GVU-Meldung: Computer gesperrt

Attila1 · 08.09.2013, 20:39

Guten Abend allen fleißigen Helfern, ich hoffe mir kann geholfen werden

Wie ich bereits durch meine Internetrecherche herausgefunden habe, ist auch unser PC von dem GVU Trojaner befallen, der uns vorwirft "Urheberrechte und verwandte Schutzrechte" verletzt zu haben und zu einer Geldstrafe von 100€ (über PaySafeCard) auffordert.
Eine Anleitung, Schritt für Schritt, wäre deshalb echt super hilfreich! Habe nämlich große Angst etwas falsch zu machen, so dass später evtl. nicht alles vom Computer entfernt ist.

Schon mal vielen Dank im voraus!

aharonov · 08.09.2013, 21:58

Hallo,

Zitat:

Eine Anleitung, Schritt für Schritt, wäre deshalb echt super hilfreich!

So eine Anleitung haben wir: http://www.trojaner-board.de/139230-...ml#post1124740
Geh die durch und mach nach einer der Varianten einen Scan. Poste dann die entsprechenden Logs hier in den Thread und ich werden denn Sperrbildschirm entfernen.

Attila1 · 09.09.2013, 16:52

Hallo!

Danke, dass Sie sich Mühe geben und so schnell geantwortet haben!

Jetzt habe ich schon mal ein FRST.txt!
Ich hoffe, dass Sie mir damit weiter helfen können!

MfG

Attila1 · 09.09.2013, 16:57

Soo jetzt diese Frst.txt auch als CODE Tags

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-09-2013
Ran by SYSTEM on MININT-HT6B769 on 08-09-2013 21:08:54
Running from G:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TosNC] - C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [595816 2010-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1050072 2010-02-11] (Toshiba Europe GmbH)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [505696 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [52600 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [913720 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [SmartFaceVWatcher] - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] - C:\Program Files\TOSHIBA\TECO\Teco.exe [1489760 2010-04-06] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [705368 2010-02-23] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] - C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35672 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] - C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM-x32\...\Run: [SVPWUTIL] - C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2010-02-22] (TOSHIBA)
HKLM-x32\...\Run: [HWSetup] - C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [Microsoft Default Manager] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [NBAgent] - c:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-09] (Nero AG)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [KeNotify] - C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2009-12-25] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [TWebCamera] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2011-01-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Malwarebytes' Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [462920 2012-07-03] (Malwarebytes Corporation)
HKLM-x32\...\Run: [MobileBroadband] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [408576 2011-04-19] (Vodafone)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [348664 2012-08-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [RMAlert] - C:\Program Files (x86)\PC Tools Registry Mechanic\Alert.exe [1318872 2012-03-21] (PC Tools)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKU\Acar Eren\...\Run: [ctfmon.exe] - C:\WINDOWS\system32\ctfmon.exe [9728 2009-07-14] (Microsoft Corporation)
HKU\Acar Eren\...\Run: [SpybotSD TeaTimer] - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\Acar Eren\...\Run: [TC Login] - c:\tccargo\tccargo.exe [1215488 2012-09-07] (TimoCom Soft- und Hardware GmbH)
HKU\Acar Eren\...\Run: [Oxqyalwyw] - "C:\Users\Acar Eren\AppData\Roaming\Xiulev\yrxu.exe"
HKU\Acar Eren\...\Run: [PCSpeedUp] - C:\Program Files (x86)\PC Beschleunigen\PCSUNotifier.exe [259888 2013-05-23] ()
HKU\Acar Eren\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.)
HKU\Default\...\Run: [TOSHIBA Online Product Information] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\Default User\...\Run: [TOSHIBA Online Product Information] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
AppInit_DLLs-x32: c:\progra~3\browse~1\25976~1.107\{c16c1~1\mngr.dll  [2148376 2012-12-05] ()
Startup: C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\4h4vlmq.lnk
ShortcutTarget: 4h4vlmq.lnk -> C:\PROGRA~3\qmlv4h4.plz ()
Startup: C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Services (Whitelisted) =================

S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86224 2012-05-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110032 2012-05-01] (Avira Operations GmbH & Co. KG)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [32808 2013-07-01] (Just Develop It)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S2 IB Updater; C:\Program Files\IB Updater\ExtensionUpdaterService.exe [188760 2013-01-29] ()
S2 IBUpdaterService; C:\Windows\system32\dmwu.exe [1455408 2013-04-07] ()
S2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [655944 2012-07-03] (Malwarebytes Corporation)
S2 PCSUService; C:\Program Files (x86)\PC Beschleunigen\PCSUService.exe [388912 2013-05-23] ()
S2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2012-03-21] (PC Tools)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [124368 2010-02-11] (Toshiba Europe GmbH)
S2 Updater Service for AMZN; C:\Program Files (x86)\Amazon Browser Bar\ToolbarUpdaterService.exe [222368 2013-03-21] ()
S2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2013-05-02] (Wajam)
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
S2 Browser Manager; 

==================== Drivers (Whitelisted) ====================

S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98848 2012-04-24] (Avira GmbH)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132832 2012-04-27] (Avira GmbH)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [27760 2012-05-02] (Avira GmbH)
S0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2011-07-10] (Bytemobile, Inc.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [212992 2013-05-18] (Huawei Technologies Co., Ltd.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24904 2012-07-03] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24904 2012-07-03] (Malwarebytes Corporation)
S1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-07-10] (Bytemobile, Inc.)
S1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-07-10] (Bytemobile, Inc.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-03 23:54 - 2013-09-08 19:47 - 00000224 _____ C:\Windows\setupact.log
2013-09-03 23:54 - 2013-09-03 23:54 - 00000000 _____ C:\Windows\setuperr.log
2013-09-03 01:57 - 2013-09-08 19:48 - 00000000 _____ C:\ProgramData\4h4vlmq.ctrl
2013-09-03 01:57 - 2013-09-03 01:59 - 95025368 ____T C:\ProgramData\4h4vlmq.pff
2013-09-03 01:57 - 2013-09-03 01:57 - 00216064 _____ C:\ProgramData\qmlv4h4.plz
2013-09-03 01:57 - 2013-09-03 01:57 - 00064604 ____T (Microsoft Corporation) C:\ProgramData\4h4vlmq.pzz

==================== One Month Modified Files and Folders =======

2013-09-08 19:55 - 2011-07-02 21:52 - 00196608 _____ C:\Windows\System32\Ikeext.etl
2013-09-08 19:55 - 2009-07-14 05:45 - 00016080 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-08 19:55 - 2009-07-14 05:45 - 00016080 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-08 19:51 - 2013-05-29 15:55 - 00000000 ____D C:\Program Files (x86)\PC Beschleunigen
2013-09-08 19:48 - 2013-09-03 01:57 - 00000000 _____ C:\ProgramData\4h4vlmq.ctrl
2013-09-08 19:48 - 2012-09-09 16:21 - 00000292 _____ C:\Windows\Tasks\RMAutoUpdate.job
2013-09-08 19:47 - 2013-09-03 23:54 - 00000224 _____ C:\Windows\setupact.log
2013-09-08 19:47 - 2012-09-09 16:20 - 00000000 ____D C:\Program Files (x86)\PC Tools Registry Mechanic
2013-09-08 19:47 - 2011-05-22 18:40 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-08 19:47 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-08 19:24 - 2012-07-21 11:58 - 01098105 _____ C:\Windows\WindowsUpdate.log
2013-09-06 12:58 - 2011-05-22 18:40 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-04 00:51 - 2013-05-29 15:55 - 00000362 _____ C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2013-09-03 23:54 - 2013-09-03 23:54 - 00000000 _____ C:\Windows\setuperr.log
2013-09-03 02:48 - 2011-08-06 21:05 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-09-03 01:59 - 2013-09-03 01:57 - 95025368 ____T C:\ProgramData\4h4vlmq.pff
2013-09-03 01:57 - 2013-09-03 01:57 - 00216064 _____ C:\ProgramData\qmlv4h4.plz
2013-09-03 01:57 - 2013-09-03 01:57 - 00064604 ____T (Microsoft Corporation) C:\ProgramData\4h4vlmq.pzz
2013-09-03 01:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-09-03 01:29 - 2011-03-22 04:24 - 00000000 ____D C:\Users\Acar Eren\AppData\Roaming\Skype
2013-09-03 00:08 - 2009-07-14 18:58 - 00654400 _____ C:\Windows\System32\perfh007.dat
2013-09-03 00:08 - 2009-07-14 18:58 - 00130240 _____ C:\Windows\System32\perfc007.dat
2013-09-03 00:08 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\System32\PerfStringBackup.INI

Files to move or delete:
====================
C:\Users\Acar Eren\21nbaja8rmmgl.exe
C:\Users\Acar Eren\5xgvpqhvv3ggg.exe
C:\Users\Acar Eren\8m4fgj1o7d751.exe
C:\Users\Acar Eren\f0hyd8djc7qja.exe
C:\Users\Acar Eren\fdhs9pbvs22h2.exe
C:\Users\Acar Eren\gd8qrr5jt31lm.exe
C:\Users\Acar Eren\hobbt6v8xrrmy.exe
C:\ProgramData\4h4vlmq.ctrl
C:\ProgramData\pmt_0piot.pad
C:\ProgramData\qmlv4h4.plz
C:\Users\Public\AlexaNSISPlugin.6104.dll
C:\Users\Acar Eren\AppData\Local\Temp\jxnbiagasqidvajpqif.bfg

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-05-20 02:00:41
Restore point made on: 2013-05-29 17:49:54
Restore point made on: 2013-05-30 17:45:14
Restore point made on: 2013-06-14 14:24:50
Restore point made on: 2013-06-28 18:07:23
Restore point made on: 2013-07-03 12:53:31
Restore point made on: 2013-07-15 22:41:39
Restore point made on: 2013-07-22 00:42:00
Restore point made on: 2013-07-22 00:44:17
Restore point made on: 2013-07-22 00:45:19
Restore point made on: 2013-07-22 00:45:55
Restore point made on: 2013-07-22 00:47:44
Restore point made on: 2013-07-22 14:14:50
Restore point made on: 2013-07-31 23:53:39

==================== Memory info =========================== 

Percentage of memory in use: 15%
Total physical RAM: 3954.67 MB
Available physical RAM: 3356.86 MB
Total Pagefile: 3952.82 MB
Available Pagefile: 3350.91 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:232.88 GB) (Free:134 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.49 GB) (Free:223.59 GB) NTFS
Drive e: (SYSTEM) (Fixed) (Total:0.39 GB) (Free:0.18 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: (CREEPER) (Removable) (Total:3.92 GB) (Free:0.18 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 40D49AEE)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=232 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 0214F36C)
Partition 1: (Active) - (Size=4 GB) - (Type=0B)


LastRegBack: 2013-09-04 00:13

==================== End Of Log ============================

--- --- ---

aharonov · 09.09.2013, 16:58

Hallo,

startet dein Rechner nach diesem Fix wieder normal?

Drücke bitte die

+ R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

Startup: C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\4h4vlmq.lnk
ShortcutTarget: 4h4vlmq.lnk -> C:\PROGRA~3\qmlv4h4.plz ()
HKU\Acar Eren\...\Run: [Oxqyalwyw] - "C:\Users\Acar Eren\AppData\Roaming\Xiulev\yrxu.exe"
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
2013-09-03 01:57 - 2013-09-08 19:48 - 00000000 _____ C:\ProgramData\4h4vlmq.ctrl
2013-09-03 01:57 - 2013-09-03 01:59 - 95025368 ____T C:\ProgramData\4h4vlmq.pff
2013-09-03 01:57 - 2013-09-03 01:57 - 00216064 _____ C:\ProgramData\qmlv4h4.plz
2013-09-03 01:57 - 2013-09-03 01:57 - 00064604 ____T (Microsoft Corporation) C:\ProgramData\4h4vlmq.pzz
C:\Users\Acar Eren\21nbaja8rmmgl.exe
C:\Users\Acar Eren\5xgvpqhvv3ggg.exe
C:\Users\Acar Eren\8m4fgj1o7d751.exe
C:\Users\Acar Eren\f0hyd8djc7qja.exe
C:\Users\Acar Eren\fdhs9pbvs22h2.exe
C:\Users\Acar Eren\gd8qrr5jt31lm.exe
C:\Users\Acar Eren\hobbt6v8xrrmy.exe
C:\ProgramData\pmt_0piot.pad
C:\Users\Acar Eren\AppData\Local\Temp\jxnbiagasqidvajpqif.bfg

Speichere diese bitte als Fixlist.txt auf deinem USB Stick.

Starte deinen Rechner erneut in die Reparaturoptionen
Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.

Attila1 · 09.09.2013, 17:30

Hopplaa so schnell! DANKE!

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 08-09-2013
Ran by SYSTEM at 2013-09-09 18:17:10 Run:2
Running from H:\
Boot Mode: Recovery
==============================================

Content of fixlist:
*****************
Startup: C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\4h4vlmq.lnk
ShortcutTarget: 4h4vlmq.lnk -> C:\PROGRA~3\qmlv4h4.plz ()
HKU\Acar Eren\...\Run: [Oxqyalwyw] - "C:\Users\Acar Eren\AppData\Roaming\Xiulev\yrxu.exe"
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
S3 Winmgmt; C:\PROGRA~3\4h4vlmq.pzz [64604 2013-09-03] (Microsoft Corporation)
2013-09-03 01:57 - 2013-09-08 19:48 - 00000000 _____ C:\ProgramData\4h4vlmq.ctrl
2013-09-03 01:57 - 2013-09-03 01:59 - 95025368 ____T C:\ProgramData\4h4vlmq.pff
2013-09-03 01:57 - 2013-09-03 01:57 - 00216064 _____ C:\ProgramData\qmlv4h4.plz
2013-09-03 01:57 - 2013-09-03 01:57 - 00064604 ____T (Microsoft Corporation) C:\ProgramData\4h4vlmq.pzz
C:\Users\Acar Eren\21nbaja8rmmgl.exe
C:\Users\Acar Eren\5xgvpqhvv3ggg.exe
C:\Users\Acar Eren\8m4fgj1o7d751.exe
C:\Users\Acar Eren\f0hyd8djc7qja.exe
C:\Users\Acar Eren\fdhs9pbvs22h2.exe
C:\Users\Acar Eren\gd8qrr5jt31lm.exe
C:\Users\Acar Eren\hobbt6v8xrrmy.exe
C:\ProgramData\pmt_0piot.pad
C:\Users\Acar Eren\AppData\Local\Temp\jxnbiagasqidvajpqif.bfg
         
*****************

C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\4h4vlmq.lnk not found.
C:\PROGRA~3\qmlv4h4.plz => Moved successfully.
HKU\Acar Eren\Software\Microsoft\Windows\CurrentVersion\Run\\Oxqyalwyw => Value deleted successfully.
Winmgmt => Service restored successfully.
Winmgmt => Service restored successfully.
C:\ProgramData\4h4vlmq.ctrl => Moved successfully.
C:\ProgramData\4h4vlmq.pff => Moved successfully.
"C:\ProgramData\qmlv4h4.plz" => File/Directory not found.
C:\ProgramData\4h4vlmq.pzz => Moved successfully.
C:\Users\Acar Eren\21nbaja8rmmgl.exe => Moved successfully.
C:\Users\Acar Eren\5xgvpqhvv3ggg.exe => Moved successfully.
C:\Users\Acar Eren\8m4fgj1o7d751.exe => Moved successfully.
C:\Users\Acar Eren\f0hyd8djc7qja.exe => Moved successfully.
C:\Users\Acar Eren\fdhs9pbvs22h2.exe => Moved successfully.
C:\Users\Acar Eren\gd8qrr5jt31lm.exe => Moved successfully.
C:\Users\Acar Eren\hobbt6v8xrrmy.exe => Moved successfully.
C:\ProgramData\pmt_0piot.pad => Moved successfully.
C:\Users\Acar Eren\AppData\Local\Temp\jxnbiagasqidvajpqif.bfg => Moved successfully.

==== End of Fixlog ====

Hallo

Muss ich jetzt noch was machen! Oder ist jetzt damit diese GVU-Trojaner oder was das auch immer war weg!

bzw ist mein Lappi jetzt sauber?

Liebe Grüße! Herzlichen Dank!

aharonov · 09.09.2013, 18:08

Wir kontrollieren noch alles gründlich.
Verschiebe die frst64.exe vom USB-Stick auf den Desktop.

Starte dann FRST.
Setze bei Optional Scan den Haken bei Addition.txt und drücke Scan.
Wenn der Scan abgeschlossen ist, werden zwei neue Logfiles FRST.txt und Addition.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieser beiden Logfiles bitte hier in deinen Thread.

Attila1 · 09.09.2013, 18:57

Jetzt habe ich endlich!

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-09-2013
Ran by Acar Eren at 2013-09-09 19:51:03
Running from C:\Users\Acar Eren\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
 Update for Microsoft Office 2007 (KB2508958) (x32)
Adobe AIR (x32 Version: 1.5.3.9130)
Adobe Flash Player 10 Plugin (x32 Version: 10.3.181.26)
Adobe Reader 9.4.4 - Deutsch (x32 Version: 9.4.4)
Advertising Center (x32 Version: 0.0.0.2)
Amazon.de (x32)
Apple Application Support (x32 Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (x32 Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.765.0)
Avira Free Antivirus (x32 Version: 12.1.9.2400)
be Flash Player 11 ActiveX 64-bit (Version: 11.0.1.152)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.82)
Bing Bar (x32 Version: 7.1.361.0)
Bonjour (Version: 3.0.0.10)
Canon Easy-PhotoPrint EX (x32)
Canon Easy-WebPrint EX (x32)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (x32)
Canon MG5100 series Benutzerregistrierung (x32)
Canon MG5100 series MP Drivers
Canon MP Navigator EX 4.0 (x32)
Canon My Printer (x32)
Canon Solution Menu EX (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Full New (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Light (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center InstallProxy (x32 Version: 2010.0315.1050.17562)
Catalyst Control Center Localization All (x32 Version: 2010.0315.1050.17562)
CCC Help Chinese Standard (x32 Version: 2010.0315.1049.17562)
CCC Help Chinese Traditional (x32 Version: 2010.0315.1049.17562)
CCC Help Czech (x32 Version: 2010.0315.1049.17562)
CCC Help Danish (x32 Version: 2010.0315.1049.17562)
CCC Help Dutch (x32 Version: 2010.0315.1049.17562)
CCC Help English (x32 Version: 2010.0315.1049.17562)
CCC Help Finnish (x32 Version: 2010.0315.1049.17562)
CCC Help French (x32 Version: 2010.0315.1049.17562)
CCC Help German (x32 Version: 2010.0315.1049.17562)
CCC Help Greek (x32 Version: 2010.0315.1049.17562)
CCC Help Hungarian (x32 Version: 2010.0315.1049.17562)
CCC Help Italian (x32 Version: 2010.0315.1049.17562)
CCC Help Japanese (x32 Version: 2010.0315.1049.17562)
CCC Help Korean (x32 Version: 2010.0315.1049.17562)
CCC Help Norwegian (x32 Version: 2010.0315.1049.17562)
CCC Help Polish (x32 Version: 2010.0315.1049.17562)
CCC Help Portuguese (x32 Version: 2010.0315.1049.17562)
CCC Help Russian (x32 Version: 2010.0315.1049.17562)
CCC Help Spanish (x32 Version: 2010.0315.1049.17562)
CCC Help Swedish (x32 Version: 2010.0315.1049.17562)
CCC Help Thai (x32 Version: 2010.0315.1049.17562)
CCC Help Turkish (x32 Version: 2010.0315.1049.17562)
ccc-core-static (x32 Version: 2010.0315.1050.17562)
ccc-utility64 (Version: 2010.0315.1050.17562)
CCleaner (Version: 3.07)
Chuzzle Deluxe (x32 Version: 2.2.0.82)
D3DX10 (x32 Version: 15.4.2368.0902)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82)
DivX-Setup (x32 Version: 2.6.1.9)
eBay (x32 Version: 1.1.9)
FATE (x32 Version: 2.2.0.82)
Flatcast Viewer Plugin 5.3.0.752 (x32)
Fotogalerie (x32 Version: 16.4.3508.0205)
Google Chrome (x32 Version: 28.0.1500.72)
Google Update Helper (x32 Version: 1.3.21.153)
ImagXpress (x32 Version: 7.0.74.0)
Intel(R) Management Engine Components (x32 Version: 6.0.0.1179)
Intel(R) Rapid Storage Technology (x32 Version: 9.5.7.1002)
iTunes (Version: 10.7.0.21)
Java(TM) 6 Update 17 (x32 Version: 6.0.170)
Jewel Quest II (x32 Version: 2.2.0.82)
JNLP (HKCU)
Junk Mail filter update (x32 Version: 16.4.3508.0205)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (x32 Version: 2.2.114.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mobile Partner (x32 Version: 21.005.15.02.35)
Movie Maker (x32 Version: 16.4.3508.0205)
Mozilla Firefox 12.0 (x86 de) (x32 Version: 12.0)
Mozilla Maintenance Service (x32 Version: 12.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Nero 9 Essentials (x32)
Nero BackItUp (x32 Version: 5.2.21001)
Nero BackItUp and Burn (x32 Version: 1.2.0030)
Nero BurnRights (x32 Version: 3.4.13.100)
Nero BurnRights (x32 Version: 3.6.26001)
Nero BurnRights Help (x32 Version: 3.4.4.100)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero DiscSpeed (x32 Version: 5.4.13.100)
Nero DiscSpeed Help (x32 Version: 5.4.4.100)
Nero DriveSpeed (x32 Version: 4.4.12.100)
Nero DriveSpeed Help (x32 Version: 4.4.4.100)
Nero Express (x32 Version: 9.6.16000)
Nero Express Help (x32 Version: 9.4.34.100)
Nero InfoTool (x32 Version: 6.4.12.100)
Nero InfoTool Help (x32 Version: 6.4.4.100)
Nero Installer (x32 Version: 4.4.9.0)
Nero Online Upgrade (x32 Version: 1.3.0.0)
Nero RescueAgent (x32 Version: 2.6.25002)
Nero StartSmart (x32 Version: 9.4.37.100)
Nero StartSmart Help (x32 Version: 9.4.37.100)
NeroExpress (x32 Version: 9.4.34.100)
neroxml (x32 Version: 1.0.0)
PC Speed Up (Version: 3.2.10.2)
PC Tools Registry Mechanic 11.0 (x32 Version: 11.0)
Penguins! (x32 Version: 2.2.0.82)
Photo Common (x32 Version: 16.4.3508.0205)
Photo Gallery (x32 Version: 16.4.3508.0205)
Photo Service - powered by myphotobook (x32 Version: 1.0.7)
Photo Service - powered by myphotobook (x32 Version: 1.0.7-279)
Plants vs. Zombies (x32 Version: 2.2.0.82)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Polar Bowler (x32 Version: 2.2.0.82)
QuickTime (x32 Version: 7.72.80.56)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.13.112.2010)
Realtek HDMI Audio Driver for ATI (x32 Version: 6.0.1.5992)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6069)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30111)
Realtek WLAN Driver (x32 Version: 2.00.0013)
Skype Toolbars (x32 Version: 1.0.4051)
Skype™ 6.3 (x32 Version: 6.3.105)
Spybot - Search & Destroy (x32 Version: 1.6.2)
Synaptics Pointing Device Driver (Version: 15.0.8.1)
TC Login (x32)
Toshiba Assist (x32 Version: 3.00.11)
TOSHIBA Bulletin Board (Version: 1.6.07.64)
TOSHIBA Bulletin Board (x32 Version: 1.6.07.64)
TOSHIBA ConfigFree (x32 Version: 8.0.28)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA eco Utility (Version: 1.2.11.64)
TOSHIBA eco Utility (x32 Version: 1.2.11.64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Face Recognition (x32 Version: 3.1.3.64)
TOSHIBA Flash Cards Support Utility (x32 Version: 1.63.0.6C)
TOSHIBA Hardware Setup (x32 Version: 1.63.0.22C)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)
TOSHIBA HDD/SSD Alert (x32 Version: 3.1.64.6)
Toshiba Manuals (x32 Version: 10.01)
TOSHIBA Media Controller (x32 Version: 1.0.80.3.64)
TOSHIBA Media Controller Plug-in (x32 Version: 1.0.5.10)
TOSHIBA Online Product Information (x32 Version: 2.09.0001)
TOSHIBA PC Health Monitor (Version: 1.6.0.64)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 x64)
TOSHIBA Recovery Media Creator Reminder (x32 Version: 1.00.0019)
TOSHIBA ReelTime (Version: 1.6.06.64)
TOSHIBA ReelTime (x32 Version: 1.6.06.64)
TOSHIBA Service Station (x32 Version: 2.1.40)
TOSHIBA Supervisor Password (x32 Version: 1.63.0.9C)
TOSHIBA Supervisorkennwort (x32 Version: 1.63.0.9C)
Toshiba TEMPRO (x32 Version: 3.30)
TOSHIBA Value Added Package (Version: 1.3.3.64)
TOSHIBA Value Added Package (x32 Version: 1.3.3.64)
TOSHIBA Web Camera Application (x32 Version: 1.1.1.15)
TRORMCLauncher (Version: 1.0.0.9)
TRORMCLauncher (x32 Version: )
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
Utility Common Driver (x32 Version: 1.0.52.1C)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Veetle TV 0.9.18 (x32 Version: 0.9.18)
VLC media player 2.0.3 (x32 Version: 2.0.3)
Vodafone Mobile Broadband (x32 Version: 10.2.103.31248)
WildTangent ORB Game Console (x32)
WildTangent-Spiele (x32 Version: 1.0.0.80)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205)
Windows Live Essentials (x32 Version: 16.4.3508.0205)
Windows Live Family Safety (Version: 16.4.3508.0205)
Windows Live Family Safety (x32 Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3508.0205)
Windows Live Mail (x32 Version: 16.4.3508.0205)
Windows Live Messenger (x32 Version: 16.4.3508.0205)
Windows Live MIME IFilter (Version: 16.4.3508.0205)
Windows Live Photo Common (x32 Version: 16.4.3508.0205)
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205)
Windows Live SOXE (x32 Version: 16.4.3508.0205)
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205)
Windows Live Sync (x32 Version: 14.0.8089.726)
Windows Live UX Platform (x32 Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205)
Windows Live Writer (x32 Version: 16.4.3508.0205)
Windows Live Writer Resources (x32 Version: 16.4.3508.0205)
WinRAR 4.01 (64-Bit) (Version: 4.01.0)
Zuma Deluxe (x32 Version: 2.2.0.82)

==================== Restore Points  =========================

20-05-2013 01:00:22 Windows Update
29-05-2013 16:49:38 Windows Update
30-05-2013 16:44:56 Windows Update
14-06-2013 13:24:19 Windows Update
28-06-2013 17:07:07 Windows Update
03-07-2013 11:52:19 Windows Update
15-07-2013 21:41:24 Windows Update
21-07-2013 23:41:36 Windows Live Essentials
21-07-2013 23:44:09 DirectX wurde installiert
21-07-2013 23:45:11 DirectX wurde installiert
21-07-2013 23:45:31 DirectX wurde installiert
21-07-2013 23:47:36 WLSetup
22-07-2013 13:14:30 Windows Update
31-07-2013 22:53:17 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2012-07-21 17:25 - 00434874 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {05EA1D29-84D5-44BC-B1E1-29C184A1A696} - System32\Tasks\{8B5646A2-96B0-4BE7-A239-31C8D152F59E} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {0779C1C9-A130-4271-A4EF-D0DDB83F2095} - \PC SpeedUp Service Deactivator No Task File
Task: {0CE8E064-57EE-4B9E-A017-7C619CE2235E} - System32\Tasks\b95a16d0 => C:\Users\ACARER~1\AppData\Local\Temp\\setup3109689040.exe
Task: {17ACEECD-521B-45A9-9458-54414708C259} - System32\Tasks\bffae5d0 => C:\Users\ACARER~1\AppData\Local\Temp\\setup1194135840.exe
Task: {185DBC7E-AA5F-424F-B6EE-279F297CBFA5} - System32\Tasks\{3EA47D03-C9CF-4F5E-9EA0-BF8129E4ED87} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {1BEA84E6-E122-4756-BC8C-95F85BA8B1B6} - System32\Tasks\{AF92C287-9530-4FFA-900A-CF01B4A9C9FA} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {20D0A4E7-857C-462F-9B6D-D9CFAE04BD19} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-22] (Google Inc.)
Task: {32829596-69DE-4AA6-91CD-435B4A722764} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {35FD8BDF-DBDE-4D8F-B15F-0AB0C207C0B3} - System32\Tasks\{E5A40A2D-FD1C-4DBC-9ED9-2DC32B5C1EF5} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {3724A09C-8635-47BD-B2EE-E4D532672402} - System32\Tasks\{A2C81A96-742E-4586-BE89-E77EB590469D} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {3735A9CB-421E-4752-AB55-4A6DA8B45855} - System32\Tasks\c61d6fd0 => C:\Users\ACARER~1\AppData\Local\Temp\\setup3323817936.exe
Task: {41BD0275-0550-4781-931F-0F769E878AF2} - System32\Tasks\1ab1b90 => C:\Users\ACARER~1\AppData\Local\Temp\\setup1789514976.exe
Task: {4CBF25D4-0397-4048-B2DA-55545645064E} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {5478D39F-5B77-4D06-A84C-EF4A71943085} - System32\Tasks\{D1B3B41C-0D47-493A-BDBD-AD7C6396D320} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {7A3D3573-D7E5-4CA7-B319-B956ED9FAE20} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-02-22] (TOSHIBA CORPORATION)
Task: {7BC5BBFD-D917-4746-A7E2-F10CF93EE56A} - System32\Tasks\RMAutoUpdate => C:\Program Files (x86)\PC Tools Registry Mechanic\SULauncher.exe [2012-03-21] (PC Tools)
Task: {8D968618-ADA1-4328-8A4A-FB6D073BEA28} - System32\Tasks\RMSchedule => C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe [2012-03-21] (PC Tools)
Task: {96FCB0AA-1D3A-431C-ADD6-B3EDD6295804} - System32\Tasks\{0E6030C6-97A9-47C7-AC8C-A88C8CF066AD} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {AC0AB194-43A5-44FF-BF78-CF2912764F80} - System32\Tasks\{20CF399A-9E72-4F11-B974-F25780F7DD20} => F:\setup_vmc_lite.exe
Task: {B0FCAFFA-4736-4D12-AF38-91BA46B00ABA} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)
Task: {B4A22525-0FC2-4A82-B5D7-4A753A1CD8CC} - System32\Tasks\ce32b340 => C:\Users\ACARER~1\AppData\Local\Temp\\setup3459429184.exe
Task: {C6B4FDE6-C948-4DC3-9ECF-CB6A9A5AF1AE} - System32\Tasks\{C06E6D93-F9FE-475B-834C-2DB6765338E3} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {CE657114-19D2-4320-BC08-65ADA886B2C7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {CF2B592D-1752-4FB2-A317-10F71C29942D} - System32\Tasks\{1D229F05-0FCC-4EEC-B667-97D28A937799} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {D0240304-7704-48F8-9BA0-0937CD9D286B} - System32\Tasks\{D7EA88BF-3B3F-4592-92EC-5673F0F92AA2} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {D4E2172D-4C9B-4360-B855-205C1268877F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-05-22] (Google Inc.)
Task: {D8668027-6A47-4598-9400-34B62282DB1A} - System32\Tasks\{AD165E05-71EF-4DB6-8C3B-216A21DFFBFE} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {E3ECF397-D626-406A-8368-7735FEDB37A6} - \Browser Manager No Task File
Task: {E44EC504-25EC-4066-8F10-EFEF2BF23A11} - System32\Tasks\{743773F2-39A2-4275-B38F-CBA41D31E9E0} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {F6030408-25EE-4D2A-A879-1EB13AE1252C} - System32\Tasks\{5593012D-216B-4F70-8D2D-C5212083674E} => C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RMAutoUpdate.job => C:\Program Files (x86)\PC Tools Registry Mechanic\SULauncher.exe
Task: C:\Windows\Tasks\RMSchedule.job => C:\Program Files (x86)\PC Tools Registry Mechanic\RegMech.exe

==================== Loaded Modules (whitelisted) =============

2013-07-22 01:43 - 2013-07-22 01:43 - 00244696 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00661448 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\MSVCP110.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00828872 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\MSVCR110.dll
2011-07-25 19:58 - 2011-05-28 22:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2010-03-19 14:28 - 2010-03-19 14:28 - 03409256 _____ () C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll
2010-03-10 18:46 - 2010-03-10 18:46 - 00396584 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2010-03-10 18:46 - 2010-03-10 18:46 - 00207144 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2010-02-11 02:40 - 2010-02-11 02:40 - 00058824 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproCommon.dll
2010-02-11 02:40 - 2010-02-11 02:40 - 07239112 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproUI.dll
2010-02-11 02:40 - 2010-02-11 02:40 - 00050632 _____ (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\de\TemproUI.resources.dll
2010-08-12 07:21 - 2010-03-22 11:21 - 00149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2010-08-12 07:21 - 2009-12-02 15:01 - 01638432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkHDM64.dll
2010-08-12 07:21 - 2010-03-22 11:21 - 01660448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00119808 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00122880 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00260096 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TCooling.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00283136 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00298496 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00055808 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00261632 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00267776 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TKBLEDPwr.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00261632 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TSDPwr.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00260608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPCIePwr.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00162104 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll
2010-03-12 15:38 - 2010-03-12 15:38 - 00059704 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00265016 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\FnPRTSC.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 08762680 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00264704 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TFunctab.DLL
2010-03-03 14:15 - 2010-03-03 14:15 - 00055608 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnEsc.dll
2009-11-03 13:26 - 2009-11-03 13:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
2008-07-14 10:33 - 2008-07-14 10:33 - 00134456 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll
2008-07-14 10:35 - 2008-07-14 10:35 - 00107832 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
2008-07-14 10:34 - 2008-07-14 10:34 - 00053560 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll
2009-11-05 22:08 - 2009-11-05 22:08 - 00268288 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TFunc2.DLL
2008-07-14 10:34 - 2008-07-14 10:34 - 00054072 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll
2008-07-14 10:34 - 2008-07-14 10:34 - 00054072 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll
2010-01-20 13:47 - 2010-01-20 13:47 - 00116568 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll
2009-07-16 15:27 - 2009-07-16 15:27 - 00077624 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll
2009-08-19 20:36 - 2009-08-19 20:36 - 00369008 _____ (TOSHIBA Corporation.) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll
2008-07-14 10:34 - 2008-07-14 10:34 - 00057656 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
2010-03-03 14:15 - 2010-03-03 14:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
2009-10-23 14:24 - 2009-10-23 14:24 - 00076120 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll
2010-04-19 11:01 - 2009-06-22 14:40 - 00022328 _____ () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
2009-03-12 19:08 - 2009-03-12 19:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2009-07-14 19:02 - 2009-07-14 19:02 - 00018352 _____ (TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\ConfigFree\x64\CFNotify64.dll
2007-12-11 09:42 - 2007-12-11 09:42 - 00017784 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll
2009-07-25 16:38 - 2009-07-25 16:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
2008-07-14 10:35 - 2008-07-14 10:35 - 00233272 _____ (TOSHIBA Corp.) C:\Program Files\TOSHIBA\Utilities\NotifyX.dll
2010-04-06 14:53 - 2010-04-06 14:53 - 00578936 _____ () C:\Program Files\TOSHIBA\TECO\TecoPower.dll
2010-04-06 14:53 - 2010-04-06 14:53 - 00088944 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoHci.dll
2010-03-03 12:29 - 2010-03-03 12:29 - 00066904 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\ReelTimeRemoteStorage.dll
2010-03-03 12:29 - 2010-03-03 12:29 - 00327000 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\DataProcess.dll
2011-08-06 21:58 - 2010-03-25 04:50 - 00113152 _____ (CANON INC.) C:\Program Files\Canon\MyPrinter\cnmpu.dll
2011-08-06 21:58 - 2010-03-29 04:50 - 00068096 _____ (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMyRes.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00106496 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3726.17644__90ba9c70f846762e\MOM.Implementation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00032768 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3726.17533__90ba9c70f846762e\LOG.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00036864 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3726.17537__90ba9c70f846762e\LOG.Foundation.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3726.17642__90ba9c70f846762e\LOG.Foundation.Implementation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00005632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3726.17538__90ba9c70f846762e\MOM.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00020480 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3726.17538__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00019456 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3726.17644__90ba9c70f846762e\CCC.Implementation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00015360 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3726.17535__90ba9c70f846762e\NEWAEM.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00098304 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3726.17534__90ba9c70f846762e\CLI.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00057344 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3726.17544__90ba9c70f846762e\CLI.Component.SkinFactory.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00028672 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3726.17644__90ba9c70f846762e\CLI.Foundation.XManifest.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00061440 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3726.17543__90ba9c70f846762e\CLI.Component.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3726.17539__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3726.17539__90ba9c70f846762e\CLI.Foundation.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00005632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3726.17539__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00032768 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00045056 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3726.17541__90ba9c70f846762e\AEM.Server.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00006144 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3726.17541__90ba9c70f846762e\AEM.Server.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00045056 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3726.17657__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00006656 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3726.17649__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00007168 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3726.17535__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00006656 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3726.17540__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00045056 _____ (ATI Technologies Inc.) C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00016384 _____ (ATI Technologies Inc.) C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00006656 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3726.17544__90ba9c70f846762e\DEM.Graphics.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00380928 _____ (Advanced Mirco Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3726.17545__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00151552 _____ (Advanced Mirco Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3726.17537__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00005632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3726.17545__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00008192 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3726.17539__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00007168 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3726.17543__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00069632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3726.17607__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00077824 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3726.17628__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00008704 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3726.17569__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3726.17607__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00020480 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3726.17557__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00028672 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3726.17567__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3726.17575__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00020480 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3726.17544__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00028672 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3726.17557__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00016384 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00045056 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3726.17597__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00036864 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3726.17605__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3726.17604__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3726.17556__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00032768 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3726.17556__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00094208 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3726.17598__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3726.17628__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00065536 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3726.17596__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3726.17612__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00061440 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3726.17587__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3726.17567__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00057344 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3726.17612__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00013312 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Runtime\2.0.3726.17684__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00045056 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3726.17649__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3726.17596__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00024576 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3726.17603__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00009728 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Shared\2.0.3726.17651__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00028672 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3726.17623__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3726.17596__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00061440 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3726.17542__90ba9c70f846762e\APM.Server.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00020480 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3726.17535__90ba9c70f846762e\APM.Foundation.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00007168 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3726.17540__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00005632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3726.17657__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00005632 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3726.17540__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00405504 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3726.17562__90ba9c70f846762e\CLI.Component.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3726.17550__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00007680 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3726.17536__90ba9c70f846762e\CLI.Component.Client.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00020480 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3726.17536__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00011776 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3726.17562__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3726.17563__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00016384 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3726.17563__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00491520 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3726.17650__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00094208 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3726.17613__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00040960 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3726.17650__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00409600 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3726.17621__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00007168 _____ ( ) C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00307200 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3726.17575__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 01708032 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Wizard\2.0.3726.17684__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00204800 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3726.17570__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 01220608 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3726.17551__90ba9c70f846762e\CLI.Component.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00024576 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3726.17536__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00010240 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3726.17550__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
2009-10-13 10:00 - 2009-10-13 10:00 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00073728 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3726.17556__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00016384 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3726.17555__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00065536 _____ (Advanced Mirco Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3726.17651__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00196608 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3726.17570__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 01294336 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager2.Graphics.Dashboard\2.0.3726.17680__90ba9c70f846762e\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00094208 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3726.17604__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00397312 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3726.17597__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00323584 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3726.17606__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00376832 _____ (Advanced Micro Devices, Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3726.17592__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00356352 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3726.17613__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00573440 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3726.17571__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00827392 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3726.17598__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2010-08-12 07:14 - 2010-08-12 07:14 - 00118784 _____ (Advanced Micro Devices Inc.) C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3726.17649__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
2011-08-06 21:56 - 2010-08-25 05:00 - 00715776 _____ (CANON INC.) C:\Windows\system32\spool\DRIVERS\x64\3\CNMDRAD.DLL
2011-08-06 21:56 - 2010-08-25 05:00 - 03124224 _____ (CANON INC.) C:\Windows\system32\spool\DRIVERS\x64\3\CNMUIAD.DLL
2010-02-05 17:44 - 2010-02-05 17:44 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2010-02-05 17:45 - 2010-02-05 17:45 - 00265072 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll
2010-02-23 18:00 - 2010-02-23 18:00 - 00151552 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHCTL.dll
2010-02-23 18:00 - 2010-02-23 18:00 - 00260096 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TReport.dll
2010-02-23 18:00 - 2010-02-23 18:00 - 00112640 _____ (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHMui.dll
2012-07-21 17:38 - 2012-05-02 01:12 - 00058320 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cfglib.dll
2012-07-21 17:38 - 2012-08-09 00:46 - 00221432 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpipc.dll
2012-07-21 17:38 - 2012-05-02 01:17 - 00194256 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpgen.dll
2012-07-21 17:38 - 2012-05-02 01:19 - 00132304 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpschd.dll
2012-07-21 17:38 - 2012-04-16 23:11 - 00398288 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-07-21 17:38 - 2012-05-02 01:18 - 00044752 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpgrd.dll
2012-07-21 17:38 - 2012-11-16 02:59 - 00216096 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpavgio.dll
2012-07-21 17:38 - 2012-05-02 01:18 - 00061136 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpgui.dll
2012-07-21 17:38 - 2012-05-02 01:19 - 00049360 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gplegacy.dll
2012-07-21 17:38 - 2012-05-02 01:18 - 00062672 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpgenrep.dll
2012-07-21 17:38 - 2012-05-02 01:33 - 00029392 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\onlcfg.dll
2012-07-21 17:38 - 2012-11-16 02:58 - 00050720 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\avpref.dll
2012-07-21 17:38 - 2012-05-02 00:28 - 00131280 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\avesvc.dll
2012-07-21 17:38 - 2012-05-02 02:02 - 00017616 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\avesvcr.dll
2012-07-21 17:38 - 2012-07-21 17:39 - 00232200 _____ (Avira Operations GmbH) c:\program files (x86)\avira\antivir desktop\avreg.dll
2010-11-17 14:16 - 2010-11-17 14:16 - 00053024 _____ (Open Source Software community project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01292136 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00923496 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 16303976 _____ (The ICU Project) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
2011-08-31 00:05 - 2011-08-31 00:05 - 00085864 _____ (Apple Inc.) C:\Windows\system32\dnssd.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-01-15 14:08 - 2010-01-15 14:08 - 01164584 _____ (Nero AG) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NB.dll
2010-01-15 14:08 - 2010-01-15 14:08 - 00451880 _____ (Nero AG) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\LBFC.dll
2010-01-15 14:08 - 2010-01-15 14:08 - 00275752 _____ (Nero AG) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBBurn.dll
2010-01-15 14:08 - 2010-01-15 14:08 - 00197928 _____ (Nero AG) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00158208 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Base.Contr#\5e5b939fdf563fe8315d2f4c079eab0b\Vodafone.Base.Contracts.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00057344 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.NtService.Core.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00094720 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.LogEngine\24127600f972a47790d26c1ffe2d14f9\Vodafone.LogEngine.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00019968 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Base.Facto#\0998f1ba2dd25cf294e99df4563e8ee1\Vodafone.Base.Factory.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00321024 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Base.Win32\c335dea94d14d9b68204a8065a46379e\Vodafone.Base.Win32.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00327168 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.DataAccess#\44f108fbd322cb68c4dadf48229f6619\Vodafone.DataAccessor.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 01368064 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Platform\52dd1000f7f8b566e6b82e3c80416808\Vodafone.Platform.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00673280 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Data\44566ba3b7585213ab6ba04aea3cae59\Vodafone.Data.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00074240 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.NtServiceM#\1b871e92043475165bf9efbe2b341318\Vodafone.NtServiceMessaging.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00181248 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Common\d71eed73668fad5abaa213234ff741bb\Vodafone.Common.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 02002944 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\MobileBroadbandReso#\1e5faa5f6e2b2b89a78aa85bd4431fb1\MobileBroadbandResources.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00019456 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.MobileBroa#\4372377624a72264d32857497f51cae8\Vodafone.MobileBroadband.CallbackHandler.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00056320 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.SettingsMa#\d036127bd7f73221e93c70b1a005a7b0\Vodafone.SettingsManager.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00080384 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.SmsProfile#\0ed1a5db8881aac8eb0281061204f766\Vodafone.SmsProfileManager.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00089600 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Base.Inter#\85c6d46f7f47673bcc5e0565ad1e6bbb\Vodafone.Base.Internals.ni.dll
2011-04-19 16:11 - 2011-04-19 16:11 - 00128000 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Base.Win32.dll
2009-12-25 10:53 - 2009-12-25 10:53 - 00136584 _____ (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSParts.dll
2010-01-29 15:33 - 2010-01-29 15:33 - 00304536 _____ (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSAPI.dll
2010-01-29 16:19 - 2010-01-29 16:19 - 00071032 _____ (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWLAPI.dll
2009-07-27 18:57 - 2009-07-27 18:57 - 01561984 _____ (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSMUI.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00220632 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00534480 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\MSVCP110.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00862664 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\MSVCR110.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00537560 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll
2013-07-22 01:43 - 2013-07-22 01:43 - 00038360 _____ (Microsoft Corporation) C:\Users\Acar Eren\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll
2010-01-18 12:03 - 2010-01-18 12:03 - 04490536 ____R (BCGSoft Ltd) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\BCGCBPRO100u80.dll
2010-03-09 02:23 - 2010-03-09 02:23 - 01426728 _____ (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NB.dll
2010-03-09 17:59 - 2010-03-09 17:59 - 06112552 _____ (Nero AG) c:\Program Files (x86)\Common Files\Nero\AdvrCntr4\AdvrCntr4.dll
2010-03-09 02:23 - 2010-03-09 02:23 - 00472360 _____ (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\LBFC.dll
2010-03-09 02:23 - 2010-03-09 02:23 - 00304424 _____ (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBRes-DEU.nls
2010-03-09 03:25 - 2010-03-09 03:25 - 00128304 _____ (Prolific Technology Inc.) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\PL2571.dll
2010-03-09 03:25 - 2010-03-09 03:25 - 00079152 _____ (JMicron Technology Co.) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\JMUsbDll.dll
2010-03-09 03:25 - 2010-03-09 03:25 - 00128304 _____ (Prolific Technology Inc.) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\PLX507.dll
2010-03-09 03:25 - 2010-03-09 03:25 - 00181544 _____ (Sunplus Technology Inc.) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\sp216.dll
2010-03-09 03:25 - 2010-03-09 03:25 - 00239008 _____ (ALi) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\PushButtonStatus.dll
2010-03-09 02:23 - 2010-03-09 02:23 - 00120104 _____ (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBTask.dll
2010-03-09 02:23 - 2010-03-09 02:23 - 00292136 _____ (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBBurn.dll
2009-08-27 13:42 - 2009-08-27 13:42 - 00197928 ____R (Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NeroAPIGlueLayerUnicode.dll
2011-06-14 12:18 - 2010-11-20 14:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2009-07-14 01:51 - 2009-07-14 03:14 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vidcap.ax
2011-06-14 12:18 - 2010-11-20 14:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kswdmcap.ax
2013-07-17 15:35 - 2013-07-17 15:35 - 00282624 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\MobileBroadband\c111ce1f7e3efa3e7012f4e63ef45c1a\MobileBroadband.ni.exe
2013-07-17 15:35 - 2013-07-17 15:35 - 00946176 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Applicatio#\2debf0f0c528beacc7647efcb0bbe399\Vodafone.ApplicationHost.Impl.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00042496 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.InstancePr#\5abd5ba9be962d5c84124bdd3884eeaa\Vodafone.InstanceProvider.Impl.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00350208 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.ReportingM#\63c80e283aa15b567c1c2430734cdb38\Vodafone.ReportingManager.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00341504 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.CommonDial#\14f679cfc49ef913d9eac8f12bab9eaa\Vodafone.CommonDialogs.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00093696 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Contracts.#\e87f12ed5ca29bd54d224069036632fe\Vodafone.Contracts.Common.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00105472 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Contracts.#\9271fa387031970dc364b84f578a27b6\Vodafone.Contracts.View.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00131584 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Contracts.#\b293560750669e4fff95d8d00c2bb177\Vodafone.Contracts.Model.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00036864 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Contracts.#\53a501a0c1f62aec44b59996f8f84a96\Vodafone.Contracts.Presenter.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00049664 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Contracts.#\561700131036c417e1a4b3c43b5caac5\Vodafone.Contracts.Adapter.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00155136 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Connection#\1c595f54ca7934b340257771aa7ce7cc\Vodafone.ConnectionManagement.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00941568 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.BusinessLo#\2c6e791aa5cac7faea3f817a62718b9b\Vodafone.BusinessLogic.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00100352 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Core.Contr#\44d042dea00cee9deeff899190640127\Vodafone.Core.Contracts.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00108032 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.LanWlanMan#\69ce6fff14ed5d46509755b780098223\Vodafone.LanWlanManager.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00198144 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.SmsContact#\305abec6d77ede5a49c1bf36fad2fd22\Vodafone.SmsContactManager.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00026112 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Core.CoreI#\d41634e6ad7e2af740f0b9aa195e0d2e\Vodafone.Core.CoreInstanceProvider.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00084480 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Core.Remot#\a60b3f59519a2bc9d234656d22e83d06\Vodafone.Core.Remoting.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00606208 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.View.Secon#\c7d7f93948ca90e1f79c5dd823fe462d\Vodafone.View.SecondaryWindows.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00055808 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.TrafficOpt#\208b190d191ffe8c5fdc2ed45d4d5688\Vodafone.TrafficOptimiser.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00026112 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.DeviceAcce#\c1fe58bf2ef776bc1af9c8476a636a26\Vodafone.DeviceAccess.Contracts.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00673280 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Connection#\b95b29d40fdc318581794e0baa81b580\Vodafone.ConnectionServices.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00073728 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Vpn\5071d67958dde2f0e25a7d34fce57952\Vodafone.Vpn.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00030720 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.DeviceAcce#\3c1e89a9fb5feca109cc366c87aca4b2\Vodafone.DeviceAccess.Factory.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00025088 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.View.Manag#\d1e178b2a80575a34612ac915871cfa2\Vodafone.View.ManagedToolTip.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00192512 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Model.Conn#\26929b4a6dbfbc318588d4d7831a99c0\Vodafone.Model.Connection.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00034304 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.UpdateMana#\7daeb2ab224e8704ac525ee005b753fc\Vodafone.UpdateManager.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00022528 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.Core.Inter#\3d8b4dbd090c038fe1f19cc418c6363f\Vodafone.Core.Interfaces.ni.dll
2011-04-19 16:11 - 2011-04-19 16:11 - 00114688 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\de-DE\MobileBroadbandResources.resources.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 02104320 _____ (SpringSource) C:\Windows\assembly\NativeImages_v2.0.50727_32\Spring.Core\109d0fa9f9a77dd20dd69c6d81f372e6\Spring.Core.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00047104 _____ (hxxp://netcommon.sf.net) C:\Windows\assembly\NativeImages_v2.0.50727_32\Common.Logging\82bb26447eb787d0d1ba6ee5e9714fdf\Common.Logging.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00156160 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Shared.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 07138304 _____ (Infragistics Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\Infragistics2.Win.U#\38fa3a49e8736aec6fc706897d92a252\Infragistics2.Win.UltraWinToolbars.v9.2.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00871424 _____ (Infragistics Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\Infragistics2.Share#\6e5d08b35a94faf42de25a8e1a6afbe2\Infragistics2.Shared.v9.2.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 11053568 _____ (Infragistics Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\Infragistics2.Win.v#\c94a0a5be31e09b8e9dea43644fd76a0\Infragistics2.Win.v9.2.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00042496 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.AdvancedView.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00016896 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.StandardView.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00013824 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.TitleBar.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00876032 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.View.Shared\f22336bca6061e27396074814192ee5b\Vodafone.View.Shared.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00037376 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Notification.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00009728 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Gui.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00031744 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Status.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00010240 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Notification.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00008192 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.TaskBar.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00011264 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.AlwaysBestConnected.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00024576 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Shortcut.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00010752 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Branding.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00020480 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Usage.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00021504 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.SecondaryWindows.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00014336 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Progressbar.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00012800 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.VsraPushingUpdates.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00006656 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Prepay.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00005632 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.ManagedToolTip.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00017920 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.Options.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00027648 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Commands.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00122368 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Connection.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00060416 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Status.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00025088 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.PreferredConnection.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00025600 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Usage.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00018944 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Prepay.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00025600 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Device.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00027648 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Shortcut.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00012800 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.ShortcutBar.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00012800 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Branding.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00007168 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Messaging.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00011776 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.VsraPushingUpdates.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00036864 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.AbcHelp.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00013312 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Wizard.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00019968 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.WhatsNew.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00011776 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Decorator.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00099328 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Options.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00498688 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.DeviceAcce#\7cb5f60da1667e269d8a8892c2cf6e86\Vodafone.DeviceAccess.Internals.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00040960 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.DeviceAcce#\541a556f5e02b1c8d55a504394c4154c\Vodafone.DeviceAccess.Interfaces.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00393216 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.MbbManagem#\fb4e2c51aa2a014a416c722e1dfb8549\Vodafone.MbbManagement.ni.dll
2013-07-17 15:35 - 2013-07-17 15:35 - 00031232 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.OutlookCon#\0f81377e4c737746c0ac79035dc0aa96\Vodafone.OutlookConnector.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00733184 _____ (Vodafone) C:\Windows\assembly\NativeImages_v2.0.50727_32\Vodafone.WwanWrapper\06e2c059e5965a7b7b6352e2c47718e5\Vodafone.WwanWrapper.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00119808 _____ ( ) C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.Shell32\e2de2129a72670aa5deef3992c2cf158\Interop.Shell32.ni.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 00081408 _____ ( ) C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.MbnApi\ac9675372971499b5561a07760e0fa80\Interop.MbnApi.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00008704 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.Model.DialUp.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 03348480 _____ (Infragistics Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\Infragistics2.Win.M#\cd9089b988e4871924f3d248d83734a3\Infragistics2.Win.Misc.v9.2.ni.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00308736 _____ () C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.View.Taskbar.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00006656 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Plugins\Vodafone.Plugin.MbbGuiConfiguration.dll
2013-07-17 15:36 - 2013-07-17 15:36 - 01304064 _____ (Infragistics Inc.) C:\Windows\assembly\NativeImages_v2.0.50727_32\Infragistics2.Win.U#\232c0e7991798e5fd1ab40898f814a10\Infragistics2.Win.UltraWinEditors.v9.2.ni.dll
2011-04-19 16:11 - 2011-04-19 16:11 - 00348160 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Vodafone.WwanWrapper.dll
2011-04-18 15:39 - 2011-04-18 15:39 - 02908480 _____ (Smith Micro Software Inc.) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\WwanCoreSdk.dll
2011-04-18 15:39 - 2011-04-18 15:39 - 00143680 _____ (Smith Micro Software Inc.) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\Diagnostic.dll
2009-07-13 23:03 - 2009-07-14 03:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2011-04-19 16:12 - 2011-04-19 16:12 - 00007168 _____ (Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Plugins\Vodafone.Plugin.MobileConnectionProfileView.dll
2011-08-06 22:00 - 2010-04-08 13:43 - 00032768 _____ (CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\DE\CNSELANG.dll
2012-07-21 17:38 - 2012-05-02 01:06 - 00405200 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccguard.dll
2012-07-21 17:38 - 2012-05-02 02:02 - 00031952 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdrc.dll
2012-07-21 17:38 - 2012-05-02 01:06 - 00235216 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdw.dll
2012-07-21 17:38 - 2012-08-09 00:46 - 00471800 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrd.dll
2012-07-21 17:38 - 2012-11-16 02:58 - 00755744 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgen.dll
2012-07-21 17:38 - 2012-05-02 02:02 - 00052432 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgenrc.dll
2012-07-21 17:38 - 2012-05-02 01:11 - 00279248 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdate.dll
2012-07-21 17:38 - 2012-08-09 00:46 - 00031480 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdrc.dll
2012-07-21 17:38 - 2012-05-02 01:07 - 00128208 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclic.dll
2012-07-21 17:38 - 2012-05-02 02:03 - 00012496 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclicrc.dll
2012-07-21 17:38 - 2012-08-09 00:46 - 00231672 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsg.dll
2012-07-21 17:38 - 2012-05-02 02:03 - 00011472 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsgrc.dll
2012-07-21 17:38 - 2012-05-02 02:03 - 00016592 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmainrc.dll

==================== Alternate Data Streams (whitelisted) ==========

AlternateDataStreams: C:\Users\Acar Eren\Desktop\ŞARKI INDIRME.url:favicon
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/08/2013 08:54:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23041

Error: (09/08/2013 08:54:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 23041

Error: (09/08/2013 08:54:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/08/2013 08:54:41 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 21949

Error: (09/08/2013 08:54:41 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 21949

Error: (09/08/2013 08:54:41 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/08/2013 08:54:40 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 20732

Error: (09/08/2013 08:54:40 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 20732

Error: (09/08/2013 08:54:40 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/08/2013 08:54:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19672


System errors:
=============
Error: (09/09/2013 07:44:30 PM) (Source: Disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.

Error: (09/09/2013 06:20:34 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Browser Manager" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (09/09/2013 06:09:26 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (09/09/2013 06:08:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Browser Manager" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
AFD
avipbb
avkmgr
DfsC
discache
NetBIOS
NetBT
nsiproxy
Psched
rdbss
spldr
tcpipBM
tdx
vwififlt
Wanarpv6
WfpLwf

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Verwaltungsinstrumentation" wurde mit folgendem Fehler beendet: 
%%127

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SMB 2.0-Miniredirector" ist vom Dienst "SMB-Miniredirector-Wrapper und -Modul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SMB 1.x-Miniredirector" ist vom Dienst "SMB-Miniredirector-Wrapper und -Modul" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SMB-Miniredirector-Wrapper und -Modul" ist vom Dienst "Umgeleitetes Puffersubsystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%31

Error: (09/08/2013 08:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "IP-Hilfsdienst" ist vom Dienst "Netzwerkspeicher-Schnittstellendienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068


Microsoft Office Sessions:
=========================
Error: (11/02/2012 00:40:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 20 seconds with 0 seconds of active time.  This session ended with a crash.


==================== Memory info =========================== 

Percentage of memory in use: 46%
Total physical RAM: 3954.67 MB
Available physical RAM: 2097.94 MB
Total Pagefile: 7907.53 MB
Available Pagefile: 5741.63 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:232.88 GB) (Free:133.65 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.49 GB) (Free:223.59 GB) NTFS
Drive f: (CREEPER) (Removable) (Total:3.92 GB) (Free:0.18 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 40D49AEE)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=232 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 4 GB) (Disk ID: 0214F36C)
Partition 1: (Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================

und den FRST.txt

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-09-2013
Ran by Acar Eren (administrator) on ACAREREN on 09-09-2013 19:49:00
Running from C:\Users\Acar Eren\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Safer Networking Limited) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
(TOSHIBA CORPORATION.) C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TosNC] - C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [595816 2010-03-19] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1050072 2010-02-11] (Toshiba Europe GmbH)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [896032 2010-03-22] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [505696 2009-11-05] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] - C:\Program Files\TOSHIBA\TBS\HSON.exe [52600 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [913720 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [SmartFaceVWatcher] - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] - C:\Program Files\TOSHIBA\TECO\Teco.exe [1489760 2010-04-06] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] - C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [705368 2010-02-23] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] - C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35672 2010-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] - C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKCU\...\Run: [ctfmon.exe] - C:\WINDOWS\system32\ctfmon.exe [9728 2009-07-14] (Microsoft Corporation)
HKCU\...\Run: [SpybotSD TeaTimer] - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKCU\...\Run: [TC Login] - c:\tccargo\tccargo.exe [1215488 2012-09-07] (TimoCom Soft- und Hardware GmbH)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.)
HKCU\...\Policies\Explorer: [HideSCAHealth] 1
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {0760d1e9-a4f4-11e0-9214-d9257b6ab5c4} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {09ae488f-c056-11e0-b8ef-001e101f2500} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {11aceb2c-bf5f-11e2-9267-88252c3d2c82} - F:\AutoRun.exe
MountPoints2: {11aceb3c-bf5f-11e2-9267-88252c3d2c82} - F:\AutoRun.exe
MountPoints2: {146f3de6-a4ea-11e0-b8c0-ab52c46744c9} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {25faaec4-d464-11df-9deb-88252c3d2c82} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {25faaecb-d464-11df-9deb-88252c3d2c82} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {39fd46cf-a4ec-11e0-b709-806e6f6e6963} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {39fd46e7-a4ec-11e0-b709-e8d2f35482c5} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {3ec8f769-a4fa-11e0-8287-ea5b3817a4ba} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {3ec8f76b-a4fa-11e0-8287-ea5b3817a4ba} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {3ec8f773-a4fa-11e0-8287-ea5b3817a4ba} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {3ec8f776-a4fa-11e0-8287-ea5b3817a4ba} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {580e9783-fda3-11df-b62e-88ae1d58711f} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca150-a4ec-11e0-9328-806e6f6e6963} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca171-a4ec-11e0-9328-960aa861e9c6} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca175-a4ec-11e0-9328-960aa861e9c6} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca183-a4ec-11e0-9328-960aa861e9c6} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca19b-a4ec-11e0-9328-960aa861e9c6} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {910ca1a3-a4ec-11e0-9328-960aa861e9c6} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {af65ecb8-a575-11e0-a01a-dbe2e1743dc7} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {d458c011-dd5c-11df-b480-88ae1d58711f} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {d458c015-dd5c-11df-b480-88ae1d58711f} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {edaf23ea-aacb-11e0-905f-c6e2d866c2c9} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {edaf23fb-aacb-11e0-905f-c6e2d866c2c9} - F:\setup_vmc_lite.exe /checkApplicationPresence
MountPoints2: {fdd66a50-a4f1-11e0-9144-806e6f6e6963} - F:\setup_vmc_lite.exe /checkApplicationPresence
HKLM-x32\...\Run: [SVPWUTIL] - C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2010-02-22] (TOSHIBA)
HKLM-x32\...\Run: [HWSetup] - C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [Microsoft Default Manager] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [439568 2010-05-10] (Microsoft Corporation)
HKLM-x32\...\Run: [NBAgent] - c:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760 2010-03-09] (Nero AG)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [KeNotify] - C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2009-12-25] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [TWebCamera] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2011-01-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [MobileBroadband] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [408576 2011-04-19] (Vodafone)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [348664 2012-08-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [RMAlert] - C:\Program Files (x86)\PC Tools Registry Mechanic\Alert.exe [1318872 2012-03-21] (PC Tools)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKU\Default\...\Run: [TOSHIBA Online Product Information] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
AppInit_DLLs-x32:   [ ] ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p14_serp_ie_de_display?ie=UTF8&tagbase=bds-p14&tbrId=v1_abb-channel-14_46ff1d1a9ae84d7e803266470a0de4e5_16_37_20130720_DE_ie_sp_
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba.msn.com
SearchScopes: HKLM - DefaultScope {D58D36E8-500C-4F1E-BDD8-E3167F10016E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {3892D0F6-E577-4D7E-9F98-466023C7951D} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3297969&CUI=UN41597733872029132&UM=1
SearchScopes: HKCU - {3D799345-F676-4DD4-990D-D5233068E90D} URL = hxxp://rover.ebay.com/rover/1/707-44556-9400-9/4?satitle={searchTerms}
SearchScopes: HKCU - {80F536C1-4511-4176-82AA-6B0CA29B16F7} URL = hxxp://www.amazon.de/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibade-win7-ie-search-21&index=blended&linkCode=ur2
SearchScopes: HKCU - {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p14_serp_ie_de_display?ie=UTF8&tagbase=bds-p14&tag=bds-p14-serp-de-ie-21&tbrId=v1_abb-channel-14_46ff1d1a9ae84d7e803266470a0de4e5_16_37_20130720_DE_ie_ds_&query={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: No Name - {336D0C35-8A85-403a-B9D2-65C292C39087} -  No File
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {A672558F-A878-4D5A-A921-627C091CEB69} hxxp://92.51.137.94/objects/NpFp522.dll
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} 
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F560} hxxp://download.flatcast.net/objects/NpFv522.dll
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} hxxp://92.51.137.94/objects/NpFv530.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8BC53E4E-80E8-4F46-84E4-4A7E9D1836BA}: [NameServer]139.7.30.125 139.7.30.126

FireFox:
========
FF ProfilePath: C:\Users\Acar Eren\AppData\Roaming\Mozilla\Firefox\Profiles\3sklgjx8.default
FF NetworkProxy: "no_proxies_on", "*.local"
FF NetworkProxy: "type", 0
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ACARER~1\AppData\Roaming\Mozilla\Plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Optimization Client\addon\
FF Extension: Bytemobile Optimization Client - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Optimization Client\addon\
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Google",         "prepopulate_id": "1",         "search_url": "{google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}         "suggest_url": "{google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}") -         "encodings": "UTF-8",         "icon_url": "hxxp://www.google.com/favicon.ico",         "id": "2",         "instant_url": "{google:baseURL}webhp?{google:RLZ}sourceid=chrome-instant&{google:instantFieldTrialGroupParameter}ie={inputEncoding}&ion=1{searchTerms}",         "keyword": "google.de",         "name": "Google",         "prepopulate_id": "1",{google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}",         "suggest_url": "{google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR DefaultSuggestURL: (Google",         "prepopulate_id": "1",         "search_url": "{google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}         "suggest_url": "{google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}") -         "encodings": "UTF-8",         "icon_url": "hxxp://www.google.com/favicon.ico",         "id": "2",         "instant_url": "{google:baseURL}webhp?{google:RLZ}sourceid=chrome-instant&{google:instantFieldTrialGroupParameter}ie={inputEncoding}&ion=1{searchTerms}",         "keyword": "google.de",         "name": "Google",         "prepopulate_id": "1",         "search_url": "{google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}",{google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\ACARER~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0
CHR HKLM-x32\...\Chrome\Extension: [bgnnidmnbdkmhfkjgdnngciimpdgohok] - C:\Program Files (x86)\LigtvizlerApp.com\stv11.crx
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86224 2012-05-02] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110032 2012-05-02] (Avira Operations GmbH & Co. KG)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [793048 2012-03-21] (PC Tools)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [124368 2010-02-11] (Toshiba Europe GmbH)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [98848 2012-04-25] (Avira GmbH)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132832 2012-04-27] (Avira GmbH)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [27760 2012-05-02] (Avira GmbH)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2011-07-10] (Bytemobile, Inc.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [212992 2013-05-18] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-07-10] (Bytemobile, Inc.)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-07-10] (Bytemobile, Inc.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-09 19:10 - 2013-09-09 19:10 - 00712264 _____ C:\Windows\isRS-000.tmp
2013-09-09 19:05 - 2013-09-09 19:12 - 00000112 _____ C:\Windows\setupact.log
2013-09-09 19:05 - 2013-09-09 19:05 - 00000000 _____ C:\Windows\setuperr.log
2013-09-09 19:01 - 2013-09-09 19:01 - 00149442 _____ C:\Users\Acar Eren\Documents\cc_20130909_190123.reg
2013-09-09 18:40 - 2013-09-09 18:40 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-09-09 18:36 - 2013-09-09 18:41 - 00000000 ____D C:\AdwCleaner
2013-09-08 22:08 - 2013-09-08 22:08 - 00000000 ____D C:\FRST

==================== One Month Modified Files and Folders =======

2013-09-09 19:27 - 2012-07-21 12:58 - 01238792 _____ C:\Windows\WindowsUpdate.log
2013-09-09 19:27 - 2011-05-22 19:40 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-09 19:20 - 2009-07-14 06:45 - 00016080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-09 19:20 - 2009-07-14 06:45 - 00016080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-09 19:17 - 2010-10-10 12:51 - 00000000 ____D C:\Users\Acar Eren
2013-09-09 19:12 - 2013-09-09 19:05 - 00000112 _____ C:\Windows\setupact.log
2013-09-09 19:12 - 2012-09-09 17:21 - 00000292 _____ C:\Windows\Tasks\RMAutoUpdate.job
2013-09-09 19:12 - 2012-09-09 17:20 - 00000000 ____D C:\Program Files (x86)\PC Tools Registry Mechanic
2013-09-09 19:12 - 2011-07-02 22:52 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-09-09 19:12 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-09 19:11 - 2011-06-14 04:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-09 19:11 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\tracing
2013-09-09 19:10 - 2013-09-09 19:10 - 00712264 _____ C:\Windows\isRS-000.tmp
2013-09-09 19:10 - 2012-07-21 00:02 - 00001120 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-09 19:08 - 2011-03-22 05:24 - 00000000 ____D C:\Users\Acar Eren\AppData\Roaming\Skype
2013-09-09 19:06 - 2011-06-14 04:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-09 19:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-09-09 19:05 - 2013-09-09 19:05 - 00000000 _____ C:\Windows\setuperr.log
2013-09-09 19:01 - 2013-09-09 19:01 - 00149442 _____ C:\Users\Acar Eren\Documents\cc_20130909_190123.reg
2013-09-09 19:00 - 2012-09-09 19:16 - 00000414 _____ C:\Windows\SysWOW64\AppLog.log
2013-09-09 19:00 - 2012-09-09 17:21 - 00000294 _____ C:\Windows\Tasks\RMSchedule.job
2013-09-09 18:58 - 2011-05-22 19:40 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-09 18:41 - 2013-09-09 18:36 - 00000000 ____D C:\AdwCleaner
2013-09-09 18:40 - 2013-09-09 18:40 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-09-09 18:40 - 2010-10-10 12:51 - 00000000 ___RD C:\Users\Acar Eren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-09 18:35 - 2012-09-14 17:19 - 00000000 ____D C:\Users\Acar Eren\AppData\Roaming\vlc
2013-09-09 18:35 - 2009-07-14 19:58 - 00654400 _____ C:\Windows\system32\perfh007.dat
2013-09-09 18:35 - 2009-07-14 19:58 - 00130240 _____ C:\Windows\system32\perfc007.dat
2013-09-09 18:35 - 2009-07-14 07:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-09 18:23 - 2013-05-29 16:55 - 00000000 ____D C:\Program Files (x86)\PC Beschleunigen
2013-09-08 22:08 - 2013-09-08 22:08 - 00000000 ____D C:\FRST
2013-09-08 20:37 - 2013-09-09 19:48 - 01948988 _____ (Farbar) C:\Users\Acar Eren\Desktop\FRST64.exe
2013-09-03 03:48 - 2011-08-06 22:05 - 00000000 ____D C:\ProgramData\CanonIJPLM

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6104.dll
C:\Users\ACARER~1\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-04 01:13

==================== End Of Log ============================

--- --- ---

--- --- ---

aharonov · 09.09.2013, 19:05

Wie läuft der Rechner jetzt? Alles normal?

Schritt 1

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Öffne das Programm Malwarebytes Anti-Malware.
Vista und Win7 User mit Rechtsklick "als Administrator starten".
Klicke auf Aktualisierung --> Suche nach Aktualisierung.
Wenn das Update beendet wurde, aktiviere im Reiter Suchlauf die Option Quick-Scan durchführen und drücke auf Scannen.
Wenn der Scan fertig ist, klicke auf Ergebnisse anzeigen.
Versichere dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter dem Reiter Logdateien finden.

Schritt 3

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 4

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Attila1 · 09.09.2013, 19:43

Ich bedanke mich für Ihre Bemühungen!
Werde mich aber erst wieder morgen melden, da jetzt die Arbeit ruft!

MfG

aharonov · 09.09.2013, 19:48

Alles klar, bis morgen.

aharonov · 16.09.2013, 17:30

Hi,

ich hab schon länger keine Antwort mehr von dir erhalten. Brauchst du weiterhin noch Hilfe?

Wenn ich in den nächsten 24 Stunden nichts von dir höre, gehe ich davon aus, dass sich das Thema erledigt hat und lösche es aus meinen Abos.

Attila1 · 18.09.2013, 22:59

Hallo!
Sorry aber, wegen der Arbeit bin ich nicht dazu gekommen dir etwas zu schreiben!

Komme erst wieder am Sonntag an den Computer ran!

Und ich muss mich bei dir unendlich bedanken! Es läuft wieder!

MfG

aharonov · 20.09.2013, 10:24

Ok, alles klar.

aharonov · 02.10.2013, 18:26

Hi,

ich hab schon länger keine Antwort mehr von dir erhalten. Brauchst du weiterhin noch Hilfe?

Wenn ich in den nächsten 24 Stunden nichts von dir höre, gehe ich davon aus, dass sich das Thema erledigt hat und lösche es aus meinen Abos.

09.09.2013, 19:48	#11
aharonov /// TB-Ausbilder	GVU-Meldung: Computer gesperrt Alles klar, bis morgen. __________________ cheers, Leo

16.09.2013, 17:30	#12
aharonov /// TB-Ausbilder	GVU-Meldung: Computer gesperrt Hi, ich hab schon länger keine Antwort mehr von dir erhalten. Brauchst du weiterhin noch Hilfe? Wenn ich in den nächsten 24 Stunden nichts von dir höre, gehe ich davon aus, dass sich das Thema erledigt hat und lösche es aus meinen Abos. __________________ cheers, Leo

20.09.2013, 10:24	#14
aharonov /// TB-Ausbilder	GVU-Meldung: Computer gesperrt Ok, alles klar. __________________ cheers, Leo

02.10.2013, 18:26	#15
aharonov /// TB-Ausbilder	GVU-Meldung: Computer gesperrt Hi, ich hab schon länger keine Antwort mehr von dir erhalten. Brauchst du weiterhin noch Hilfe? Wenn ich in den nächsten 24 Stunden nichts von dir höre, gehe ich davon aus, dass sich das Thema erledigt hat und lösche es aus meinen Abos. __________________ cheers, Leo

GVU-Meldung: Computer gesperrt

Plagegeister aller Art und deren Bekämpfung: GVU-Meldung: Computer gesperrt