| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.11.2013, 13:40
| #1 |
 |  EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com einmal wurde das gefunden: F:\Programme\SteamApps\common\Terraria\dotNetFx40_Full_x86_x64.exe [WARNUNG] Die Datei konnte nicht gelesen werden! zweimal das: EXP/Java.HLP.GJ und dreimal das: ADWARE/Adppeeps.A außerdem kommt, wenn ich den Browser öffne immer qone8.com oder so :/ Ich hab keine Ahnung von Viren/Trojaner/...-Beseitigung und brauche drigend Hilfe.  das habe ich bekommen: Avira Free Antivirus Erstellungsdatum der Reportdatei: Sonntag, 3. November 2013 11:08 Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Avira Free Antivirus Seriennummer : 0000149996-ADJIE-0000001 Plattform : Windows 7 Ultimate Windowsversion : (Service Pack 1) [6.1.7601] Boot Modus : Normal gebootet Benutzername : SYSTEM Computername : BASTI-PC Versionsinformationen: BUILD.DAT : 14.0.0.383 55392 Bytes 30.09.2013 11:01:00 AVSCAN.EXE : 14.0.0.383 968776 Bytes 07.10.2013 10:14:47 AVSCANRC.DLL : 14.0.0.225 62024 Bytes 07.10.2013 10:14:47 LUKE.DLL : 14.0.0.383 65096 Bytes 07.10.2013 10:15:14 AVSCPLR.DLL : 14.0.0.383 92232 Bytes 07.10.2013 10:14:47 AVREG.DLL : 14.0.0.383 250440 Bytes 07.10.2013 10:14:46 avlode.dll : 14.0.0.383 512584 Bytes 07.10.2013 10:14:43 avlode.rdf : 13.0.1.44 27859 Bytes 30.10.2013 13:55:17 VBASE000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 17:06:07 VBASE001.VDF : 7.11.74.226 2201600 Bytes 30.04.2013 17:06:10 VBASE002.VDF : 7.11.80.60 2751488 Bytes 28.05.2013 17:06:14 VBASE003.VDF : 7.11.85.214 2162688 Bytes 21.06.2013 17:06:17 VBASE004.VDF : 7.11.91.176 3903488 Bytes 23.07.2013 17:06:23 VBASE005.VDF : 7.11.98.186 6822912 Bytes 29.08.2013 17:06:33 VBASE006.VDF : 7.11.103.230 2293248 Bytes 24.09.2013 17:06:36 VBASE007.VDF : 7.11.103.231 2048 Bytes 24.09.2013 17:06:36 VBASE008.VDF : 7.11.103.232 2048 Bytes 24.09.2013 17:06:36 VBASE009.VDF : 7.11.103.233 2048 Bytes 24.09.2013 17:06:36 VBASE010.VDF : 7.11.103.234 2048 Bytes 24.09.2013 17:06:36 VBASE011.VDF : 7.11.103.235 2048 Bytes 24.09.2013 17:06:36 VBASE012.VDF : 7.11.103.236 2048 Bytes 24.09.2013 17:06:36 VBASE013.VDF : 7.11.103.237 2048 Bytes 24.09.2013 17:06:36 VBASE014.VDF : 7.11.104.123 282112 Bytes 26.09.2013 17:06:37 VBASE015.VDF : 7.11.104.237 359424 Bytes 28.09.2013 17:06:37 VBASE016.VDF : 7.11.105.103 195072 Bytes 02.10.2013 17:06:38 VBASE017.VDF : 7.11.105.243 571904 Bytes 07.10.2013 10:14:35 VBASE018.VDF : 7.11.106.91 185856 Bytes 08.10.2013 14:29:45 VBASE019.VDF : 7.11.106.167 183296 Bytes 09.10.2013 15:43:28 VBASE020.VDF : 7.11.107.5 236544 Bytes 11.10.2013 15:18:09 VBASE021.VDF : 7.11.107.85 178688 Bytes 13.10.2013 10:42:14 VBASE022.VDF : 7.11.107.163 276992 Bytes 15.10.2013 16:58:05 VBASE023.VDF : 7.11.108.15 308224 Bytes 17.10.2013 13:00:36 VBASE024.VDF : 7.11.108.79 190464 Bytes 18.10.2013 11:35:15 VBASE025.VDF : 7.11.108.159 245248 Bytes 20.10.2013 15:45:59 VBASE026.VDF : 7.11.109.128 718848 Bytes 26.10.2013 17:14:50 VBASE027.VDF : 7.11.109.191 340992 Bytes 28.10.2013 16:15:48 VBASE028.VDF : 7.11.110.55 283136 Bytes 30.10.2013 19:55:16 VBASE029.VDF : 7.11.110.177 328192 Bytes 02.11.2013 20:40:56 VBASE030.VDF : 7.11.110.178 2048 Bytes 02.11.2013 20:40:56 VBASE031.VDF : 7.11.110.180 73728 Bytes 02.11.2013 20:40:56 Engineversion : 8.2.12.136 AEVDF.DLL : 8.1.3.4 102774 Bytes 02.10.2013 17:06:47 AESCRIPT.DLL : 8.1.4.162 516478 Bytes 01.11.2013 13:17:49 AESCN.DLL : 8.1.10.4 131446 Bytes 02.10.2013 17:06:47 AESBX.DLL : 8.2.16.26 1245560 Bytes 02.10.2013 17:06:48 AERDL.DLL : 8.2.0.128 688504 Bytes 02.10.2013 17:06:47 AEPACK.DLL : 8.3.3.4 758136 Bytes 16.10.2013 15:19:11 AEOFFICE.DLL : 8.1.2.76 205181 Bytes 02.10.2013 17:06:45 AEHEUR.DLL : 8.1.4.730 6254970 Bytes 01.11.2013 13:17:49 AEHELP.DLL : 8.1.27.6 266617 Bytes 02.10.2013 17:06:41 AEGEN.DLL : 8.1.7.14 446839 Bytes 02.10.2013 17:06:41 AEEXP.DLL : 8.4.1.100 369016 Bytes 01.11.2013 13:17:50 AEEMU.DLL : 8.1.3.2 393587 Bytes 02.10.2013 17:06:40 AECORE.DLL : 8.1.32.0 201081 Bytes 02.10.2013 17:06:40 AEBB.DLL : 8.1.1.4 53619 Bytes 02.10.2013 17:06:39 AVWINLL.DLL : 14.0.0.225 23624 Bytes 07.10.2013 10:14:16 AVPREF.DLL : 14.0.0.225 48712 Bytes 07.10.2013 10:14:45 AVREP.DLL : 14.0.0.225 175688 Bytes 07.10.2013 10:14:46 AVARKT.DLL : 14.0.0.225 257096 Bytes 07.10.2013 10:14:37 AVEVTLOG.DLL : 14.0.0.383 165960 Bytes 07.10.2013 10:14:40 SQLITE3.DLL : 3.7.0.1 394824 Bytes 02.10.2013 17:07:47 AVSMTP.DLL : 14.0.0.225 60488 Bytes 07.10.2013 10:14:48 NETNT.DLL : 14.0.0.225 13384 Bytes 07.10.2013 10:15:14 RCIMAGE.DLL : 14.0.0.225 4786760 Bytes 07.10.2013 10:14:16 RCTEXT.DLL : 14.0.0.225 67144 Bytes 07.10.2013 10:14:16 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Vollständige Systemprüfung Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp Protokollierung.......................: standard Primäre Aktion........................: Interaktiv Sekundäre Aktion......................: Ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Bootsektoren..........................: C:, F:, Durchsuche aktive Programme...........: ein Laufende Programme erweitert..........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: ein Integritätsprüfung von Systemdateien..: aus Prüfe alle Dateien....................: Alle Dateien Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: erweitert Beginn des Suchlaufs: Sonntag, 3. November 2013 11:08 Der Suchlauf über die Bootsektoren wird begonnen: Bootsektor 'HDD0(C  '[INFO] Es wurde kein Virus gefunden! Bootsektor 'HDD1(F '[INFO] Es wurde kein Virus gefunden! Der Suchlauf nach versteckten Objekten wird begonnen. Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'svchost.exe' - '52' Modul(e) wurden durchsucht Durchsuche Prozess 'nvvsvc.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'nvSCPAPISvr.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '89' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '91' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '82' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '151' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '38' Modul(e) wurden durchsucht Durchsuche Prozess 'RtkAudioService64.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVBg64.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '76' Modul(e) wurden durchsucht Durchsuche Prozess 'nvxdsync.exe' - '56' Modul(e) wurden durchsucht Durchsuche Prozess 'nvvsvc.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'spoolsv.exe' - '77' Modul(e) wurden durchsucht Durchsuche Prozess 'taskhost.exe' - '68' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '58' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '63' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '104' Modul(e) wurden durchsucht Durchsuche Prozess 'spd.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'HeciServer.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'IProsetMonitor.exe' - '22' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'SRService.exe' - '44' Modul(e) wurden durchsucht Durchsuche Prozess 'SSUService.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'GoogleUpdate.exe' - '54' Modul(e) wurden durchsucht Durchsuche Prozess 'hamachi-2.exe' - '74' Modul(e) wurden durchsucht Durchsuche Prozess 'LMIGuardianSvc.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'Dwm.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'Explorer.EXE' - '193' Modul(e) wurden durchsucht Durchsuche Prozess 'hamachi-2-ui.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'LMIGuardianSvc.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'SRServer.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'RAVCpl64.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'cfosspeed.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'XBoxStat.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'THPanel.exe' - '39' Modul(e) wurden durchsucht Durchsuche Prozess 'Skype.exe' - '137' Modul(e) wurden durchsucht Durchsuche Prozess 'Steam.exe' - '144' Modul(e) wurden durchsucht Durchsuche Prozess 'Origin.exe' - '124' Modul(e) wurden durchsucht Durchsuche Prozess 'SteelSeriesEngine.exe' - '136' Modul(e) wurden durchsucht Durchsuche Prozess 'net.exe' - '44' Modul(e) wurden durchsucht Durchsuche Prozess 'iusb3mon.exe' - '36' Modul(e) wurden durchsucht Durchsuche Prozess 'XFastUsb.exe' - '44' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '97' Modul(e) wurden durchsucht Durchsuche Prozess 'SRFeature.exe' - '79' Modul(e) wurden durchsucht Durchsuche Prozess 'nvtray.exe' - '51' Modul(e) wurden durchsucht Durchsuche Prozess 'avshadow.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'SteamService.exe' - '51' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchIndexer.exe' - '68' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '60' Modul(e) wurden durchsucht Durchsuche Prozess 'wmpnetwk.exe' - '91' Modul(e) wurden durchsucht Durchsuche Prozess 'WUDFHost.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorIcon.exe' - '82' Modul(e) wurden durchsucht Durchsuche Prozess 'IAStorDataMgrSvc.exe' - '110' Modul(e) wurden durchsucht Durchsuche Prozess 'IntelMeFWService.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'jhi_service.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'LMS.exe' - '63' Modul(e) wurden durchsucht Durchsuche Prozess 'daemonu.exe' - '68' Modul(e) wurden durchsucht Durchsuche Prozess 'eGdpSvc.exe' - '68' Modul(e) wurden durchsucht Durchsuche Prozess 'msiexec.exe' - '69' Modul(e) wurden durchsucht Durchsuche Prozess 'umbrella.exe' - '69' Modul(e) wurden durchsucht Durchsuche Prozess 'Iminent.exe' - '118' Modul(e) wurden durchsucht Durchsuche Prozess 'Iminent.Messengers.exe' - '98' Modul(e) wurden durchsucht Durchsuche Prozess 'avcenter.exe' - '124' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '123' Modul(e) wurden durchsucht Durchsuche Prozess 'vssvc.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchProtocolHost.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchFilterHost.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'firefox.exe' - '115' Modul(e) wurden durchsucht Durchsuche Prozess 'plugin-container.exe' - '79' Modul(e) wurden durchsucht Durchsuche Prozess 'FlashPlayerPlugin_11_9_900_117.exe' - '55' Modul(e) wurden durchsucht Durchsuche Prozess 'FlashPlayerPlugin_11_9_900_117.exe' - '64' Modul(e) wurden durchsucht Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'services.exe' - '36' Modul(e) wurden durchsucht Durchsuche Prozess 'lsass.exe' - '62' Modul(e) wurden durchsucht Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Registry wurde durchsucht ( '1662' Dateien ). Der Suchlauf über die ausgewählten Dateien wird begonnen: Beginne mit der Suche in 'C:\' C:\Users\Basti\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XDNNPJFW\pricepeep_270019_0101DISPLAY[1].exe [0] Archivtyp: NSIS --> ProgramFilesDir/pricepeep.crx [1] Archivtyp: ZIP --> manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden --> ProgramFilesDir/manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden [0] Archivtyp: Runtime Packed --> C:\Users\Basti\AppData\Local\Temp\air5130.exe [1] Archivtyp: NSIS --> ProgramFilesDir/pricepeep.crx [2] Archivtyp: ZIP --> manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden --> ProgramFilesDir/manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden C:\Users\Basti\AppData\Local\Temp\air5130.exe [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A --> C:\Users\Basti\AppData\Local\Temp\air9F71.exe [1] Archivtyp: NSIS --> ProgramFilesDir/pricepeep.crx [2] Archivtyp: ZIP --> manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden --> ProgramFilesDir/manifest.json [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden C:\Users\Basti\AppData\Local\Temp\air9F71.exe [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A Beginne mit der Suche in 'F:\' <Volume> --> F:\Programme\FTBLite\minecraft\bin\minecraft.jar [1] Archivtyp: ZIP --> bas.class [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden F:\Programme\FTBLite\minecraft\bin\minecraft.jar [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ --> F:\Programme\FTBLite neu\minecraft\bin\minecraft.jar [1] Archivtyp: ZIP --> bas.class [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ [WARNUNG] Infizierte Dateien in Archiven können nicht repariert werden F:\Programme\FTBLite neu\minecraft\bin\minecraft.jar [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ --> \\?\F:\Programme\SteamApps\common\Terraria\dotNetFx40_Full_x86_x64.exe [WARNUNG] Die Datei konnte nicht gelesen werden! F:\Programme\SteamApps\common\Terraria\dotNetFx40_Full_x86_x64.exe [WARNUNG] Die Datei konnte nicht gelesen werden! Beginne mit der Desinfektion: F:\Programme\FTBLite neu\minecraft\bin\minecraft.jar [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '5728847a.qua' verschoben! F:\Programme\FTBLite\minecraft\bin\minecraft.jar [FUND] Enthält Erkennungsmuster des Exploits EXP/Java.HLP.GJ [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '4fbfabdd.qua' verschoben! C:\Users\Basti\AppData\Local\Temp\air9F71.exe [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '1decf135.qua' verschoben! C:\Users\Basti\AppData\Local\Temp\air5130.exe [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '7bdbbef7.qua' verschoben! C:\Users\Basti\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XDNNPJFW\pricepeep_270019_0101DISPLAY[1].exe [FUND] Enthält Erkennungsmuster der Adware ADWARE/Adppeeps.A [HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '3e6893d2.qua' verschoben! Ende des Suchlaufs: Sonntag, 3. November 2013 11:34 Benötigte Zeit: 18:38 Minute(n) Der Suchlauf wurde vollständig durchgeführt. 25921 Verzeichnisse wurden überprüft 797391 Dateien wurden geprüft 12 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 5 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 0 Dateien konnten nicht durchsucht werden 797379 Dateien ohne Befall 4693 Archive wurden durchsucht 9 Warnungen 5 Hinweise 598613 Objekte wurden beim Rootkitscan durchsucht 0 Versteckte Objekte wurden gefunden Ich glaube ich hab es jetzt eintfernt, aber kann mir trotzdem jemand ein Programm zur Überprüfung geben? ^^ Habe jetzt zusätzlich AdBlock, NoScript, CookieCrusher und WOT installeirt. Geändert von Basti133 (03.11.2013 um 11:43 Uhr) |
|
03.11.2013, 16:31
| #2 |
| /// the machine /// TB-Ausbilder    | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
03.11.2013, 17:48
| #3 |
| | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Basti (administrator) on BASTI-PC on 03-11-2013 17:44:55
Running from C:\Users\Basti\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) F:\Programme\Steam.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(SteelSeries ApS) F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe
(Windows Net) C:\Users\Basti\AppData\Roaming\Windows Net Data\net.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\SERVER\SRFeature.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cfosspeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKCU\...\Run: [THPanel] - C:\Program Files (x86)\Thunder Master\THPanel.exe [2157352 2013-05-09] (Palit Microsystems Ltd.)
HKCU\...\Run: [ASRock A-Tuning] - [x]
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20686704 2013-07-25] (Skype Technologies S.A.)
HKCU\...\Run: [Steam] - F:\Programme\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-16] (Electronic Arts)
HKCU\...\Run: [SteelSeries Engine] - F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-07-12] (SteelSeries ApS)
HKCU\...\Policies\Explorer: [DisallowRun] 1
MountPoints2: {f9cb46ad-2b7a-11e3-97a0-806e6f6e6963} - D:\ASRSetup.exe
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] - C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2013-10-02] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296 2013-10-01] (LogMeIn Inc.)
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Basti\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung SSD Magician.lnk
ShortcutTarget: Samsung SSD Magician.lnk -> C:\Program Files (x86)\Samsung SSD Magician\Samsung SSD Magician.exe (Samsung Electronics.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\qone8.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
==================== Drivers (Whitelisted) ====================
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2013-10-02] (ASRock Incorporation)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.)
R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [496400 2013-02-26] (Intel Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2013-10-09] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2013-10-02] (FNet Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation)
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-06-25] (SteelSeries Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-03 17:44 - 2013-11-03 17:44 - 01957098 _____ (Farbar) C:\Users\Basti\Desktop\FRST64.exe
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 11:11 - 2013-11-03 11:21 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:05 - 2013-11-03 12:58 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 11:02 - 2013-11-03 12:52 - 00000000 ____D C:\ProgramData\eSafe
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-03 11:01 - 2013-11-03 17:41 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-03 11:01 - 2013-11-03 11:06 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-10-31 19:30 - 2013-11-01 09:12 - 00000000 ____D C:\Users\Basti\Desktop\Musik
2013-10-31 19:30 - 2013-10-31 19:30 - 00000000 ____D C:\Users\Basti\Desktop\Japanisch
2013-10-31 14:29 - 2013-10-31 14:29 - 00000000 ____D C:\Users\Basti\Desktop\Schule und andere langweilige Dinge
2013-10-31 12:22 - 2013-11-03 12:29 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Windows Net Data
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-10-27 18:54 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-10-27 18:54 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-10-27 18:54 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-10-27 18:54 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-10-27 18:54 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-10-27 18:54 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-10-27 18:54 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-10-27 18:54 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-10-27 18:54 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-10-27 18:54 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-10-27 18:54 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-10-27 18:53 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-10-27 18:53 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-23 12:36 - 2013-11-03 17:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-23 12:36 - 2013-11-03 12:02 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-23 12:36 - 2013-11-03 12:02 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-23 12:36 - 2013-11-03 12:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:29 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-23 12:29 - 2013-11-03 11:13 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:55 - 2013-10-18 13:56 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 13:33 - 2013-10-12 13:33 - 00614816 _____ C:\Users\Basti\Downloads\Xbox360_64Eng (1).exe
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-10 23:07 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 23:07 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 23:07 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 23:07 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 23:07 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 22:38 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 22:38 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 22:38 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 22:38 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 22:38 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 22:38 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 22:38 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 22:38 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 22:38 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 22:38 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 22:38 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 22:37 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 22:37 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 22:37 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 22:37 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 22:37 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 22:37 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 22:37 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 22:37 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 22:37 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 22:37 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 22:37 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 22:37 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 22:37 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 22:37 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 17:13 - 2013-10-12 14:05 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-09 21:13 - 2013-10-09 21:13 - 00000000 _____ C:\Users\Basti\Desktop\server.log
2013-10-09 20:57 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:08 - 2013-10-09 15:10 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-11-03 13:44 - 00000019 _____ C:\h2-sta-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:00 - 2013-11-03 13:44 - 01163630 _____ C:\h2-engine.log
2013-10-08 15:00 - 2013-11-03 13:44 - 00001465 _____ C:\h2-engine.cfg.bak
2013-10-08 15:00 - 2013-11-03 13:44 - 00001465 _____ C:\h2-engine.cfg
2013-10-08 15:00 - 2013-11-03 13:44 - 00000443 _____ C:\h2-engine.ini.bak
2013-10-08 15:00 - 2013-11-03 13:44 - 00000443 _____ C:\h2-engine.ini
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:54 - 2013-10-08 14:54 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-10-08 14:54 - 2013-10-08 14:54 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:45 - 2013-11-03 13:44 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:14 - 2013-10-07 19:16 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
2013-10-05 12:41 - 2013-10-31 12:55 - 00000000 ____D C:\Users\Basti\AppData\Roaming\TS3Client
2013-10-05 12:40 - 2013-10-05 12:40 - 00001162 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-10-05 12:40 - 2013-10-05 12:40 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-10-05 12:39 - 2013-10-05 12:40 - 30091160 _____ (TeamSpeak Systems GmbH) C:\Users\Basti\Downloads\TeamSpeak3-Client-win32-3.0.13.exe
2013-10-05 11:55 - 2013-10-10 14:33 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-10-05 11:53 - 2013-10-10 17:13 - 00000000 ____D C:\Users\Basti\AppData\Local\Origin
2013-10-05 11:53 - 2013-10-06 10:42 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Origin
2013-10-05 11:51 - 2013-11-03 13:44 - 00000000 ____D C:\Program Files (x86)\Origin
2013-10-05 11:51 - 2013-10-10 17:13 - 00000000 ____D C:\ProgramData\Origin
2013-10-05 11:51 - 2013-10-10 17:13 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-10-05 11:51 - 2013-10-05 11:51 - 00000979 _____ C:\Users\Public\Desktop\Origin.lnk
2013-10-05 11:49 - 2013-10-05 11:49 - 16952576 _____ (Electronic Arts, Inc.) C:\Users\Basti\Downloads\OriginThinSetup.exe
2013-10-04 23:11 - 2013-10-04 23:11 - 00001398 _____ C:\Users\Basti\Desktop\VTFEdit.lnk
2013-10-04 23:10 - 2013-10-04 23:10 - 00852049 _____ (Neil Jedrzejewski & Ryan Gregg ) C:\Users\Basti\Downloads\vtfedit125-11 (1).exe
2013-10-04 23:02 - 2013-10-04 23:02 - 00852049 _____ (Neil Jedrzejewski & Ryan Gregg ) C:\Users\Basti\Downloads\vtfedit125-11.exe
2013-10-04 23:02 - 2013-10-04 23:02 - 00000000 ____D C:\Program Files (x86)\VTFEdit
2013-10-04 09:14 - 2013-10-04 09:15 - 27805923 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC16.zip
2013-10-04 09:02 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-04 09:02 - 2012-08-23 15:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-04 09:02 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-04 09:02 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-04 09:02 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-04 09:02 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-04 09:02 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-04 09:02 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-04 09:02 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-04 09:02 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-04 09:02 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-04 09:02 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-04 09:02 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-04 09:02 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-04 09:02 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-04 09:02 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-04 09:02 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-04 09:02 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-04 09:02 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-04 09:02 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-04 09:02 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-04 09:02 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-04 09:02 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-04 09:02 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-04 09:02 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-04 09:02 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-04 08:58 - 2013-10-04 09:01 - 61560555 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 256x MC16.zip
2013-10-04 08:58 - 2013-10-04 08:59 - 13303900 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 64x MC16 (1).zip
2013-10-04 08:57 - 2013-10-04 08:57 - 00421267 _____ C:\Users\Basti\Downloads\OptiFine_1.6.4_HD_U_C5 (2).jar
2013-10-04 08:51 - 2012-08-24 19:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-04 08:51 - 2012-08-24 19:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-04 08:51 - 2012-08-24 19:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-04 08:51 - 2012-08-24 19:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-04 08:51 - 2012-08-24 17:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-04 08:51 - 2012-08-24 17:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-04 08:51 - 2012-08-24 17:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-04 08:51 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-04 08:51 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-04 08:49 - 2013-10-10 23:06 - 00000000 ____D C:\Windows\system32\MRT
2013-10-04 08:49 - 2013-10-10 23:05 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-04 08:48 - 2013-04-17 08:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-04 08:48 - 2013-04-17 07:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-04 08:48 - 2011-03-25 04:29 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-04 08:48 - 2011-03-25 04:29 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-04 08:48 - 2011-03-25 04:29 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-04 08:48 - 2011-03-25 04:29 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-04 08:48 - 2011-03-25 04:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-04 08:48 - 2011-03-25 04:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-04 08:48 - 2011-03-25 04:28 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-10-04 08:48 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-10-04 08:48 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-04 08:48 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-10-04 08:48 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-10-04 08:48 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-10-04 08:48 - 2011-03-11 05:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-04 08:47 - 2013-04-10 00:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-04 08:47 - 2013-04-02 23:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-04 08:43 - 2013-10-04 08:43 - 99176917 _____ C:\Windows\SysWOW64\侓Œ
==================== One Month Modified Files and Folders =======
2013-11-03 17:44 - 2013-11-03 17:44 - 01957098 _____ (Farbar) C:\Users\Basti\Desktop\FRST64.exe
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 17:41 - 2013-11-03 11:01 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-03 17:34 - 2013-10-02 16:58 - 01070831 _____ C:\Windows\WindowsUpdate.log
2013-11-03 17:02 - 2013-10-23 12:36 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-03 13:51 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-03 13:51 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-03 13:49 - 2013-10-03 02:53 - 00697658 _____ C:\Windows\system32\perfh007.dat
2013-11-03 13:49 - 2013-10-03 02:53 - 00148452 _____ C:\Windows\system32\perfc007.dat
2013-11-03 13:49 - 2009-07-14 06:13 - 01615906 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-03 13:44 - 2013-10-08 15:02 - 00000019 _____ C:\h2-sta-135-218-492
2013-11-03 13:44 - 2013-10-08 15:00 - 01163630 _____ C:\h2-engine.log
2013-11-03 13:44 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg.bak
2013-11-03 13:44 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg
2013-11-03 13:44 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini.bak
2013-11-03 13:44 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini
2013-11-03 13:44 - 2013-10-08 14:45 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-11-03 13:44 - 2013-10-05 11:51 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-03 13:44 - 2013-10-02 17:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-03 13:44 - 2010-11-21 04:47 - 00008258 _____ C:\Windows\PFRO.log
2013-11-03 13:44 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-03 13:44 - 2009-07-14 05:51 - 00011070 _____ C:\Windows\setupact.log
2013-11-03 13:18 - 2013-10-02 16:58 - 00001421 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:06 - 2013-10-23 12:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-03 12:58 - 2013-11-03 11:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 12:52 - 2013-11-03 11:02 - 00000000 ____D C:\ProgramData\eSafe
2013-11-03 12:48 - 2013-10-02 18:12 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 12:29 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Windows Net Data
2013-11-03 12:29 - 2013-10-02 17:21 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-03 12:02 - 2013-10-23 12:36 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-03 12:02 - 2013-10-23 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-03 12:02 - 2013-10-23 12:36 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-03 11:21 - 2013-11-03 11:11 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:21 - 2013-10-02 18:41 - 00000000 ____D C:\Windows\system32\appmgmt
2013-11-03 11:13 - 2013-10-23 12:29 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:06 - 2013-11-03 11:01 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-02 23:37 - 2013-10-03 11:28 - 00000000 ____D C:\Program Files (x86)\NosTale(DE)
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-11-01 15:13 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti
2013-11-01 10:48 - 2013-10-02 19:55 - 00000000 ____D C:\Users\Basti\Desktop\Bilder
2013-11-01 09:12 - 2013-10-31 19:30 - 00000000 ____D C:\Users\Basti\Desktop\Musik
2013-10-31 21:04 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-31 19:30 - 2013-10-31 19:30 - 00000000 ____D C:\Users\Basti\Desktop\Japanisch
2013-10-31 19:23 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-31 14:29 - 2013-10-31 14:29 - 00000000 ____D C:\Users\Basti\Desktop\Schule und andere langweilige Dinge
2013-10-31 12:55 - 2013-10-05 12:41 - 00000000 ____D C:\Users\Basti\AppData\Roaming\TS3Client
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 12:22 - 2013-10-02 16:58 - 00000000 ___RD C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2013-10-02 17:06 - 00074048 _____ C:\Windows\DirectX.log
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-27 13:22 - 2013-10-02 19:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-10-26 19:04 - 2010-11-21 08:16 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:36 - 2013-10-09 20:57 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-21 16:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:56 - 2013-10-18 13:55 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 14:05 - 2013-10-10 17:13 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-12 13:33 - 2013-10-12 13:33 - 00614816 _____ C:\Users\Basti\Downloads\Xbox360_64Eng (1).exe
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-11 10:17 - 2009-07-14 05:45 - 00276552 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 23:07 - 2013-10-02 17:25 - 01592864 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-10 23:06 - 2013-10-04 08:49 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 23:05 - 2013-10-04 08:49 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-10 17:13 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Basti\AppData\Local\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-10-10 14:33 - 2013-10-05 11:55 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-10-09 21:13 - 2013-10-09 21:13 - 00000000 _____ C:\Users\Basti\Desktop\server.log
2013-10-09 20:57 - 2013-10-02 17:39 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:10 - 2013-10-09 15:08 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-09 14:57 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti\AppData\Local\VirtualStore
2013-10-08 16:02 - 2013-10-02 18:11 - 00000000 ____D C:\ProgramData\Skype
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:54 - 2013-10-08 14:54 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-10-08 14:54 - 2013-10-08 14:54 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:16 - 2013-10-07 19:14 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
2013-10-07 11:15 - 2013-10-03 08:22 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-06 10:42 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Origin
2013-10-05 12:40 - 2013-10-05 12:40 - 00001162 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-10-05 12:40 - 2013-10-05 12:40 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-10-05 12:40 - 2013-10-05 12:39 - 30091160 _____ (TeamSpeak Systems GmbH) C:\Users\Basti\Downloads\TeamSpeak3-Client-win32-3.0.13.exe
2013-10-05 11:51 - 2013-10-05 11:51 - 00000979 _____ C:\Users\Public\Desktop\Origin.lnk
2013-10-05 11:49 - 2013-10-05 11:49 - 16952576 _____ (Electronic Arts, Inc.) C:\Users\Basti\Downloads\OriginThinSetup.exe
2013-10-04 23:11 - 2013-10-04 23:11 - 00001398 _____ C:\Users\Basti\Desktop\VTFEdit.lnk
2013-10-04 23:10 - 2013-10-04 23:10 - 00852049 _____ (Neil Jedrzejewski & Ryan Gregg ) C:\Users\Basti\Downloads\vtfedit125-11 (1).exe
2013-10-04 23:02 - 2013-10-04 23:02 - 00852049 _____ (Neil Jedrzejewski & Ryan Gregg ) C:\Users\Basti\Downloads\vtfedit125-11.exe
2013-10-04 23:02 - 2013-10-04 23:02 - 00000000 ____D C:\Program Files (x86)\VTFEdit
2013-10-04 09:15 - 2013-10-04 09:14 - 27805923 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC16.zip
2013-10-04 09:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-04 09:03 - 2013-10-02 17:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-04 09:01 - 2013-10-04 08:58 - 61560555 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 256x MC16.zip
2013-10-04 08:59 - 2013-10-04 08:58 - 13303900 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 64x MC16 (1).zip
2013-10-04 08:57 - 2013-10-04 08:57 - 00421267 _____ C:\Users\Basti\Downloads\OptiFine_1.6.4_HD_U_C5 (2).jar
2013-10-04 08:45 - 2013-10-02 17:25 - 00058408 _____ C:\Users\Basti\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-04 08:45 - 2013-10-02 16:58 - 00000000 ___RD C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-04 08:43 - 2013-10-04 08:43 - 99176917 _____ C:\Windows\SysWOW64\侓Œ
2013-10-04 08:43 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-04 08:43 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-04 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-04 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-04 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-04 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-04 08:43 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-04 08:42 - 2010-11-21 08:16 - 00000000 ____D C:\Program Files\Windows Journal
Some content of TEMP:
====================
C:\Users\Basti\AppData\Local\Temp\8FA2_minecraftsetup.exe
C:\Users\Basti\AppData\Local\Temp\air7055.exe
C:\Users\Basti\AppData\Local\Temp\air8FA3.exe
C:\Users\Basti\AppData\Local\Temp\air9955.exe
C:\Users\Basti\AppData\Local\Temp\airD3A7.exe
C:\Users\Basti\AppData\Local\Temp\amazonicon_v3.exe
C:\Users\Basti\AppData\Local\Temp\amazoninstallernircmdc.exe
C:\Users\Basti\AppData\Local\Temp\avgnt.exe
C:\Users\Basti\AppData\Local\Temp\COMAP.EXE
C:\Users\Basti\AppData\Local\Temp\fp_pl_pfs_installer-1.exe
C:\Users\Basti\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Basti\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Basti\AppData\Local\Temp\sdapskill.exe
C:\Users\Basti\AppData\Local\Temp\SHSetup.exe
C:\Users\Basti\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Basti\AppData\Local\Temp\x2blapi.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-31 19:49
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013
Ran by Basti at 2013-11-03 17:45:14
Running from C:\Users\Basti\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.1.377)
Adobe AIR (x32 Version: 1.0.4990)
Adobe AIR (x32 Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader 9 (x32 Version: 9.0.0)
ASRock 3TB+ Unlocker v1.1
ASRock App Charger v1.0.5
ASRock RapidStart v1.0.6
ASRock XFast RAM v2.0.28
A-Tuning v1.0.9.1 (x32)
Avira Free Antivirus (x32 Version: 14.0.0.383)
FIFA 14 (x32 Version: 1.0.0.2)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.36702)
Intel(R) Management Engine Components (x32 Version: 9.0.0.1323)
Intel(R) Network Connections 18.2.63.0 (Version: 18.2.63.0)
Intel(R) Rapid Storage Technology (Version: 12.5.0.1066)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 2.0.0.100)
Intel® Trusted Connect Service Client (Version: 1.27.798.1)
Java 7 Update 40 (64-bit) (Version: 7.0.400)
LogMeIn Hamachi (x32 Version: 2.2.0.58)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
Nostale(DE) (x32)
NVIDIA 3D Vision Controller-Treiber 320.08 (Version: 320.08)
NVIDIA 3D Vision Treiber 327.23 (Version: 327.23)
NVIDIA Grafiktreiber 327.23 (Version: 327.23)
NVIDIA Install Application (Version: 2.1002.133.889)
NVIDIA PhysX (x32 Version: 9.13.0325)
NVIDIA PhysX-Systemsoftware 9.13.0325 (Version: 9.13.0325)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2723)
NVIDIA Systemsteuerung 327.23 (Version: 327.23)
NVIDIA Update 1.14.17 (Version: 1.14.17)
NVIDIA Update Components (Version: 1.14.17)
Origin (x32 Version: 9.3.7.2735)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6873)
Saints Row IV (x32)
Samsung SSD Magician (x32 Version: 3.2)
Skype™ 6.7 (x32 Version: 6.7.102)
Splashtop Software Updater (x32 Version: 1.5.6.14)
Splashtop Streamer (x32 Version: 2.4.5.2)
Steam (x32 Version: 1.0.0.0)
SteelSeries Engine (Version: 2.8.59.30483)
Team Fortress 2 (x32)
TeamSpeak 3 Client (x32 Version: 3.0.13)
Terraria (x32)
Thunder Master v1.9 (x32 Version: 1.9.3.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
VC_CRT_x64 (Version: 1.02.0000)
VTFEdit 1.2.5 (x32)
Windows Utils (x32)
WinRAR 5.00 (64-bit) (Version: 5.00.0)
XFast LAN v6.61 (Version: 6.61)
XFastUSB (x32 Version: 3.02.31)
==================== Restore Points =========================
21-10-2013 15:26:15 Geplanter Prüfpunkt
27-10-2013 17:53:50 DirectX wurde installiert
03-11-2013 10:11:17 Installed SpyHunter
03-11-2013 10:20:40 Removed SpyHunter
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {65C18EEB-580D-4625-9DE9-381E3F3E3594} - System32\Tasks\LyricsParty-16-firefoxinstaller => C:\Program Files (x86)\LyricsParty-16\LyricsParty-16-firefoxinstaller.exe
Task: {703B304B-B228-465E-BE22-4E46485061AB} - System32\Tasks\LyricsParty-16-codedownloader => C:\Program Files (x86)\LyricsParty-16\LyricsParty-16-codedownloader.exe
Task: {8F3545AA-470F-41C7-AE0D-48997F6F893D} - System32\Tasks\LyricsParty-16-updater => C:\Program Files (x86)\LyricsParty-16\LyricsParty-16-updater.exe
Task: {95C1856B-9C72-480A-93ED-E4E5BA1A82D2} - System32\Tasks\LyricsParty-16-enabler => C:\Program Files (x86)\LyricsParty-16\LyricsParty-16-enabler.exe
Task: {98E230E1-08C5-4CC3-8BA4-BFE7A76C7ADA} - System32\Tasks\LyricsParty-16-chromeinstaller => C:\Program Files (x86)\LyricsParty-16\LyricsParty-16-chromeinstaller.exe
Task: {A3F02FCE-38E4-4FC1-93F8-BC405212E1D5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-03] (Adobe Systems Incorporated)
Task: {BF11F098-D7D2-4069-A0A1-E7E05DA47C54} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {D673437F-A478-409A-B6C1-4822A91AF0A9} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation)
Task: {DCC41C70-AB90-44C2-9F52-DEEA1E5FC4F7} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2013-07-12 15:57 - 2013-07-12 15:57 - 00665088 _____ () F:\Programme\SteelSeries Engine\SSEngineLib.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00175104 _____ () F:\Programme\SteelSeries Engine\DBUtils.dll
2013-10-18 13:57 - 2013-10-18 13:57 - 00089915 _____ () C:\Users\Basti\AppData\Local\Temp\70aeaca4-098f-4bcc-b0fa-e2544fb40678\CliSecureRT64.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00278528 _____ () F:\Programme\SteelSeries Engine\DriverCommunication.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00139776 _____ () F:\Programme\SteelSeries Engine\ISSPlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00148480 _____ () F:\Programme\SteelSeries Engine\Localization.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00145408 _____ () F:\Programme\SteelSeries Engine\Utilities.dll
2013-01-10 06:46 - 2013-01-10 06:46 - 00047616 _____ () F:\Programme\SteelSeries Engine\SteelSeriesDrivers\x2api.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 09519104 _____ () F:\Programme\SteelSeries Engine\SSEngineWinGui.dll
2013-01-10 06:46 - 2013-01-10 06:46 - 01102336 _____ () F:\Programme\SteelSeries Engine\System.Data.SQLite.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00209408 _____ () F:\Programme\SteelSeries Engine\CustomWPFColorPicker.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00349696 _____ () F:\Programme\SteelSeries Engine\MousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00171008 _____ () F:\Programme\SteelSeries Engine\D3MousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00173568 _____ () F:\Programme\SteelSeries Engine\KKMousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00171008 _____ () F:\Programme\SteelSeries Engine\SRawPlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00307200 _____ () F:\Programme\SteelSeries Engine\MLGSenseiPlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00154624 _____ () F:\Programme\SteelSeries Engine\WoWGoldPlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00170496 _____ () F:\Programme\SteelSeries Engine\GW2MousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00169472 _____ () F:\Programme\SteelSeries Engine\CSGOMousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00169984 _____ () F:\Programme\SteelSeries Engine\DOTA2MousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00157184 _____ () F:\Programme\SteelSeries Engine\WoWWirelessPlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00170496 _____ () F:\Programme\SteelSeries Engine\CODMousePlugin.dll
2013-07-12 15:57 - 2013-07-12 15:57 - 00169984 _____ () F:\Programme\SteelSeries Engine\WoTMousePlugin.dll
2013-10-02 18:08 - 2013-10-02 18:07 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-08-21 13:18 - 2013-10-24 18:45 - 00691200 _____ () F:\Programme\SDL2.dll
2013-09-21 09:35 - 2013-10-30 20:25 - 01123240 _____ () F:\Programme\bin\chromehtml.DLL
2013-09-10 13:20 - 2013-10-23 21:07 - 20625832 _____ () F:\Programme\bin\libcef.dll
2013-06-14 14:49 - 2013-06-15 00:49 - 01100800 _____ () F:\Programme\bin\avcodec-53.dll
2013-06-14 14:49 - 2013-06-15 00:49 - 00124416 _____ () F:\Programme\bin\avutil-51.dll
2013-06-14 14:49 - 2013-06-15 00:49 - 00192000 _____ () F:\Programme\bin\avformat-53.dll
2013-09-21 09:35 - 2013-10-30 20:25 - 00121256 _____ () F:\Programme\bin\audio.dll
2013-06-14 14:49 - 2013-06-15 00:49 - 00071680 _____ () F:\Programme\bin\mssmp3.asi
2013-06-14 14:49 - 2013-06-15 00:49 - 00153088 _____ () F:\Programme\bin\mssvoice.asi
2013-10-05 11:52 - 2013-10-16 16:19 - 00062976 _____ () C:\Program Files (x86)\Origin\tufao.dll
2013-10-02 17:26 - 2013-03-12 12:19 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-11-03 13:06 - 2013-10-26 02:53 - 03368048 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/03/2013 01:46:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:56:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:53:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:50:02 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 11:21:03 AM) (Source: MsiInstaller) (User: Basti-PC)
Description: Product: SpyHunter -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: , location: WiseCustomCall, command: g5
Error: (11/03/2013 08:25:01 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/02/2013 09:42:19 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/01/2013 08:19:00 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/31/2013 07:49:35 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (10/31/2013 07:24:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (11/03/2013 00:52:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/03/2013 00:52:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Microsoft Office Sessions:
=========================
Error: (11/03/2013 01:46:33 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:56:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:53:53 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 00:50:02 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/03/2013 11:21:03 AM) (Source: MsiInstaller)(User: Basti-PC)
Description: Product: SpyHunter -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: , location: WiseCustomCall, command: g5 (NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/03/2013 08:25:01 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/02/2013 09:42:19 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/01/2013 08:19:00 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (10/31/2013 07:49:35 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (10/31/2013 07:24:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 24%
Total physical RAM: 8123.52 MB
Available physical RAM: 6125.52 MB
Total Pagefile: 16245.21 MB
Available Pagefile: 13861 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:103.69 GB) (Free:56.47 GB) NTFS
Drive f: (Volume) (Fixed) (Total:1863.01 GB) (Free:1837.7 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 303BA045)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=104 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=8 GB) - (Type=84)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 8BBCF217)
Partition 1: (Not Active) - (Size=-198626508800) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
04.11.2013, 09:21
| #4 |
| /// the machine /// TB-Ausbilder | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.11.2013, 18:51
| #5 |
| | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comCode:
ATTFilter ComboFix 13-11-03.02 - Basti 04.11.2013 18:46:57.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.49.1031.18.8124.6043 [GMT 1:00]
ausgeführt von:: c:\users\Basti\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Basti\AppData\Local\Temp\70aeaca4-098f-4bcc-b0fa-e2544fb40678\CliSecureRT64.dll
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-10-04 bis 2013-11-04 ))))))))))))))))))))))))))))))
.
.
2013-11-04 17:48 . 2013-11-04 17:48 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-11-04 17:48 . 2013-11-04 17:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-11-04 16:52 . 2009-03-18 16:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2013-11-04 16:52 . 2013-11-04 16:52 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2013-11-03 16:44 . 2013-11-03 16:44 -------- d-----w- C:\FRST
2013-11-03 12:06 . 2013-11-03 12:06 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-11-03 10:11 . 2013-11-03 10:11 -------- d-----w- c:\program files\Enigma Software Group
2013-11-03 10:11 . 2013-11-03 10:21 -------- d-----w- c:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 10:11 . 2013-11-03 10:11 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-11-03 10:02 . 2013-11-03 11:52 -------- d-----w- c:\programdata\eSafe
2013-11-03 10:01 . 2013-11-03 16:41 -------- d-----w- c:\users\Basti\AppData\Roaming\.minecraft
2013-11-03 10:01 . 2013-11-03 10:06 -------- d-----w- c:\program files (x86)\Minecraft
2013-11-01 14:13 . 2013-11-01 14:13 -------- d-----w- c:\users\Basti\openvr
2013-10-31 11:22 . 2013-11-03 11:29 -------- d-----w- c:\users\Basti\AppData\Roaming\Windows Net Data
2013-10-31 11:22 . 2013-10-31 11:22 -------- d-----w- c:\users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 11:22 . 2013-10-31 11:22 -------- d-----w- c:\users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 11:22 . 2013-10-31 11:22 -------- d-----w- c:\users\Basti\ChromeExtensions
2013-10-31 11:22 . 2013-10-31 11:22 -------- d-----w- c:\users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-27 17:53 . 2006-03-31 11:41 3927248 ----a-w- c:\windows\system32\d3dx9_30.dll
2013-10-23 11:36 . 2013-10-23 11:36 -------- d-----w- c:\users\Basti\AppData\Local\Macromedia
2013-10-23 11:36 . 2013-11-03 11:02 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-23 11:36 . 2013-11-03 11:02 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-10-23 11:36 . 2013-10-23 11:36 -------- d-----w- c:\windows\SysWow64\Macromed
2013-10-23 11:36 . 2013-10-23 11:36 -------- d-----w- c:\windows\system32\Macromed
2013-10-23 11:29 . 2013-11-03 10:13 -------- d-----w- c:\users\Basti\AppData\Local\Mozilla
2013-10-18 12:57 . 2013-10-18 12:57 -------- d-----w- c:\users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 12:57 . 2013-10-18 12:57 -------- d-----w- c:\users\Basti\AppData\Roaming\SteelSeries
2013-10-18 12:57 . 2013-10-18 12:57 -------- d-----w- c:\programdata\SteelSeries
2013-10-12 12:32 . 2013-10-12 12:32 -------- d-----w- c:\users\Basti\AppData\Local\ElevatedDiagnostics
2013-10-12 12:20 . 2013-10-12 12:20 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
2013-10-10 21:38 . 2013-07-04 12:50 633856 ----a-w- c:\windows\system32\comctl32.dll
2013-10-10 21:37 . 2013-09-14 01:10 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2013-10-10 16:13 . 2013-10-10 16:13 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2013-10-09 19:57 . 2013-10-23 11:36 -------- d-----w- c:\users\Basti\AppData\Local\Adobe
2013-10-09 14:08 . 2013-10-09 14:10 -------- d-----w- c:\users\Basti\AppData\Roaming\ftblauncher
2013-10-09 14:07 . 2013-10-09 14:07 32320 ----a-w- c:\windows\system32\drivers\FNETTBOH_305.SYS
2013-10-08 13:46 . 2013-10-08 13:46 -------- d-----w- c:\users\Basti\AppData\Local\LogMeIn
2013-10-08 13:46 . 2013-10-08 13:46 -------- d-----w- c:\programdata\LogMeIn
2013-10-08 13:45 . 2013-11-04 17:48 -------- d-----w- c:\users\Basti\AppData\Local\LogMeIn Hamachi
2013-10-07 18:16 . 2013-10-07 18:16 973736 ----a-w- c:\windows\system32\deployJava1.dll
2013-10-07 18:16 . 2013-10-07 18:16 312744 ----a-w- c:\windows\system32\javaws.exe
2013-10-07 18:16 . 2013-10-07 18:16 1095080 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-10-07 18:16 . 2013-10-07 18:16 189352 ----a-w- c:\windows\system32\javaw.exe
2013-10-07 18:16 . 2013-10-07 18:16 189352 ----a-w- c:\windows\system32\java.exe
2013-10-07 18:16 . 2013-10-07 18:16 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2013-10-07 18:16 . 2013-10-07 18:16 -------- d-----w- c:\program files\Java
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-10 22:05 . 2013-10-04 07:49 80541720 ----a-w- c:\windows\system32\MRT.exe
2013-10-07 10:15 . 2013-10-03 07:22 83160 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-10-07 10:15 . 2013-10-02 17:08 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-10-07 10:15 . 2013-10-02 17:08 132600 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-10-07 10:15 . 2013-10-02 17:08 105856 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-10-03 22:17 . 2013-10-03 22:17 81408 ----a-w- c:\windows\system32\icardie.dll
2013-10-03 22:17 . 2013-10-03 22:17 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-10-03 22:17 . 2013-10-03 22:17 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-10-03 22:17 . 2013-10-03 22:17 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-10-03 22:17 . 2013-10-03 22:17 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-10-03 22:17 . 2013-10-03 22:17 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-10-03 22:17 . 2013-10-03 22:17 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-10-03 22:17 . 2013-10-03 22:17 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-10-03 22:17 . 2013-10-03 22:17 441856 ----a-w- c:\windows\system32\html.iec
2013-10-03 22:17 . 2013-10-03 22:17 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-10-03 22:17 . 2013-10-03 22:17 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-10-03 22:17 . 2013-10-03 22:17 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-10-03 22:17 . 2013-10-03 22:17 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-10-03 22:17 . 2013-10-03 22:17 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-10-03 22:17 . 2013-10-03 22:17 216064 ----a-w- c:\windows\system32\msls31.dll
2013-10-03 22:17 . 2013-10-03 22:17 197120 ----a-w- c:\windows\system32\msrating.dll
2013-10-03 22:17 . 2013-10-03 22:17 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-10-03 22:17 . 2013-10-03 22:17 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-10-03 22:17 . 2013-10-03 22:17 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-10-03 22:17 . 2013-10-03 22:17 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-10-03 22:17 . 2013-10-03 22:17 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-10-03 22:17 . 2013-10-03 22:17 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-10-03 22:17 . 2013-10-03 22:17 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-10-03 22:17 . 2013-10-03 22:17 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-10-03 22:17 . 2013-10-03 22:17 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-10-03 22:17 . 2013-10-03 22:17 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-10-03 22:17 . 2013-10-03 22:17 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-10-03 22:17 . 2013-10-03 22:17 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-10-03 22:17 . 2013-10-03 22:17 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-10-03 22:17 . 2013-10-03 22:17 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-10-03 22:17 . 2013-10-03 22:17 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-10-03 22:17 . 2013-10-03 22:17 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-10-03 22:17 . 2013-10-03 22:17 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-10-03 22:17 . 2013-10-03 22:17 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-10-03 22:17 . 2013-10-03 22:17 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-10-03 22:17 . 2013-10-03 22:17 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-10-03 22:17 . 2013-10-03 22:17 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-10-03 22:17 . 2013-10-03 22:17 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-10-03 22:17 . 2013-10-03 22:17 235008 ----a-w- c:\windows\system32\url.dll
2013-10-03 22:17 . 2013-10-03 22:17 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-10-03 22:17 . 2013-10-03 22:17 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-10-03 22:17 . 2013-10-03 22:17 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-10-03 22:17 . 2013-10-03 22:17 149504 ----a-w- c:\windows\system32\occache.dll
2013-10-03 22:17 . 2013-10-03 22:17 144896 ----a-w- c:\windows\system32\wextract.exe
2013-10-03 22:17 . 2013-10-03 22:17 13824 ----a-w- c:\windows\system32\mshta.exe
2013-10-03 22:17 . 2013-10-03 22:17 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-10-03 22:17 . 2013-10-03 22:17 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-10-03 22:17 . 2013-10-03 22:17 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-10-03 22:17 . 2013-10-03 22:17 102912 ----a-w- c:\windows\system32\inseng.dll
2013-10-03 22:15 . 2013-10-03 22:15 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-10-03 22:15 . 2013-10-03 22:15 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-10-03 22:15 . 2013-10-03 22:15 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-10-03 22:15 . 2013-10-03 22:15 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-10-03 22:15 . 2013-10-03 22:15 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-10-03 22:15 . 2013-10-03 22:15 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-10-03 22:15 . 2013-10-03 22:15 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-10-03 22:15 . 2013-10-03 22:15 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-10-03 22:15 . 2013-10-03 22:15 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-10-03 22:15 . 2013-10-03 22:15 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-10-03 22:15 . 2013-10-03 22:15 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-10-03 22:15 . 2013-10-03 22:15 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-10-03 22:15 . 2013-10-03 22:15 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-10-03 22:15 . 2013-10-03 22:15 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-10-03 22:15 . 2013-10-03 22:15 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-03 22:15 . 2013-10-03 22:15 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-10-03 22:15 . 2013-10-03 22:15 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-10-03 22:15 . 2013-10-03 22:15 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2013-10-03 22:15 . 2013-10-03 22:15 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2013-10-03 22:15 . 2013-10-03 22:15 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
2013-10-03 22:15 . 2013-10-03 22:15 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
2013-10-03 22:15 . 2013-10-03 22:15 1988096 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2013-10-03 22:15 . 2013-10-03 22:15 194560 ----a-w- c:\windows\system32\d3d10_1.dll
2013-10-03 22:15 . 2013-10-03 22:15 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2013-10-03 22:15 . 2013-10-03 22:15 1682432 ----a-w- c:\windows\system32\XpsPrint.dll
2013-10-03 22:15 . 2013-10-03 22:15 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2013-10-03 22:15 . 2013-10-03 22:15 1238528 ----a-w- c:\windows\system32\d3d10.dll
2013-10-03 22:15 . 2013-10-03 22:15 1175552 ----a-w- c:\windows\system32\FntCache.dll
2013-10-03 22:15 . 2013-10-03 22:15 1158144 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2013-10-03 22:15 . 2013-10-03 22:15 1080832 ----a-w- c:\windows\SysWow64\d3d10.dll
2013-10-03 22:15 . 2013-10-03 22:15 10752 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"THPanel"="c:\program files (x86)\Thunder Master\THPanel.exe" [2013-05-09 2157352]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-07-25 20686704]
"Steam"="f:\programme\Steam.exe" [2013-10-30 1820584]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2013-10-16 3561816]
"SteelSeries Engine"="f:\programme\SteelSeries Engine\SteelSeriesEngine.exe" [2013-07-12 242688]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-03-06 291128]
"XFastUSB"="c:\program files (x86)\XFastUSB\XFastUsb.exe" [2013-10-02 5021448]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-10-07 681032]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-10-31 2349392]
.
c:\users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
net.lnk - c:\users\Basti\AppData\Roaming\Windows Net Data\net.exe [2013-10-31 709120]
Samsung SSD Magician.lnk - c:\program files (x86)\Samsung SSD Magician\Samsung SSD Magician.exe /AUTOHIDE [2013-10-2 1507328]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AsrDrv101;AsrDrv101;c:\windows\SysWOW64\Drivers\AsrDrv101.sys;c:\windows\SysWOW64\Drivers\AsrDrv101.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 FNETTBOH_305;FNETTBOH_305;c:\windows\system32\drivers\FNETTBOH_305.SYS;c:\windows\SYSNATIVE\drivers\FNETTBOH_305.SYS [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R4 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys;c:\windows\SYSNATIVE\DRIVERS\AsrRamDisk.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS;c:\windows\SYSNATIVE\drivers\FNETURPX.SYS [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe;c:\program files (x86)\Splashtop\Splashtop Remote\SERVER\SRService.exe [x]
S2 SSUService;Splashtop Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe;c:\program files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 AsrVDrive;AsrVDrive;c:\windows\system32\DRIVERS\AsrVDrive.sys;c:\windows\SYSNATIVE\DRIVERS\AsrVDrive.sys [x]
S3 busenum;SteelBusSvc;c:\windows\system32\DRIVERS\SteelBus64.sys;c:\windows\SYSNATIVE\DRIVERS\SteelBus64.sys [x]
S3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 SAlphamHid;SteelHIDSvc;c:\windows\system32\DRIVERS\SAlpham64.sys;c:\windows\SYSNATIVE\DRIVERS\SAlpham64.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-11-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-23 11:02]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-29 13513288]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-03-22 36352]
"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2011-10-19 1441152]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mDefault_Page_URL = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
mStart Page = hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A
mLocal Page = c:\windows\SysWOW64\blank.htm
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.de/
FF - ExtSQL: 2013-11-03 13:49; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-11-03 13:49; jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack; c:\users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi
FF - ExtSQL: 2013-11-03 13:49; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-ASRock A-Tuning - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-11-04 18:49:24
ComboFix-quarantined-files.txt 2013-11-04 17:49
.
Vor Suchlauf: 11 Verzeichnis(se), 60.279.586.816 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 61.165.326.336 Bytes frei
.
- - End Of File - - 51D7CA6E784EFF295C7341CD7540532E
A36C5E4F47E84449FF07ED3517B43A31
|
|
05.11.2013, 12:45
| #6 |
| /// the machine /// TB-Ausbilder | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com |
|
05.11.2013, 17:34
| #7 |
| | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comCode:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.11.05.04 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16721 Basti :: BASTI-PC [Administrator] 05.11.2013 17:01:42 mbam-log-2013-11-05 (17-01-42).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 225231 Laufzeit: 1 Minute(n), 18 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 4 HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\qone8Software (PUP.Optional.Qone8.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo (PUP.Optional.Elex.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 2 HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Default_Page_URL (Hijack.StartPage) -> Bösartig: (hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A) Gut: (hxxp://www.google.com) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bösartig: (hxxp://start.qone8.com/?type=hp&ts=1383472928&from=air&uid=SamsungXSSDX840XSeries_S19HNEBD500168A) Gut: (hxxp://www.google.com) -> Erfolgreich ersetzt und in Quarantäne gestellt. Infizierte Verzeichnisse: 2 C:\ProgramData\eSafe (PUP.Optional.Esafe.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\eSafe\log (PUP.Optional.Esafe.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 5 C:\Users\Basti\Downloads\Xbox360_64Eng (1).exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\eSafe\eDelayinfo.edb (PUP.Optional.Esafe.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\eSafe\log\eGdpSvc.LOG (PUP.Optional.Esafe.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\qone8.xml (PUP.Optional.Qone8.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter # AdwCleaner v3.011 - Bericht erstellt am 05/11/2013 um 17:05:55
# Updated 03/11/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Basti - BASTI-PC
# Gestartet von : C:\Users\Basti\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : splashtopremoteservice
Dienst Gelöscht : SSUService
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Splashtop
Ordner Gelöscht : C:\Program Files (x86)\Splashtop
Ordner Gelöscht : C:\Users\Basti\AppData\Roaming\Windows Net Data
Datei Gelöscht : C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
***** [ Verknüpfungen ] *****
Verknüpfung Desinfiziert : C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Verknüpfung Desinfiziert : C:\Users\Basti\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gelöscht : HKCU\Software\Splashtop Inc.
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\Software\Splashtop Inc.
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B7C5EA94-B96A-41F5-BE95-25D78B486678}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Splashtop Software Updater
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\49AE5C7BA69B5F14EB59527DB8846687
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\49AE5C7BA69B5F14EB59527DB8846687
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16720
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v25.0 (de)
[ Datei : C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [12153 octets] - [05/11/2013 17:05:28]
AdwCleaner[S0].txt - [11309 octets] - [05/11/2013 17:05:55]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11370 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Ultimate x64
Ran by Basti on 05.11.2013 at 17:08:42,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 05.11.2013 at 17:11:36,24
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Basti (administrator) on BASTI-PC on 05-11-2013 17:31:56
Running from C:\Users\Basti\Desktop\Ordner\Computerkram
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) F:\Programme\Steam.exe
(SteelSeries ApS) F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cfosspeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKCU\...\Run: [THPanel] - C:\Program Files (x86)\Thunder Master\THPanel.exe [2157352 2013-05-09] (Palit Microsystems Ltd.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20686704 2013-07-25] (Skype Technologies S.A.)
HKCU\...\Run: [Steam] - F:\Programme\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-16] (Electronic Arts)
HKCU\...\Run: [SteelSeries Engine] - F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-07-12] (SteelSeries ApS)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] - C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2013-10-02] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2349392 2013-10-31] (LogMeIn Inc.)
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung SSD Magician.lnk
ShortcutTarget: Samsung SSD Magician.lnk -> C:\Program Files (x86)\Samsung SSD Magician\Samsung SSD Magician.exe (Samsung Electronics.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
==================== Drivers (Whitelisted) ====================
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2013-10-02] (ASRock Incorporation)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.)
R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [496400 2013-02-26] (Intel Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2013-10-09] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2013-10-02] (FNet Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation)
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-06-25] (SteelSeries Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-05 17:11 - 2013-11-05 17:11 - 00000621 _____ C:\Users\Basti\Desktop\JRT.txt
2013-11-05 17:08 - 2013-11-05 17:08 - 00000000 ____D C:\Windows\ERUNT
2013-11-05 17:05 - 2013-11-05 17:05 - 01073258 _____ C:\Users\Basti\Downloads\adwcleaner.exe
2013-11-05 17:05 - 2013-11-05 17:05 - 00000000 ____D C:\AdwCleaner
2013-11-05 16:59 - 2013-11-05 16:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Basti\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-05 16:59 - 2013-11-05 16:59 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-05 16:59 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-05 16:56 - 2013-11-05 16:57 - 00000000 ____D C:\Users\Basti\Desktop\Ordner
2013-11-05 06:53 - 2013-11-05 06:53 - 00000206 _____ C:\Users\Basti\Desktop\Hitman Absolution.url
2013-11-04 20:10 - 2008-05-15 02:32 - 00000000 ____D C:\Users\Basti\Downloads\Data
2013-11-04 20:10 - 2008-05-15 02:32 - 00000000 ____D C:\Users\Basti\Downloads\App
2013-11-04 18:49 - 2013-11-04 18:49 - 00029906 _____ C:\ComboFix.txt
2013-11-04 18:46 - 2013-11-04 18:49 - 00000000 ____D C:\Qoobox
2013-11-04 18:46 - 2013-11-04 18:48 - 00000000 ____D C:\Windows\erdnt
2013-11-04 18:46 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-11-04 18:46 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-11-04 18:46 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-11-04 18:45 - 2013-11-04 18:45 - 05143677 ____R (Swearware) C:\Users\Basti\Downloads\ComboFix.exe
2013-11-04 17:52 - 2013-11-04 17:52 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-04 17:52 - 2009-03-18 17:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-11-04 17:51 - 2013-11-04 17:51 - 05877760 _____ C:\hamachi-update
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 11:11 - 2013-11-03 11:21 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:05 - 2013-11-03 12:58 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-03 11:01 - 2013-11-04 21:15 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-03 11:01 - 2013-11-03 11:06 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-10-27 18:54 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-10-27 18:54 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-10-27 18:54 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-10-27 18:54 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-10-27 18:54 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-10-27 18:54 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-10-27 18:54 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-10-27 18:54 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-10-27 18:54 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-10-27 18:54 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-10-27 18:54 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-10-27 18:53 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-10-27 18:53 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-23 12:36 - 2013-11-05 17:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-23 12:36 - 2013-11-03 12:02 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-23 12:36 - 2013-11-03 12:02 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-23 12:36 - 2013-11-03 12:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:29 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-23 12:29 - 2013-11-03 11:13 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:55 - 2013-10-18 13:56 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-10 23:07 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 23:07 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 23:07 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 23:07 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 23:07 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 22:38 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 22:38 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 22:38 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 22:38 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 22:38 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 22:38 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 22:38 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 22:38 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 22:38 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 22:38 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 22:38 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 22:37 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 22:37 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 22:37 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 22:37 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 22:37 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 22:37 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 22:37 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 22:37 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 22:37 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 22:37 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 22:37 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 22:37 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 22:37 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 22:37 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 17:13 - 2013-10-12 14:05 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-09 20:57 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:08 - 2013-10-09 15:10 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-11-04 17:52 - 00000019 _____ C:\h2-sta-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:00 - 2013-11-04 17:52 - 01322019 _____ C:\h2-engine.log
2013-10-08 15:00 - 2013-11-04 17:52 - 00001465 _____ C:\h2-engine.cfg.bak
2013-10-08 15:00 - 2013-11-04 17:52 - 00001465 _____ C:\h2-engine.cfg
2013-10-08 15:00 - 2013-11-04 17:52 - 00000443 _____ C:\h2-engine.ini.bak
2013-10-08 15:00 - 2013-11-04 17:52 - 00000443 _____ C:\h2-engine.ini
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:54 - 2013-11-04 17:52 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:45 - 2013-11-05 17:06 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:14 - 2013-10-07 19:16 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
==================== One Month Modified Files and Folders =======
2013-11-05 17:13 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-05 17:13 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-05 17:11 - 2013-11-05 17:11 - 00000621 _____ C:\Users\Basti\Desktop\JRT.txt
2013-11-05 17:11 - 2013-10-03 02:53 - 00697658 _____ C:\Windows\system32\perfh007.dat
2013-11-05 17:11 - 2013-10-03 02:53 - 00148452 _____ C:\Windows\system32\perfc007.dat
2013-11-05 17:11 - 2009-07-14 06:13 - 01615906 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-05 17:08 - 2013-11-05 17:08 - 00000000 ____D C:\Windows\ERUNT
2013-11-05 17:06 - 2013-10-08 14:45 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-11-05 17:06 - 2013-10-05 11:51 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-05 17:06 - 2013-10-02 17:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-05 17:06 - 2013-10-02 16:58 - 01155477 _____ C:\Windows\WindowsUpdate.log
2013-11-05 17:06 - 2010-11-21 04:47 - 00010490 _____ C:\Windows\PFRO.log
2013-11-05 17:06 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-05 17:06 - 2009-07-14 05:51 - 00011294 _____ C:\Windows\setupact.log
2013-11-05 17:05 - 2013-11-05 17:05 - 01073258 _____ C:\Users\Basti\Downloads\adwcleaner.exe
2013-11-05 17:05 - 2013-11-05 17:05 - 00000000 ____D C:\AdwCleaner
2013-11-05 17:05 - 2013-10-02 16:58 - 00000000 ___RD C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-05 17:02 - 2013-10-23 12:36 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-05 16:59 - 2013-11-05 16:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Basti\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-05 16:59 - 2013-11-05 16:59 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-05 16:57 - 2013-11-05 16:56 - 00000000 ____D C:\Users\Basti\Desktop\Ordner
2013-11-05 14:46 - 2013-10-02 18:12 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2013-11-05 06:53 - 2013-11-05 06:53 - 00000206 _____ C:\Users\Basti\Desktop\Hitman Absolution.url
2013-11-05 06:53 - 2013-10-02 19:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-04 21:18 - 2013-10-03 11:28 - 00000000 ____D C:\Program Files (x86)\NosTale(DE)
2013-11-04 21:15 - 2013-11-03 11:01 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-04 18:49 - 2013-11-04 18:49 - 00029906 _____ C:\ComboFix.txt
2013-11-04 18:49 - 2013-11-04 18:46 - 00000000 ____D C:\Qoobox
2013-11-04 18:48 - 2013-11-04 18:46 - 00000000 ____D C:\Windows\erdnt
2013-11-04 18:48 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-04 18:45 - 2013-11-04 18:45 - 05143677 ____R (Swearware) C:\Users\Basti\Downloads\ComboFix.exe
2013-11-04 17:52 - 2013-11-04 17:52 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-04 17:52 - 2013-10-08 15:02 - 00000019 _____ C:\h2-sta-135-218-492
2013-11-04 17:52 - 2013-10-08 15:00 - 01322019 _____ C:\h2-engine.log
2013-11-04 17:52 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg.bak
2013-11-04 17:52 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg
2013-11-04 17:52 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini.bak
2013-11-04 17:52 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini
2013-11-04 17:52 - 2013-10-08 14:54 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-11-04 17:51 - 2013-11-04 17:51 - 05877760 _____ C:\hamachi-update
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 13:18 - 2013-10-02 16:58 - 00001421 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:06 - 2013-10-23 12:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-03 12:58 - 2013-11-03 11:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 12:29 - 2013-10-02 17:21 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-03 12:02 - 2013-10-23 12:36 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-03 12:02 - 2013-10-23 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-03 12:02 - 2013-10-23 12:36 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-03 11:21 - 2013-11-03 11:11 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:21 - 2013-10-02 18:41 - 00000000 ____D C:\Windows\system32\appmgmt
2013-11-03 11:13 - 2013-10-23 12:29 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:06 - 2013-11-03 11:01 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-11-01 15:13 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti
2013-10-31 21:04 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-31 19:23 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-31 12:55 - 2013-10-05 12:41 - 00000000 ____D C:\Users\Basti\AppData\Roaming\TS3Client
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2013-10-02 17:06 - 00074048 _____ C:\Windows\DirectX.log
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-26 19:04 - 2010-11-21 08:16 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:36 - 2013-10-09 20:57 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-21 16:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:56 - 2013-10-18 13:55 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 14:05 - 2013-10-10 17:13 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-11 10:17 - 2009-07-14 05:45 - 00276552 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 23:07 - 2013-10-02 17:25 - 01592864 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-10 23:06 - 2013-10-04 08:49 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 23:05 - 2013-10-04 08:49 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-10 17:13 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Basti\AppData\Local\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-10-10 14:33 - 2013-10-05 11:55 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-10-09 20:57 - 2013-10-02 17:39 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:10 - 2013-10-09 15:08 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-09 14:57 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti\AppData\Local\VirtualStore
2013-10-08 16:02 - 2013-10-02 18:11 - 00000000 ____D C:\ProgramData\Skype
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:16 - 2013-10-07 19:14 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
2013-10-07 11:15 - 2013-10-03 08:22 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-06 10:42 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Origin
Some content of TEMP:
====================
C:\Users\Basti\AppData\Local\Temp\avgnt.exe
C:\Users\Basti\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-31 19:49
==================== End Of Log ============================
--- --- --- Bei einem hat sich Avira gemeldet und etwas daran gehindert, dass man was an der Registry verändert, weiß aber leider nichtmehr welches Programm das war. :/ Geändert von Basti133 (05.11.2013 um 17:41 Uhr) |
|
06.11.2013, 11:50
| #8 |
| /// the machine /// TB-Ausbilder | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.11.2013, 20:00
| #9 |
| | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comCode:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=0f741baafec12e4f924b382f8815318c
# engine=15781
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-06 05:58:20
# local_time=2013-11-06 06:58:20 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 94 13574 3027295 6364 0
# compatibility_mode=5893 16776574 100 94 2888110 135390550 0 0
# scanned=100
# found=0
# cleaned=0
# scan_time=88
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=0f741baafec12e4f924b382f8815318c
# engine=15781
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-06 06:20:41
# local_time=2013-11-06 07:20:41 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 94 14915 3028636 7705 0
# compatibility_mode=5893 16776574 100 94 2889451 135391891 0 0
# scanned=154713
# found=1
# cleaned=0
# scan_time=1254
sh=9D043FA6F292CE84D9D376A59BEDD5074614035B ft=1 fh=3a6167d30ae80f8a vn="probably unknown NewHeur_PE virus" ac=I fn="C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.74 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Adobe Flash Player 11.9.900.117 Adobe Reader 9 Adobe Reader out of Date! Mozilla Firefox (25.0) ````````Process Check: objlist.exe by Laurent```````` Avira Antivir avgnt.exe Avira Antivir avguard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013
Ran by Basti (administrator) on BASTI-PC on 06-11-2013 19:59:07
Running from C:\Users\Basti\Desktop\Ordner\Computerkram
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\system32\IProsetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(Valve Corporation) F:\Programme\Steam.exe
(SteelSeries ApS) F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Re-Logic) F:\Programme\steamapps\common\Terraria\Terraria.exe
(Valve Corporation) F:\Programme\GameOverlayUI.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13513288 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cfosspeed.exe [1441152 2011-10-19] (cFos Software GmbH)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKCU\...\Run: [THPanel] - C:\Program Files (x86)\Thunder Master\THPanel.exe [2157352 2013-05-09] (Palit Microsystems Ltd.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20686704 2013-07-25] (Skype Technologies S.A.)
HKCU\...\Run: [Steam] - F:\Programme\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3561816 2013-10-16] (Electronic Arts)
HKCU\...\Run: [SteelSeries Engine] - F:\Programme\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-07-12] (SteelSeries ApS)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [XFastUSB] - C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2013-10-02] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2349392 2013-10-31] (LogMeIn Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-23] (Apple Inc.)
Startup: C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Samsung SSD Magician.lnk
ShortcutTarget: Samsung SSD Magician.lnk -> C:\Program Files (x86)\Samsung SSD Magician\Samsung SSD Magician.exe (Samsung Electronics.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: info - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\info@convert2mp3.net.xpi
FF Extension: jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Basti\AppData\Roaming\Mozilla\Firefox\Profiles\t2gtr1bv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
==================== Drivers (Whitelisted) ====================
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2013-10-02] (ASRock Incorporation)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.)
R3 AsrVDrive; C:\Windows\System32\DRIVERS\AsrVDrive.sys [23048 2011-01-26] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [496400 2013-02-26] (Intel Corporation)
R3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2013-10-09] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2013-10-02] (FNet Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation)
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-06-25] (SteelSeries Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-06 18:53 - 2013-11-06 18:53 - 02347384 _____ (ESET) C:\Users\Basti\Downloads\esetsmartinstaller_enu.exe
2013-11-05 19:07 - 2013-11-05 19:08 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Users\Basti\AppData\Local\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Users\Basti\AppData\Local\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\iTunes
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\iPod
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\Bonjour
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-11-05 19:07 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2013-11-05 19:04 - 2013-11-05 19:06 - 100422480 _____ (Apple Inc.) C:\Users\Basti\Downloads\iTunes64Setup.exe
2013-11-05 17:08 - 2013-11-05 17:08 - 00000000 ____D C:\Windows\ERUNT
2013-11-05 17:05 - 2013-11-05 17:05 - 01073258 _____ C:\Users\Basti\Downloads\adwcleaner.exe
2013-11-05 17:05 - 2013-11-05 17:05 - 00000000 ____D C:\AdwCleaner
2013-11-05 16:59 - 2013-11-05 16:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Basti\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-05 16:59 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-05 16:56 - 2013-11-06 19:59 - 00000000 ____D C:\Users\Basti\Desktop\Ordner
2013-11-05 06:53 - 2013-11-05 06:53 - 00000206 _____ C:\Users\Basti\Desktop\Hitman Absolution.url
2013-11-04 20:10 - 2008-05-15 02:32 - 00000000 ____D C:\Users\Basti\Downloads\Data
2013-11-04 20:10 - 2008-05-15 02:32 - 00000000 ____D C:\Users\Basti\Downloads\App
2013-11-04 18:49 - 2013-11-04 18:49 - 00029906 _____ C:\ComboFix.txt
2013-11-04 18:46 - 2013-11-04 18:49 - 00000000 ____D C:\Qoobox
2013-11-04 18:46 - 2013-11-04 18:48 - 00000000 ____D C:\Windows\erdnt
2013-11-04 18:46 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-11-04 18:46 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-11-04 18:46 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-11-04 18:46 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-11-04 18:45 - 2013-11-04 18:45 - 05143677 ____R (Swearware) C:\Users\Basti\Downloads\ComboFix.exe
2013-11-04 17:52 - 2013-11-04 17:52 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-04 17:52 - 2009-03-18 17:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-11-04 17:51 - 2013-11-04 17:51 - 05877760 _____ C:\hamachi-update
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 11:11 - 2013-11-03 11:21 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:05 - 2013-11-03 12:58 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-03 11:01 - 2013-11-06 18:05 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-03 11:01 - 2013-11-03 11:06 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-10-27 18:54 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-10-27 18:54 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-10-27 18:54 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-10-27 18:54 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-10-27 18:54 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-10-27 18:54 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-10-27 18:54 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-10-27 18:54 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-10-27 18:54 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-10-27 18:54 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-10-27 18:54 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-10-27 18:54 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-10-27 18:54 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-10-27 18:54 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-10-27 18:54 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-10-27 18:54 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-10-27 18:54 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-10-27 18:54 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-10-27 18:54 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-10-27 18:54 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-10-27 18:54 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-10-27 18:54 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-10-27 18:54 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-10-27 18:54 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-10-27 18:54 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-10-27 18:54 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-10-27 18:54 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-10-27 18:54 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-10-27 18:54 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-10-27 18:54 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-10-27 18:54 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-10-27 18:53 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-10-27 18:53 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-10-27 18:53 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-10-27 18:53 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-10-27 18:53 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-10-27 18:53 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-10-27 18:53 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-10-27 18:53 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-23 12:36 - 2013-11-06 19:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-23 12:36 - 2013-11-03 12:02 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-23 12:36 - 2013-11-03 12:02 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-23 12:36 - 2013-11-03 12:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:29 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-23 12:29 - 2013-11-03 11:13 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:55 - 2013-10-18 13:56 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-10 23:07 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 23:07 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 23:07 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 23:07 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 23:07 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 23:07 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 23:07 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 23:07 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 23:07 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-10 22:38 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 22:38 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-10-10 22:38 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 22:38 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 22:38 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 22:38 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 22:38 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 22:38 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 22:38 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 22:38 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 22:38 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 22:38 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 22:38 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 22:38 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 22:38 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 22:38 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 22:38 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 22:37 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 22:37 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 22:37 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 22:37 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 22:37 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 22:37 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 22:37 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 22:37 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 22:37 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 22:37 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 22:37 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 22:37 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 22:37 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 22:37 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 22:37 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 22:37 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 22:37 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 22:37 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 22:37 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 17:13 - 2013-10-12 14:05 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-09 20:57 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:08 - 2013-10-09 15:10 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-11-04 17:52 - 00000019 _____ C:\h2-sta-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:00 - 2013-11-04 17:52 - 01322019 _____ C:\h2-engine.log
2013-10-08 15:00 - 2013-11-04 17:52 - 00001465 _____ C:\h2-engine.cfg.bak
2013-10-08 15:00 - 2013-11-04 17:52 - 00001465 _____ C:\h2-engine.cfg
2013-10-08 15:00 - 2013-11-04 17:52 - 00000443 _____ C:\h2-engine.ini.bak
2013-10-08 15:00 - 2013-11-04 17:52 - 00000443 _____ C:\h2-engine.ini
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:00 - 2013-10-08 15:01 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:54 - 2013-11-04 17:52 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:45 - 2013-11-06 16:11 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:14 - 2013-10-07 19:16 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
==================== One Month Modified Files and Folders =======
2013-11-06 19:59 - 2013-11-05 16:56 - 00000000 ____D C:\Users\Basti\Desktop\Ordner
2013-11-06 19:49 - 2013-10-02 16:58 - 01192152 _____ C:\Windows\WindowsUpdate.log
2013-11-06 19:02 - 2013-10-23 12:36 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-06 18:56 - 2013-10-03 02:53 - 00697658 _____ C:\Windows\system32\perfh007.dat
2013-11-06 18:56 - 2013-10-03 02:53 - 00148452 _____ C:\Windows\system32\perfc007.dat
2013-11-06 18:56 - 2009-07-14 06:13 - 01615906 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-06 18:53 - 2013-11-06 18:53 - 02347384 _____ (ESET) C:\Users\Basti\Downloads\esetsmartinstaller_enu.exe
2013-11-06 18:06 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-06 18:06 - 2009-07-14 05:45 - 00025840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-06 18:05 - 2013-11-03 11:01 - 00000000 ____D C:\Users\Basti\AppData\Roaming\.minecraft
2013-11-06 17:30 - 2013-10-02 18:12 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Skype
2013-11-06 16:30 - 2013-10-05 11:51 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-06 16:30 - 2013-10-03 11:28 - 00000000 ____D C:\Program Files (x86)\NosTale(DE)
2013-11-06 16:11 - 2013-10-08 14:45 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn Hamachi
2013-11-06 16:11 - 2013-10-02 17:08 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-06 16:11 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-06 16:11 - 2009-07-14 05:51 - 00011350 _____ C:\Windows\setupact.log
2013-11-05 19:08 - 2013-11-05 19:07 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Users\Basti\AppData\Local\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Users\Basti\AppData\Local\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\Apple Computer
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\iTunes
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\iPod
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files\Bonjour
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-11-05 19:07 - 2013-11-05 19:07 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-11-05 19:06 - 2013-11-05 19:04 - 100422480 _____ (Apple Inc.) C:\Users\Basti\Downloads\iTunes64Setup.exe
2013-11-05 17:08 - 2013-11-05 17:08 - 00000000 ____D C:\Windows\ERUNT
2013-11-05 17:06 - 2010-11-21 04:47 - 00010490 _____ C:\Windows\PFRO.log
2013-11-05 17:05 - 2013-11-05 17:05 - 01073258 _____ C:\Users\Basti\Downloads\adwcleaner.exe
2013-11-05 17:05 - 2013-11-05 17:05 - 00000000 ____D C:\AdwCleaner
2013-11-05 17:05 - 2013-10-02 16:58 - 00000000 ___RD C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-05 16:59 - 2013-11-05 16:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Basti\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-05 16:59 - 2013-11-05 16:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-05 06:53 - 2013-11-05 06:53 - 00000206 _____ C:\Users\Basti\Desktop\Hitman Absolution.url
2013-11-05 06:53 - 2013-10-02 19:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-04 18:49 - 2013-11-04 18:49 - 00029906 _____ C:\ComboFix.txt
2013-11-04 18:49 - 2013-11-04 18:46 - 00000000 ____D C:\Qoobox
2013-11-04 18:48 - 2013-11-04 18:46 - 00000000 ____D C:\Windows\erdnt
2013-11-04 18:48 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-04 18:45 - 2013-11-04 18:45 - 05143677 ____R (Swearware) C:\Users\Basti\Downloads\ComboFix.exe
2013-11-04 17:52 - 2013-11-04 17:52 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-11-04 17:52 - 2013-10-08 15:02 - 00000019 _____ C:\h2-sta-135-218-492
2013-11-04 17:52 - 2013-10-08 15:00 - 01322019 _____ C:\h2-engine.log
2013-11-04 17:52 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg.bak
2013-11-04 17:52 - 2013-10-08 15:00 - 00001465 _____ C:\h2-engine.cfg
2013-11-04 17:52 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini.bak
2013-11-04 17:52 - 2013-10-08 15:00 - 00000443 _____ C:\h2-engine.ini
2013-11-04 17:52 - 2013-10-08 14:54 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-11-04 17:51 - 2013-11-04 17:51 - 05877760 _____ C:\hamachi-update
2013-11-03 17:44 - 2013-11-03 17:44 - 00000000 ____D C:\FRST
2013-11-03 13:18 - 2013-10-02 16:58 - 00001421 _____ C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Mozilla
2013-11-03 13:06 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:06 - 2013-10-23 12:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-03 12:58 - 2013-11-03 11:05 - 00000898 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-03 12:41 - 2013-11-03 12:41 - 00003078 _____ C:\Windows\System32\Tasks\{B023D747-39F6-4B97-A4DF-E176952932E4}
2013-11-03 12:29 - 2013-10-02 17:21 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-03 12:02 - 2013-10-23 12:36 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-03 12:02 - 2013-10-23 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-03 12:02 - 2013-10-23 12:36 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-03 11:21 - 2013-11-03 11:11 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-11-03 11:21 - 2013-10-02 18:41 - 00000000 ____D C:\Windows\system32\appmgmt
2013-11-03 11:13 - 2013-10-23 12:29 - 00000000 ____D C:\Users\Basti\AppData\Local\Mozilla
2013-11-03 11:11 - 2013-11-03 11:11 - 00003326 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-11-03 11:11 - 2013-11-03 11:11 - 00000000 _____ C:\autoexec.bat
2013-11-03 11:09 - 2013-11-03 11:09 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Basti\Downloads\SpyHunter-Installer.exe
2013-11-03 11:06 - 2013-11-03 11:01 - 00000000 ____D C:\Program Files (x86)\Minecraft
2013-11-03 11:02 - 2013-11-03 11:02 - 00004380 _____ C:\Windows\System32\Tasks\LyricsParty-16-updater
2013-11-03 11:02 - 2013-11-03 11:02 - 00004286 _____ C:\Windows\System32\Tasks\LyricsParty-16-codedownloader
2013-11-03 11:02 - 2013-11-03 11:02 - 00004186 _____ C:\Windows\System32\Tasks\LyricsParty-16-enabler
2013-11-01 15:13 - 2013-11-01 15:13 - 00000000 ____D C:\Users\Basti\openvr
2013-11-01 15:13 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti
2013-10-31 21:04 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-31 19:23 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-31 12:55 - 2013-10-05 12:41 - 00000000 ____D C:\Users\Basti\AppData\Roaming\TS3Client
2013-10-31 12:22 - 2013-10-31 12:22 - 00670976 _____ C:\Users\Basti\Downloads\Microsoft-Word-2013-Setup.exe
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\Downloads\Microsoft-Word-2013
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\ChromeExtensions
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Tempdaf1313191769c5a4d93e339cd28c0d1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp95733d3209d94818e075979b20f08fc1
2013-10-31 12:22 - 2013-10-31 12:22 - 00000000 ____D C:\Users\Basti\AppData\Local\Temp029a2a702369fd15a1691e22b87e23c0
2013-10-31 09:56 - 2013-10-31 09:56 - 28062081 _____ C:\Users\Basti\Downloads\Sphax PureBDcraft 128x MC17(1).zip
2013-10-27 18:54 - 2013-10-02 17:06 - 00074048 _____ C:\Windows\DirectX.log
2013-10-27 13:22 - 2013-10-27 13:22 - 00000206 _____ C:\Users\Basti\Desktop\Saints Row IV.url
2013-10-26 19:04 - 2010-11-21 08:16 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-23 12:36 - 2013-10-23 12:36 - 00000000 ____D C:\Users\Basti\AppData\Local\Macromedia
2013-10-23 12:36 - 2013-10-09 20:57 - 00000000 ____D C:\Users\Basti\AppData\Local\Adobe
2013-10-23 12:29 - 2013-10-23 12:29 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-23 12:28 - 2013-10-23 12:28 - 00281896 _____ (Mozilla) C:\Users\Basti\Downloads\Firefox Setup Stub 24.0.exe
2013-10-21 16:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 14:01 - 2013-10-18 14:01 - 00000783 _____ C:\Users\Basti\Desktop\SteelSeries Engine.lnk
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\Users\Basti\AppData\Local\SteelSeries_ApS
2013-10-18 13:57 - 2013-10-18 13:57 - 00000000 ____D C:\ProgramData\SteelSeries
2013-10-18 13:56 - 2013-10-18 13:55 - 45901648 _____ C:\Users\Basti\Downloads\SteelSeriesEngine_2.8.0059_1.exe
2013-10-13 21:48 - 2013-10-13 21:48 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu (1).exe
2013-10-12 14:05 - 2013-10-10 17:13 - 00000000 ____D C:\Users\Basti\Documents\FIFA 14
2013-10-12 13:29 - 2013-10-12 13:29 - 07878008 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Eng.exe
2013-10-12 13:20 - 2013-10-12 13:20 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-10-12 13:19 - 2013-10-12 13:19 - 07886712 _____ (Microsoft Corporation) C:\Users\Basti\Downloads\Xbox360_64Deu.exe
2013-10-11 10:17 - 2009-07-14 05:45 - 00276552 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 23:07 - 2013-10-02 17:25 - 01592864 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-10 23:06 - 2013-10-04 08:49 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 23:05 - 2013-10-04 08:49 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 17:13 - 2013-10-10 17:13 - 00001246 _____ C:\Users\Public\Desktop\FIFA 14.lnk
2013-10-10 17:13 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Basti\AppData\Local\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Origin
2013-10-10 17:13 - 2013-10-05 11:51 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-10-10 14:33 - 2013-10-05 11:55 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-10-09 20:57 - 2013-10-02 17:39 - 00000000 ____D C:\Users\Basti\AppData\Roaming\Adobe
2013-10-09 16:01 - 2013-10-09 16:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-09 15:10 - 2013-10-09 15:08 - 00000000 ____D C:\Users\Basti\AppData\Roaming\ftblauncher
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Downloads\FTB_Launcher.exe
2013-10-09 15:08 - 2013-10-09 15:08 - 00517754 _____ () C:\Users\Basti\Desktop\FTB_Launcher.exe
2013-10-09 15:07 - 2013-10-09 15:07 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2013-10-09 14:57 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Basti\AppData\Local\VirtualStore
2013-10-08 16:02 - 2013-10-02 18:11 - 00000000 ____D C:\ProgramData\Skype
2013-10-08 15:03 - 2013-10-08 15:03 - 00000273 _____ C:\h2-key-135-218-492
2013-10-08 15:02 - 2013-10-08 15:02 - 00000023 _____ C:\h2-engine-notice
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id.bak
2013-10-08 15:01 - 2013-10-08 15:00 - 00000122 _____ C:\h2-engine.id
2013-10-08 15:00 - 2013-10-08 15:00 - 00001430 _____ C:\h2-client.key
2013-10-08 15:00 - 2013-10-08 15:00 - 00000263 _____ C:\h2-server.key
2013-10-08 14:53 - 2013-10-08 14:53 - 05840896 _____ C:\Users\Basti\Downloads\Hamachi.msi
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\Users\Basti\AppData\Local\LogMeIn
2013-10-08 14:46 - 2013-10-08 14:46 - 00000000 ____D C:\ProgramData\LogMeIn
2013-10-08 14:44 - 2013-10-08 14:44 - 05849088 _____ C:\Users\Basti\Downloads\hamachi22.msi
2013-10-07 19:16 - 2013-10-07 19:16 - 01095080 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00973736 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-07 19:16 - 2013-10-07 19:16 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-07 19:16 - 2013-10-07 19:16 - 00000000 ____D C:\Program Files\Java
2013-10-07 19:16 - 2013-10-07 19:14 - 30669224 _____ (Oracle Corporation) C:\Users\Basti\Downloads\jre-7u40-windows-x64.exe
2013-10-07 11:15 - 2013-10-03 08:22 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-07 11:15 - 2013-10-02 18:08 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
Some content of TEMP:
====================
C:\Users\Basti\AppData\Local\Temp\avgnt.exe
C:\Users\Basti\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-31 19:49
==================== End Of Log ============================
|
|
07.11.2013, 12:25
| #10 |
| /// the machine /// TB-Ausbilder | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com Adobe updaten. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
C:\Program Files\Enigma Software Group
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.11.2013, 19:51
| #11 |
| | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.comCode:
ATTFilter # DelFix v10.4 - Datei am 07/11/2013 um 19:35:28 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Benutzer : Basti - BASTI-PC
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
~ Aktiviere die Benutzerkontensteuerung ... OK
~ Entferne die Bereinigungsprogramme ...
Gelöscht : C:\Qoobox
Gelöscht : C:\Combofix
Gelöscht : C:\FRST
Gelöscht : C:\Users\Basti\Desktop\Fixlog.txt
Gelöscht : C:\Windows\grep.exe
Gelöscht : C:\Windows\PEV.exe
Gelöscht : C:\Windows\NIRCMD.exe
Gelöscht : C:\Windows\MBR.exe
Gelöscht : C:\Windows\SED.exe
Gelöscht : C:\Windows\SWREG.exe
Gelöscht : C:\Windows\SWSC.exe
Gelöscht : C:\Windows\SWXCACLS.exe
Gelöscht : C:\Windows\Zip.exe
Gelöscht : HKCU\console_combofixbackup
Gelöscht : HKLM\SOFTWARE\AdwCleaner
Gelöscht : HKLM\SOFTWARE\Swearware
Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
Gelöscht : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart
Gelöscht : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys
Gelöscht : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart
Gelöscht : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys
~ Erstelle ein Backup der Registrierungsdatenbank ... OK
~ Lösche die Wiederherstellungspunkte ...
Gelöscht : RP #36 [DirectX wurde installiert | 10/27/2013 17:53:50]
Gelöscht : RP #37 [Installed SpyHunter | 11/03/2013 10:11:17]
Gelöscht : RP #38 [Removed SpyHunter | 11/03/2013 10:20:40]
Gelöscht : RP #39 [Installed iTunes | 11/05/2013 18:07:31]
Gelöscht : RP #40 [ComboFix created restore point | 11/07/2013 18:30:35]
Ein neuer Wiederherstellungspunkt wurde erstellt !
~ Stelle die Systemeinstellungen wieder her ... OK
########## - EOF - ##########
Welches Antivierenprogramm würdest du mir empfehlen? Ich persönlich hätte an Kaspersky gedacht.  |
|
08.11.2013, 10:33
| #12 |
| /// the machine /// TB-Ausbilder | EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com Emsisoft
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu EXP/Java.HLP.GJ, ADWARE/Adppeeps.A, www.qone8.com |
| .com, adblock, adware, adware/adppeeps.a, ahnung, brauche, browser, common, datei, exp/java.hlp.gj, gefunde, hdd0(c:, hdd0(c:), hijack.startpage, konnte, monitor.exe, msiexec.exe, programme, pup.optional.downloadsponsor.a, pup.optional.elex.a, pup.optional.esafe.a, pup.optional.iminent.a, pup.optional.qone8.a, taskhost.exe, warnung |
WARNUNG an die MITLESER: 
Linear-Darstellung
