 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-06-11 00:43 - 2014-06-11 00:43 - 00000000 ____D () C:\Program Files (x86)\Microsoft OneDrive
2014-06-11 00:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-10 22:24 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-10 19:48 - 2014-06-09 17:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-06-10 19:48 - 2014-06-06 23:47 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-10 19:47 - 2014-06-10 19:47 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-06-10 19:47 - 2014-06-10 19:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-06-10 19:47 - 2014-06-09 17:50 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-06-10 19:47 - 2010-11-21 09:17 - 00000000 ____D () C:\Windows\ShellNew
2014-06-10 19:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-10 19:44 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-10 19:44 - 2009-07-14 04:34 - 00000478 _____ () C:\Windows\win.ini
2014-06-10 18:55 - 2014-06-10 18:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe.ExMan
2014-06-10 18:54 - 2013-03-01 23:03 - 00000000 ___HD () C:\Users\User\AppData\Local\YlWVAszqdwc
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\PACE Anti-Piracy
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\Users\User\AppData\Local\PACE Anti-Piracy
2014-06-10 18:52 - 2014-06-10 18:52 - 00000000 ____D () C:\ProgramData\PACE Anti-Piracy
2014-06-10 15:33 - 2014-06-10 15:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steganos Safe 14
2014-06-10 15:33 - 2014-06-10 15:33 - 00000000 ____D () C:\Program Files (x86)\Steganos Safe 14
2014-06-10 15:24 - 2014-06-10 15:24 - 00000000 ____D () C:\Windows\system32\oodag
2014-06-10 15:22 - 2014-06-10 15:22 - 00000000 ____D () C:\Users\User\AppData\Local\O&O
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\ProgramData\OO Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\Program Files\OO Software
2014-06-10 15:20 - 2014-06-10 15:20 - 00000000 ____D () C:\Program Files (x86)\OO Software
2014-06-10 14:25 - 2014-06-10 14:24 - 00000000 ____D () C:\Program Files\FolderIco
2014-06-10 14:24 - 2014-06-07 17:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folderico
2014-06-10 14:17 - 2014-06-10 14:10 - 00000000 ____D () C:\Users\User\AppData\Local\Gigaset_Communications_Gm
2014-06-10 14:16 - 2014-06-10 14:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigaset QuickSync
2014-06-10 14:16 - 2014-06-10 14:16 - 00000000 ____D () C:\Program Files (x86)\Gigaset QuickSync
2014-06-09 23:18 - 2014-06-07 16:42 - 00000000 ____D () C:\Users\User\AppData\Local\AirVideoServerHD
2014-06-09 22:57 - 2014-06-06 15:33 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-09 18:57 - 2014-06-09 18:57 - 00000000 ____D () C:\Users\User\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-06-09 17:50 - 2014-06-09 17:50 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-09 17:50 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-09 17:49 - 2014-06-09 17:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-06-09 17:48 - 2014-06-09 17:48 - 00000000 ___RD () C:\MSOCache
2014-06-09 01:15 - 2014-06-08 15:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\TeamViewer
2014-06-09 01:04 - 2014-06-09 01:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-09 00:05 - 2014-06-06 23:44 - 00000000 ____D () C:\Windows\Panther
2014-06-08 23:29 - 2014-06-08 23:29 - 00000000 ____D () C:\Users\User\AppData\Roaming\Windows SideBar
2014-06-08 22:01 - 2014-06-08 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2014-06-08 20:55 - 2014-06-08 20:54 - 00002411 _____ () C:\Windows\system32\ushupgrade.log
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieUserList
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieSiteList
2014-06-08 20:51 - 2014-06-08 20:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Zeon
2014-06-08 20:51 - 2014-06-07 14:41 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-06-08 20:26 - 2014-06-08 17:07 - 00925184 _____ () C:\Windows\expstart.exe
2014-06-08 20:14 - 2014-06-08 20:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\Tor
2014-06-08 20:04 - 2014-06-08 20:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tor
2014-06-08 20:04 - 2014-06-08 20:04 - 00000000 ____D () C:\Program Files (x86)\Tor
2014-06-08 19:59 - 2014-06-08 19:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\driveridentifier
2014-06-08 19:54 - 2014-06-08 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
2014-06-08 19:54 - 2014-06-08 19:54 - 00000000 ____D () C:\Program Files (x86)\Driver Identifier
2014-06-08 19:22 - 2014-06-08 19:22 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WwanUsbMp64_01009.Wdf
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_d554scard_01007.Wdf
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____D () C:\ProgramData\QUALCOMM
2014-06-08 19:21 - 2014-06-08 19:21 - 00000000 ____D () C:\Program Files (x86)\QUALCOMM
2014-06-08 19:20 - 2014-06-08 19:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wwussf64_01009.Wdf
2014-06-08 19:20 - 2014-06-08 19:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wwuss64_01009.Wdf
2014-06-08 19:20 - 2014-06-08 19:09 - 00000000 ____D () C:\Program Files (x86)\Dell
2014-06-08 19:20 - 2014-06-06 20:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-08 19:19 - 2014-06-08 19:19 - 00003138 _____ () C:\Windows\System32\Tasks\{14E6BC68-A461-40C7-903D-313764A8C895}
2014-06-08 19:18 - 2014-06-08 19:18 - 00003144 _____ () C:\Windows\System32\Tasks\{242E0CDB-2E98-4302-94E6-EF2FC7DBF7C6}
2014-06-08 19:17 - 2014-06-07 15:20 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-08 19:13 - 2014-06-08 19:13 - 00000000 ____D () C:\Users\User\AppData\Roaming\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-06-08 19:12 - 2014-06-08 19:12 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-06-08 19:12 - 2014-06-07 15:56 - 00000000 ____D () C:\ProgramData\Intel
2014-06-08 19:12 - 2014-06-06 20:26 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-06-08 19:11 - 2014-06-08 19:11 - 00000000 ____D () C:\ProgramData\Intel.sav
2014-06-08 19:10 - 2014-06-08 19:10 - 00003122 _____ () C:\Windows\System32\Tasks\{EDDA55E3-7F44-4AF8-97BE-FA20095812AD}
2014-06-08 19:09 - 2014-06-08 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-08 18:51 - 2014-06-08 18:51 - 00003132 _____ () C:\Windows\System32\Tasks\{75CDD922-E3EF-43A1-A71B-C52EB4D57918}
2014-06-08 18:42 - 2014-06-08 18:42 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-06-08 18:20 - 2014-06-06 18:58 - 00000000 ____D () C:\Users\User\AppData\Local\Deployment
2014-06-08 16:37 - 2010-11-21 05:23 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-06-08 16:37 - 2009-07-14 01:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-08 16:37 - 2009-07-14 01:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2014-06-08 16:32 - 2014-06-08 16:29 - 00000000 ____D () C:\Windows\W7SBC
2014-06-08 15:57 - 2014-06-08 15:57 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-08 15:53 - 2014-06-08 15:53 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-08 15:53 - 2014-06-08 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-06-08 15:53 - 2014-06-08 15:53 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-08 15:52 - 2014-06-08 15:52 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-08 15:40 - 2014-06-08 15:40 - 00000000 ____D () C:\Windows\SysWOW64\SDA
2014-06-08 15:40 - 2014-06-08 15:40 - 00000000 ____D () C:\Program Files (x86)\O2Micro
2014-06-08 15:39 - 2014-06-08 15:39 - 00000000 ____D () C:\Program Files\IDT
2014-06-08 15:38 - 2014-06-07 14:41 - 00000000 ____D () C:\ProgramData\dell
2014-06-08 11:13 - 2014-06-11 22:27 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-11 22:27 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-08 03:01 - 2014-06-07 04:24 - 01592784 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-07 19:56 - 2014-06-07 19:56 - 00003238 _____ () C:\Windows\System32\Tasks\AutoKMSCustom
2014-06-07 19:54 - 2014-06-07 19:54 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-06-07 19:02 - 2014-06-07 17:48 - 00000000 ____D () C:\ProgramData\Folderico
2014-06-07 19:01 - 2014-06-07 19:01 - 00000000 ____D () C:\Users\User\AppData\Local\Folderico
2014-06-07 18:25 - 2014-06-06 20:43 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-06-07 18:25 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-07 18:25 - 2014-06-06 20:16 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2014-06-07 18:24 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-07 17:48 - 2014-06-07 17:48 - 00000000 ____D () C:\Program Files (x86)\Folderico
2014-06-07 17:26 - 2014-06-07 17:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2014-06-07 17:26 - 2014-06-07 17:26 - 00000000 ____D () C:\Program Files (x86)\IrfanView
2014-06-07 17:22 - 2014-06-07 17:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NexusFont
2014-06-07 17:22 - 2014-06-07 17:22 - 00000000 ____D () C:\Program Files (x86)\NexusFont
2014-06-07 17:13 - 2014-06-07 16:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\AllDup
2014-06-07 17:13 - 2014-06-07 16:58 - 00000000 ____D () C:\ProgramData\AllDup
2014-06-07 17:13 - 2014-06-07 16:58 - 00000000 ____D () C:\Program Files (x86)\AllDup
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\Users\User\AppData\Local\Tools&More
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tools&More
2014-06-07 17:12 - 2014-06-07 17:12 - 00000000 ____D () C:\Program Files (x86)\Tools&More
2014-06-07 16:58 - 2014-06-07 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AllDup
2014-06-07 16:44 - 2014-06-07 16:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Air Video Server HD
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files\Digiarty
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-06-07 16:42 - 2014-06-07 16:42 - 00000000 ____D () C:\Program Files (x86)\AirVideoServer HD
2014-06-07 15:12 - 2014-06-07 15:12 - 00003298 _____ () C:\Windows\System32\Tasks\{48A88281-289D-428B-BC18-C91AC0E35220}
2014-06-07 15:07 - 2014-06-07 15:07 - 00000000 ____D () C:\Program Files (x86)\Broadcom
2014-06-07 14:44 - 2014-06-07 14:44 - 00000000 ____D () C:\Program Files\CONEXANT
2014-06-07 14:41 - 2014-06-07 14:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-06-07 14:41 - 2014-06-07 14:41 - 00000000 ____D () C:\Program Files\DellTPad
2014-06-07 13:57 - 2014-06-07 13:57 - 00000000 ____D () C:\Users\User\AppData\Local\Dell
2014-06-07 13:44 - 2014-06-07 13:03 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-06-07 12:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\ias
2014-06-07 11:26 - 2014-06-07 11:19 - 00000000 ____D () C:\Program Files (x86)\Biet-O-Matic
2014-06-07 11:19 - 2014-06-07 11:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biet-O-Matic
2014-06-07 11:13 - 2014-06-07 00:54 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\Users\User\AppData\Local\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\ProgramData\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2014-06-07 11:08 - 2014-06-07 11:08 - 00000000 ____D () C:\Program Files (x86)\TechSmith
2014-06-07 10:52 - 2014-06-07 10:52 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-07 10:44 - 2014-06-07 10:44 - 00083138 _____ () C:\Program Files\Uninstal.exe
2014-06-07 10:44 - 2014-06-07 10:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Debut Video Capture
2014-06-07 10:44 - 2014-06-07 00:54 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-06-07 10:19 - 2014-06-07 10:19 - 00000000 ____D () C:\Users\User\AppData\Local\Macromedia
2014-06-07 10:14 - 2014-06-07 10:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-07 10:14 - 2014-06-07 10:14 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-07 10:14 - 2014-06-07 10:14 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-07 10:08 - 2014-06-06 13:50 - 00001381 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-07 04:56 - 2010-11-21 09:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-06-07 04:56 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-07 04:56 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-07 04:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-06-07 04:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-06-07 04:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-06-07 04:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-06-07 04:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-07 04:05 - 2014-06-07 04:05 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-07 04:05 - 2014-06-07 04:05 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-07 04:05 - 2014-06-07 04:05 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-07 04:05 - 2014-06-07 04:05 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-07 04:05 - 2014-06-07 04:05 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-07 04:05 - 2014-06-07 04:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-07 04:05 - 2014-06-07 04:05 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-07 04:05 - 2014-06-07 04:05 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-07 04:05 - 2014-06-07 04:05 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-07 04:00 - 2014-06-07 04:00 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-07 04:00 - 2014-06-07 04:00 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-07 00:54 - 2014-06-07 00:54 - 00000000 ____D () C:\ProgramData\NCH Software
2014-06-07 00:33 - 2014-06-07 00:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-06-07 00:33 - 2014-06-07 00:31 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-06-07 00:33 - 2014-06-07 00:30 - 00000000 ____D () C:\Users\User\AppData\Roaming\DVDVideoSoft
2014-06-07 00:12 - 2014-06-07 00:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2014-06-06 23:44 - 2014-06-06 23:44 - 00000000 ____D () C:\Hotfix
2014-06-06 23:44 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-06-06 23:44 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-06-06 23:44 - 2009-07-14 06:45 - 00000000 ____D () C:\Windows\Setup
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\system32\de
2014-06-06 23:43 - 2014-06-06 23:43 - 00000000 ____D () C:\Windows\system32\0407
2014-06-06 23:43 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-06-06 23:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-06-06 23:42 - 2014-06-06 23:43 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-06 23:42 - 2014-06-06 23:43 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-06 23:14 - 2014-06-06 23:14 - 00003498 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User
2014-06-06 23:08 - 2014-06-06 23:08 - 00000000 _____ () C:\Users\User\Sti_Trace.log
2014-06-06 23:05 - 2014-06-06 22:03 - 00000425 _____ () C:\Windows\BRWMARK.INI
2014-06-06 23:05 - 2014-06-06 22:03 - 00000027 _____ () C:\Windows\BRPP2KA.INI
2014-06-06 22:13 - 2014-06-06 22:13 - 00000000 ____D () C:\Users\User\AppData\Local\Scansoft
2014-06-06 22:05 - 2014-06-06 22:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-06-06 22:04 - 2014-06-06 22:04 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-06-06 22:04 - 2014-06-06 22:04 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-06-06 22:04 - 2014-06-06 22:00 - 00000000 ____D () C:\ProgramData\InstallShield
2014-06-06 22:03 - 2014-06-06 22:03 - 00000256 _____ () C:\Windows\Brpfx04a.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000093 _____ () C:\Windows\brpcfx.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000066 _____ () C:\Windows\Brfaxrx.ini
2014-06-06 22:03 - 2014-06-06 22:03 - 00000050 _____ () C:\Windows\system32\bridf09d.dat
2014-06-06 22:03 - 2014-06-06 22:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-06-06 22:03 - 2014-06-06 22:02 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-06-06 22:00 - 2014-06-06 22:00 - 00000000 ____D () C:\Users\User\AppData\Roaming\InstallShield
2014-06-06 22:00 - 2014-06-06 22:00 - 00000000 ____D () C:\Program Files\Nuance
2014-06-06 21:58 - 2014-06-06 21:58 - 00000000 ____D () C:\ProgramData\Brother
2014-06-06 21:27 - 2014-06-06 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-06-06 21:06 - 2014-06-06 21:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-06-06 21:04 - 2014-06-06 21:04 - 35197680 _____ (AppWork GmbH) C:\Users\User\Downloads\JD2Setup_x64_oc.exe
2014-06-06 20:47 - 2014-06-06 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FalNET G19 Display Manager
2014-06-06 20:47 - 2014-06-06 20:40 - 00000000 ____D () C:\Program Files (x86)\FalNET G19 Display Manager
2014-06-06 20:44 - 2014-06-06 20:44 - 00000000 ____D () C:\Users\User\AppData\Local\Logitech
2014-06-06 20:44 - 2014-06-06 20:44 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Leadertech
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Users\User\AppData\Local\Logishrd
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\ProgramData\Logitech
2014-06-06 20:43 - 2014-06-06 20:43 - 00000000 ____D () C:\Program Files\Logitech
2014-06-06 20:43 - 2014-06-06 20:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logishrd
2014-06-06 20:40 - 2014-06-06 20:40 - 00000000 ____D () C:\Users\User\AppData\Local\FalNET
2014-06-06 20:40 - 2014-06-06 20:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logitech
2014-06-06 20:16 - 2014-06-06 20:16 - 00047166 _____ () C:\DEBUG.TXT
2014-06-06 20:16 - 2014-06-06 20:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2014-06-06 20:16 - 2014-06-06 20:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-06-06 19:41 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-06-06 19:41 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-06-06 19:41 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-06-06 19:41 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-06-06 19:41 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-06-06 19:41 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-06-06 19:41 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-06-06 19:41 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-06-06 19:26 - 2014-06-06 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-06 19:26 - 2014-06-06 19:26 - 00000000 ____D () C:\Program Files\VideoLAN
2014-06-06 18:58 - 2014-06-06 18:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-06-06 18:58 - 2014-06-06 18:58 - 00000000 ____D () C:\Users\User\AppData\Local\Apps\2.0
2014-06-06 18:39 - 2014-06-06 18:39 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\Users\User\AppData\Roaming\Avira
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-06 18:39 - 2014-06-06 18:39 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-06 18:37 - 2014-06-06 18:37 - 00000000 ____D () C:\ProgramData\Avira
2014-06-06 18:37 - 2014-06-06 18:37 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-06 18:07 - 2014-06-06 18:07 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-06 18:07 - 2014-06-06 18:07 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Sun
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-06 18:07 - 2014-06-06 18:07 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-06 18:06 - 2014-06-06 18:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-06 18:05 - 2014-06-06 18:05 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-06 17:58 - 2014-06-06 17:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mozilla
2014-06-06 17:51 - 2014-06-06 17:51 - 00000000 ____D () C:\Windows\Dell
2014-06-06 17:48 - 2014-06-06 17:48 - 00003104 _____ () C:\Windows\System32\Tasks\{0E3F0A2F-3362-4A91-8D46-B47C03B17CD4}
2014-06-06 17:47 - 2014-06-06 17:47 - 00000000 ____D () C:\Intel
2014-06-06 17:13 - 2014-06-06 17:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-06-06 16:12 - 2014-06-06 16:11 - 00000000 ____D () C:\dell
2014-06-06 16:12 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-06-06 15:45 - 2014-06-06 15:45 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-06-06 15:45 - 2014-06-06 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
2014-06-06 15:44 - 2014-06-06 15:37 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-06-06 15:44 - 2014-06-06 15:36 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-06 15:44 - 2014-06-06 15:36 - 00000000 ____D () C:\Program Files\Adobe
2014-06-06 15:42 - 2014-06-06 15:42 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-06 15:42 - 2014-06-06 15:42 - 00000000 ____D () C:\ProgramData\ALM
2014-06-06 15:40 - 2014-06-06 15:40 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2014-06-06 15:40 - 2014-06-06 15:40 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2014-06-06 15:40 - 2014-06-06 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
2014-06-06 15:39 - 2014-06-06 15:39 - 00001097 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
2014-06-06 15:39 - 2014-06-06 15:39 - 00000000 ____D () C:\Program Files (x86)\My Company Name
2014-06-06 15:37 - 2014-06-06 15:37 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2014-06-06 15:37 - 2014-06-06 15:37 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-06 15:37 - 2014-06-06 15:37 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-06 15:36 - 2014-06-06 15:36 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-06 15:33 - 2014-06-06 15:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2014-06-06 13:50 - 2014-06-06 13:50 - 00000020 ___SH () C:\Users\User\ntuser.ini
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Netzwerkumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Lokale Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Eigene Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Druckumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\User\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-06 13:50 - 2014-06-06 13:50 - 00000000 ____D () C:\Recovery
2014-06-06 13:50 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-06-06 13:50 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-06 13:47 - 2014-06-06 13:47 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-06-06 13:47 - 2014-06-06 13:47 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-06 13:47 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-06 13:46 - 2014-06-06 13:46 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2014-06-06 13:45 - 2010-11-21 09:17 - 00000000 ____D () C:\Windows\CSC
2014-05-30 12:21 - 2014-06-11 22:27 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-11 22:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-11 22:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-11 22:27 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-11 22:27 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-11 22:27 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-11 22:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-11 22:27 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-11 22:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-11 22:27 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-11 22:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-11 22:27 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-11 22:27 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-11 22:27 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-11 22:27 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-11 22:27 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-11 22:27 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-11 22:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-11 22:27 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-11 22:27 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-11 22:27 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-11 22:27 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-11 22:27 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-11 22:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-11 22:27 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-11 22:27 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-11 22:27 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-11 22:27 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-11 22:27 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-11 22:27 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-11 22:27 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-11 22:27 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-11 22:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-11 22:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-11 22:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-11 22:27 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-11 22:27 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-11 22:27 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-11 22:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-11 22:27 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-11 22:27 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-11 22:27 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-11 22:27 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-11 22:27 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-11 22:27 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-11 22:27 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-11 22:27 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-11 22:27 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-11 22:27 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-11 22:27 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-11 22:27 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-11 22:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe
[2014-06-08 21:59] - [2011-02-25 08:19] - 2871808 ____A (Microsoft Corporation) 78F13CFE0250EA7308146FA97E0FFFF5

C:\Windows\SysWOW64\explorer.exe
[2014-06-07 21:25] - [2011-02-25 07:30] - 2616320 ____A (Microsoft Corporation) 697651F303443F98F7EC76D4DCAE6789

C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-24 15:17

==================== End Of Log ============================

cosinus 26.06.2014 15:10
Bitte auch ne neue Addition.txt erstellen, dazu FRST starten und einen Haken setzen bei Addition.txt, dann auf Scan klicken.

http://saved.im/mtg0mjy4yjlu/2014-04...ryscantool.png

ynotia 26.06.2014 15:34
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2014
Ran by User at 2014-06-26 16:24:39
Running from E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Trojaner
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

"Nero SoundTrax Help (x32 Version: 4.4.32.0 - Nero AG) Hidden
64 Bit HP CIO Components Installer (Version: 16.2.1 - Hewlett-Packard) Hidden
7stacks 1.5 beta 2 (HKLM-x32\...\{EF6E933E-760B-40EA-8E00-E6DE3482F472}_is1) (Version: 1.4.24 - Alastria Software)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
Air Playit 1.9.0 (HKLM\...\Air Playit_is1) (Version:  - Digiarty)
Air Video Server HD 1.0.15 (HKLM-x32\...\Air Video Server HD) (Version: 1.0.15 - InMethod, s.r.o.)
AllDup 3.4.24 (HKLM-x32\...\AllDup_is1) (Version: 3.4.24 - Michael Thummerer Software Design)
Anti-reCAPTCHA v4.01 JD (HKLM-x32\...\{74252365-7BB1-437A-8D61-5B0BD1D9AFAA}) (Version: 4.01 - SONY-TEAM)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.4.672 - Avira)
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-5895CW (HKLM-x32\...\{184BF682-537C-4CAE-8789-6696508A4032}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
CDBurnerXP (HKLM-x32\...\{909A791A-DBB0-432F-BC0E-D0C81925E340}) (Version: 4.5.3.4746 - Canneverbe Limited)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Conexant HDA D330 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F) (Version: 7.80.4.0 - Conexant)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Debut Video Capture  (HKCU\...\Debut Video Capture ) (Version:  - )
Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.8.0.16 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1200.101.134 - ALPS ELECTRIC CO., LTD.)
Dell Wireless HSPA Mini-Card Drivers (HKLM-x32\...\{9D583F01-A973-4B04-90BD-FB7886779090}) (Version: 7.2.2.0 - Dell)
DeskSpace 1.5.8.14 Trial (HKCU\...\DeskSpace) (Version: 1.5.8.14 Trial - Otaku Software Pty Ltd)
DolbyFiles (x32 Version: 2.0 - Nero AG) Hidden
DriverIdentifier 4.2.7 (HKLM-x32\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version:  - DriverIdentifier)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.3 - Dropbox, Inc.)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FalNET G19 Display Manager (HKLM-x32\...\FalNET G19 Display Manager_is1) (Version:  - FalNET)
FileZilla Client 3.8.1 (HKCU\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version:  - teorex)
Folderico 4.0 RC12 (HKLM-x32\...\Folderico) (Version: 4.0 RC12 - Shedko ( www.softq.org ))
FolderIco Aeon Pack 1.0 (HKLM\...\{17026627-44F3-4F0D-8184-AEA03FBA3322}_is1) (Version: 1.0 - teorex)
FolderIco Aqua Pack 1.0 (HKLM\...\{7D1FACF1-1D20-434F-9E89-8271A1958CBD}_is1) (Version: 1.0 - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
FolderIco Leopard Pack 1.0 (HKLM\...\{458EFE20-042B-4EC3-B8E7-45FB7AA6720F}_is1) (Version: 1.0 - teorex)
Free Studio version 2014 (HKLM-x32\...\Free Studio_is1) (Version: 6.3.4.530 - DVDVideoSoft Ltd.)
Freebie Notes (HKLM-x32\...\FreeNotes2_is1) (Version: 3.57.1.4480 - Power Soft)
Gigaset QuickSync (HKLM\...\{b49e8cfb-f094-4467-925a-97c23972cb50}) (Version: 8.3.0868.3 - Gigaset Communications GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.0 - Google Inc.)
Google Chrome Canary (HKCU\...\Google Chrome SxS) (Version: 38.0.2066.5 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
iDevice Manager (HKLM-x32\...\FE5AE7DC-7B01-4263-A94C-B4526C276550_is1) (Version: 3.4.0.0 - Marx Software)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
InstallVC90Support (x32 Version: 1.01.0000 - Novatel Wireless) Hidden
Intel PROSet Wireless (Version:  - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1010 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.70.1205 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel® PROSet/Wireless WiFi-Software (HKLM\...\{ECE5B218-A086-4E18-A362-D11181681457}) (Version: 15.03.1000.1637 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Joe (HKLM-x32\...\{0AD3DEBC-5321-457E-8B43-8F546940169B}) (Version: 4.00.0050 - Wirth IT Design)
Klebezettel NG (Version 2.9.14) (HKLM-x32\...\{4F81901F-3655-4340-8227-F687F69A3C79}}_is1) (Version:  - )
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
LogonStudio (HKLM-x32\...\LogonStudio) (Version: 1.7 - Stardock Corporation)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Menu Templates - Pack 1 (x32 Version: 9.4.6.0 - Nero AG) Hidden
Menu Templates - Pack 2 (x32 Version: 9.4.6.0 - Nero AG) Hidden
Menu Templates - Pack 3 (x32 Version: 9.4.6.0 - Nero AG) Hidden
Menu Templates - Starter Kit (x32 Version: 9.4.6.0 - Nero AG) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Movie Templates - Pack 1 (x32 Version: 9.4.6.0 - Nero AG) Hidden
Movie Templates - Starter Kit (x32 Version: 9.4.6.0 - Nero AG) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 (HKLM-x32\...\{70d285d3-681f-4bcd-afca-8d4c7d7c87e1}) (Version:  - Nero AG)
Nero Burning ROM Help (x32 Version: 9.4.17.100 - Nero AG) Hidden
Nero BurnRights (x32 Version: 3.4.11.100 - Nero AG) Hidden
Nero BurnRights Help (x32 Version: 3.4.4.100 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero CoverDesigner (x32 Version: 4.4.9.100 - Nero AG) Hidden
Nero CoverDesigner Help (x32 Version: 4.4.9.100 - Nero AG) Hidden
Nero Disc Copy Gadget (x32 Version: 2.4.22.0 - Nero AG) Hidden
Nero Disc Copy Gadget Help (x32 Version: 2.4.22.0 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.12.100 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.11.100 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.4.17.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.11.100 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.9.0 - Nero AG) Hidden
Nero Live (x32 Version: 1.4.48.0 - Nero AG) Hidden
Nero Live Help (x32 Version: 1.4.48.0 - Nero AG) Hidden
Nero PhotoSnap (x32 Version: 1.53.2.0 - Nero AG) Hidden
Nero PhotoSnap Help (x32 Version: 1.53.2.0 - Nero AG) Hidden
Nero Recode (x32 Version: 4.4.31.0 - Nero AG) Hidden
Nero Recode Help (x32 Version: 4.4.31.0 - Nero AG) Hidden
Nero Rescue Agent (x32 Version: 2.4.12.100 - Nero AG) Hidden
Nero RescueAgent Help (x32 Version: 2.4.4.100 - Nero AG) Hidden
Nero ShowTime (x32 Version: 5.4.0.100 - Nero AG) Hidden
Nero ShowTime (x32 Version: 5.4.14.100 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.12.100 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.12.100 - Nero AG) Hidden
Nero Vision (x32 Version: 6.4.10.205 - Nero AG) Hidden
Nero Vision Help (x32 Version: 6.4.8.100 - Nero AG) Hidden
Nero WaveEditor (x32 Version: 5.4.32.0 - Nero AG) Hidden
NeroBurningROM (x32 Version: 9.4.17.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.17.100 - Nero AG) Hidden
NeroLiveGadget (x32 Version: 1.2.16.100 - Nero AG) Hidden
NeroLiveGadget Help (x32 Version: 1.2.16.100 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NexusFont 2.5 (ver 2.5.8.1582) (HKLM-x32\...\{EFEDD205-43FE-4208-B682-0937E803E19E}_is1) (Version:  - xiles)
O&O Defrag Server (HKLM\...\{A975C0EB-EACB-4524-B30B-815AD9761C11}) (Version: 14.0.177 - O&O Software GmbH)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}) (Version: 3.0.07.23 - O2Micro International LTD.)
O2Micro Flash Memory Card Windows Driver (x32 Version: 3.0.07.23 - O2Micro International LTD.) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{ABA4FAF1-6389-45F9-92CE-3914A4E5C471}) (Version: 1.00.0000 - Nuance Communications, Inc.)
Paragon Backup & Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Qualcomm Gobi 2000 Package for Dell (HKLM-x32\...\{55958FAE-1862-4EE5-96BB-B9309CACE1C0}) (Version: 1.1.170 - QUALCOMM)
Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version:  - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Snagit 11 (HKLM-x32\...\{14EEBDFB-6217-4F98-8563-8342C42E8571}) (Version: 11.1.0 - TechSmith Corporation)
SoundTrax (x32 Version: 4.4.32.0 - Nero AG) Hidden
Steganos Safe 14 (HKLM-x32\...\{13B7FBFB-622E-4002-8570-594798E6167D}) (Version: 14.0.2 - Steganos Software GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tor (remove only) (HKLM-x32\...\Tor) (Version:  - )
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)

==================== Restore Points  =========================

21-06-2014 13:49:17 Gerätetreiber-Paketinstallation: Paragon Software Group
22-06-2014 06:00:06 Windows-Sicherung
24-06-2014 01:29:40 Revo Uninstaller's restore point - Rising Software Deployment System
24-06-2014 01:32:46 Revo Uninstaller's restore point - Rising Antivirus
24-06-2014 15:08:15 Avira Free Antivirus - 24.06.2014 17:08
24-06-2014 20:31:17 Wiederherstellungsvorgang

==================== Hosts content: ==========================

2009-07-14 04:34 - 2014-06-25 17:19 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1      localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {2170BFF8-EA99-48BA-9BFC-1ACE2C6A8575} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-07] (Adobe Systems Incorporated)
Task: {26AEEF43-C9C4-46C5-BB60-B36439280EEF} - System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {2EF73492-718D-4DEA-9267-E5AB94C4FDD2} - System32\Tasks\Microsoft Office 15 Sync Maintenance for User-PC-User User-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {360140A3-16EA-4A30-8B48-714AF33C85ED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {464761FB-B97D-485A-B494-948E46644D01} - System32\Tasks\AutoKMSCustom => C:\Windows\AutoKMS\AutoKMS.exe [2014-06-07] ()
Task: {550D9B33-3AFD-45CA-8F5E-1AC2478826AB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {5BD514B3-BC18-4F9D-832A-E48E1D34E03D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {7578841C-F937-4D98-94A2-D6343C2DB900} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {7A5DF59E-AAFD-4C2D-B295-3830264951FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06] (Google Inc.)
Task: {8093F681-F72B-4717-AB09-3C1B7C2F948A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-06] (Google Inc.)
Task: {B46FBFA4-33F1-4951-85A9-9006D00CC307} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-08] (Google Inc.)
Task: {BA44E499-F75C-42BE-BA26-572F06968966} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {C53B5E19-B757-46DC-923C-A188602B330A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {FD6CAB76-F0C5-4D83-845B-48E7D8AF94E0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-06-08] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4212815359-2683884995-303209184-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-06-08 15:40 - 2003-04-18 18:06 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe
2014-06-06 22:03 - 2005-04-22 13:36 - 00143360 _____ () C:\Windows\system32\BrSNMP64.dll
2014-01-29 23:02 - 2014-01-29 23:02 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-03-16 19:42 - 2014-03-16 19:42 - 04411488 _____ () C:\Program Files\Rainlendar2\Rainlendar2.exe
2012-05-16 21:12 - 2012-05-16 21:12 - 00179200 _____ () C:\Program Files\Rainlendar2\lua52.dll
2014-03-14 12:24 - 2014-03-14 12:24 - 00324608 _____ () C:\Program Files\Rainlendar2\libical.dll
2014-03-16 19:42 - 2014-03-16 19:42 - 00082528 _____ () C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2014-03-14 12:24 - 2014-03-14 12:24 - 00080384 _____ () C:\Program Files\Rainlendar2\libicalss.dll
2012-06-17 15:21 - 2012-06-17 15:21 - 00015360 _____ () C:\Program Files\Rainlendar2\lfs.dll
2014-06-08 22:00 - 2007-09-02 13:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2014-02-28 12:47 - 2014-02-28 12:47 - 00122387 _____ () C:\Program Files\VideoLAN\VLC\libvlc.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 02514963 _____ () C:\Program Files\VideoLAN\VLC\libvlccore.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00321043 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00034323 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00070675 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 02335763 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00107027 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00260115 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00080915 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00050707 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00063507 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00606227 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00946707 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00124947 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00043539 _____ () C:\Program Files\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00139795 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 02187283 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00316435 _____ () C:\Program Files\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 01461779 _____ () C:\Program Files\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00055827 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00043027 _____ () C:\Program Files\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00187923 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00092179 _____ () C:\Program Files\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 12172819 _____ () C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00040467 _____ () C:\Program Files\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00339987 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 01500179 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00331283 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00413203 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00225299 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 01602579 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00190995 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00808467 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00022035 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00031763 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00216595 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 11094547 _____ () C:\Program Files\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00841235 _____ () C:\Program Files\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00031251 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi420_yuy2_sse2_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00024083 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi420_yuy2_mmx_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00637459 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libswscale_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00121363 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi420_rgb_sse2_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00032787 _____ () C:\Program Files\VideoLAN\VLC\plugins\sse2\libi422_yuy2_sse2_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00024083 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi422_yuy2_mmx_plugin.dll
2014-02-28 12:47 - 2014-02-28 12:47 - 00057363 _____ () C:\Program Files\VideoLAN\VLC\plugins\mmx\libi420_rgb_mmx_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00021011 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00037907 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00022547 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00024595 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00021523 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00018963 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00072723 _____ () C:\Program Files\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00017427 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00023059 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00138259 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00188947 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00080403 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 01506323 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00025619 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00016915 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00018451 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00017939 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00019475 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2014-02-28 12:48 - 2014-02-28 12:48 - 00029715 _____ () C:\Program Files\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2010-11-17 15:00 - 2010-11-17 15:00 - 00220672 _____ () C:\Program Files (x86)\Steganos Safe 14\ShellExtension.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-06-24 22:41 - 2014-06-21 09:51 - 01440584 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\libglesv2.dll
2014-06-24 22:41 - 2014-06-21 09:51 - 00168264 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\libegl.dll
2014-06-24 22:41 - 2014-06-21 09:51 - 10328392 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\pdf.dll
2014-06-24 22:41 - 2014-06-21 09:51 - 00405832 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\ppGoogleNaClPluginChrome.dll
2014-06-24 22:40 - 2014-06-21 09:51 - 01831752 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\ffmpegsumo.dll
2014-06-24 22:41 - 2014-06-21 09:51 - 26489160 _____ () C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.0\PepperFlash\pepflashplayer.dll
2014-04-23 16:05 - 2014-04-23 16:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 16:04 - 2014-04-23 16:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-08 19:20 - 2011-07-13 11:10 - 00065576 ____R () C:\Program Files (x86)\Dell\Dell WWAN\WMCore\MBMDebug.dll
2014-06-08 22:00 - 2007-09-02 13:57 - 00069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2012-03-31 02:06 - 2012-03-31 02:06 - 00248464 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\libcurl.dll
2012-03-31 00:39 - 2012-03-31 00:39 - 00159744 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\SSLEAY32.dll
2012-03-31 00:39 - 2012-03-31 00:39 - 00843776 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\LIBEAY32.dll
2012-03-31 00:49 - 2012-03-31 00:49 - 00068096 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\AlcidDLL.dll
2012-03-31 02:07 - 2012-03-31 02:07 - 00699024 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Workspace.dll
2012-03-31 00:37 - 2012-03-31 00:37 - 06390784 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Configuration\Flash Player\authplay.dll
2012-03-31 02:10 - 2012-03-31 02:10 - 00661136 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Configuration\KnowledgeEngines\JS_KnowledgeEngine.dll
2012-03-31 02:10 - 2012-03-31 02:10 - 00642704 _____ () C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Configuration\KnowledgeEngines\PHP_KnowledgeEngine.dll
2012-03-09 16:26 - 2012-03-09 16:26 - 00100352 _____ () C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\zlib1.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\User\AppData\Local\YlWVAszqdwc:srrqlkd0kZNdumqMuWwrvS

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Broadcom USH
Description: Broadcom USH
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/26/2014 03:45:12 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (06/26/2014 04:00:03 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (06/26/2014 03:45:12 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Trojaner\04 esetsmartinstaller_deu.exe


CodeIntegrity Errors:
===================================
  Date: 2014-06-25 17:19:12.805
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-25 17:19:12.772
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 44%
Total physical RAM: 8072.93 MB
Available physical RAM: 4498.24 MB
Total Pagefile: 16144.05 MB
Available Pagefile: 9865.05 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:179.9 GB) (Free:94.15 GB) NTFS
Drive d: (Dokumente) (Fixed) (Total:40 GB) (Free:13.52 GB) NTFS
Drive e: (Dokumente / Bilder / Work / Inst) (Fixed) (Total:931.51 GB) (Free:238.31 GB) NTFS
Drive h: (32ER) (Removable) (Total:29.8 GB) (Free:29.01 GB) FAT32
Drive w: (WORK intern) (Fixed) (Total:18.47 GB) (Free:18.36 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238 GB) (Disk ID: 6C1784B0)
Partition 1: (Active) - (Size=99 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=180 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=18 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 30 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 2 (Size: 932 GB) (Disk ID: 0E675B73)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 932 GB) (Disk ID: 0D90D91A)
Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

cosinus 26.06.2014 18:43
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
c:\program files\003
C:\Windows\AutoKMS
C:\Users\User\AppData\Local\YlWVAszqdwc
C:\Windows\SysWOW64\srvany.exe
c:\programdata\wjin
c:\programdata\vhtarhu
c:\programdata\doyao
c:\program files (x86)\Rising
c:\programdata\dwqplug
c:\programdata\wddyol
c:\programdata\iql
c:\programdata\newbackup
c:\programdata\managecapsule
c:\programdata\ibackupvhd
c:\programdata\logsaver
c:\programdata\ftw

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


ynotia 26.06.2014 19:10
Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-06-2014
Ran by User at 2014-06-26 20:10:00 Run:1
Running from E:\Dokumente - Bilder - Work - Inst\04 Installationsprogramme\Trojaner
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
c:\program files\003
C:\Windows\AutoKMS
C:\Users\User\AppData\Local\YlWVAszqdwc
C:\Windows\SysWOW64\srvany.exe
c:\programdata\wjin
c:\programdata\vhtarhu
c:\programdata\doyao
c:\program files (x86)\Rising
c:\programdata\dwqplug
c:\programdata\wddyol
c:\programdata\iql
c:\programdata\newbackup
c:\programdata\managecapsule
c:\programdata\ibackupvhd
c:\programdata\logsaver
c:\programdata\ftw
*****************

"c:\program files\003" => File/Directory not found.
C:\Windows\AutoKMS => Moved successfully.
"C:\Users\User\AppData\Local\YlWVAszqdwc" => File/Directory not found.
C:\Windows\SysWOW64\srvany.exe => Moved successfully.
c:\programdata\wjin => Moved successfully.
c:\programdata\vhtarhu => Moved successfully.
c:\programdata\doyao => Moved successfully.
c:\program files (x86)\Rising => Moved successfully.
c:\programdata\dwqplug => Moved successfully.
c:\programdata\wddyol => Moved successfully.
c:\programdata\iql => Moved successfully.
c:\programdata\newbackup => Moved successfully.
c:\programdata\managecapsule => Moved successfully.
c:\programdata\ibackupvhd => Moved successfully.
c:\programdata\logsaver => Moved successfully.
c:\programdata\ftw => Moved successfully.

==== End of Fixlog ====

cosinus 26.06.2014 19:13
Okay, dann Kontrollscans mit MBAM und ESET bitte:

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


ynotia 26.06.2014 19:37
hier schon mal Malewarebytes:
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 26.06.2014
Suchlauf-Zeit: 20:21:08
Logdatei: malwarebytes-log.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.26.07
Rootkit Datenbank: v2014.06.23.02
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Tony

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 291246
Verstrichene Zeit: 7 Min, 1 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
Der hatte aber die ganze Zeit nichts gefunden :(


der andere wird jetzt ne Weile brauchen....

cosinus 26.06.2014 21:59
Zitat:
Der hatte aber die ganze Zeit nichts gefunden :(
Hallo?! :wtf: Das sind ja auch nur noch Kontrollscans


Alle Zeitangaben in WEZ +1. Es ist jetzt 04:49 Uhr.
Seite 2 von 3 1 2 3
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131