Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Verdacht auf Virenbefall

Verdacht auf Virenbefall


Log-Analyse und Auswertung: Verdacht auf Virenbefall

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 28.11.2013, 22:47   #1
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo,
ich bin zum ersten mal bei so einer Community. Seit einigen Stunden durchsuche ich das Internet nach Lösungen, aber kann per tu keine finden.
Mein Problem sieht wie folgt aus:
Im Taskmanager befinden sich diverse Prozesse ohne Benutzer oder Beschreibung und ein gewisser Prozess namens conhost.exe kommt dabei 3fach vor.

Anbei die gewünschten Logfiles...hoffe auf baldige hilfe.

Alt 29.11.2013, 00:12   #2
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77
Mein Name ist Sandra und ich werde Dir bei Deinem Problem behilflich sein.
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lese die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem
  • Führe bitte nur Scans durch zu denen Du von mir aufgefordert wirst.
  • Bitte kein Crossposting ( posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, ausser Du wurdest dazu aufgefordert.
  • Poste die Logfiles direkt in deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 3 Tagen nichts von mir hörst, dann schreibe mir bitte eine PM.

Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der schnellere und immer der sicherste Weg.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean bist.

Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Dies garantiert, dass Du Hilfe von einem ausgebildeten Helfer bekommst.

Ich bedanke mich für deine Geduld

Bitte füge die Logs immer in Code-Tags ein. Wenn Du das nicht machst, erschwert es mir sehr das Auswerten. Danke.
Dazu:
  • Klicke über dem Antwortfenster auf die Raute #, dann steht dort in eckigen Klammern [] CODE /CODE.
  • Zwischen den beiden code-Bausteinen fügst Du dann deine Logfiles ein. Also CODE Logfile /CODE
  • Wenn die Logs zu lang sein sollten, dann teile sie bitte auf und poste sie dann hier in Deinem Thread, notfalls in mehreren Antworten.
__________________

__________________
Alt 29.11.2013, 08:59   #3
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Okay, dann poste ich natürlich die Logs gerne nochmal, aber diesmal nicht als Zip.

FRsT

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-11-2013
Ran by Engel (administrator) on ENGEL-PC on 28-11-2013 22:13:38
Running from C:\Users\Engel\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
() C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
() C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.49\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [Command Center Controllers] - C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [12656 2012-06-15] (Alienware)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HotKeysCmds] - "C:\Windows\system32\hkcmd.exe"
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {06e19868-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {06e1987b-0d23-11e2-b6e2-d0df9ab2a8d8} - G:\AutoRun.exe
MountPoints2: {06e19887-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d444abf0-f58d-11e2-beea-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d7db91e2-120a-11e2-b3bc-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {dd5866f9-0e1b-11e2-a177-d0df9ab2a8d8} - F:\AutoRun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] - C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1635696 2011-03-08] ()
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EsternTimesMouseExRun] - C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe [3351040 2013-04-23] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\376f8352-1d8f-471a-b1e0-903c6e889e33.exe [180184 2013-11-23] (AVAST Software)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll  c:\progra~2\browse~1\sprote~1.dll, C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.easylifeapp.com/?pid=798&src=ie1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
SearchScopes: HKCU - DefaultScope {01bd49d7-c76b-4310-8beb-14d7e5f322c6} URL = 
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 141.35.1.16 141.35.1.80

FireFox:
========
FF ProfilePath: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default
FF DefaultSearchEngine: EasyLife
FF SearchEngineOrder.1: EasyLife
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "EasyLife");: user_pref("browser.search.order.1,S", "EasyLife");
FF SelectedSearchEngine: EasyLife
FF Homepage: hxxp://search.easylifeapp.com/?pid=798&src=ff1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF Keyword.URL: hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=
FF DefaultSearchEngine: Google 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\searchplugins\EasyLife.xml
FF Extension: Browwse22saave - C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com
FF Extension: 									 em:name="Free YouTube Download (Free Studio) Menu" - C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR Extension: (Browwse22saave) - C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-23] (AVAST Software)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [763904 2011-03-30] ()
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [87336 2012-01-12] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [75048 2012-01-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296232 2012-01-12] (CyberLink)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2013-11-22] ()

==================== Drivers (Whitelisted) ====================

R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [2705000 2011-03-30] (Bigfoot Networks, Inc.)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-23] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-23] ()
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [68712 2011-03-30] (Bigfoot Networks, Inc.)
R3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [38472 2011-02-02] (Dell Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [82928 2011-10-27] (Cyberlink Corp.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [300320 2013-11-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [146928 2012-01-11] (CyberLink Corp.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [x]
S4 sptd; \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-28 22:13 - 2013-11-28 22:13 - 00017768 _____ C:\Users\Engel\Desktop\FRST.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:08 - 2013-11-28 22:09 - 01959024 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:47 - 2013-11-28 22:05 - 00000336 _____ C:\Windows\setupact.log
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-28 21:42 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-23 16:23 - 2013-11-23 16:24 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-22 21:12 - 2013-11-22 21:32 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 21:05 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-11-22 21:05 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2013-11-21 20:16 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\system32\NV
2013-11-20 13:51 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-20 07:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-14 19:52 - 2013-11-14 19:53 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:49 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 16:36 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:36 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 16:36 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 16:36 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 16:36 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 16:36 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:36 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 16:36 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:36 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:36 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 16:36 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:36 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:48 - 2013-11-21 19:50 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-14 13:48 - 2013-11-15 08:38 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-14 13:45 - 2013-11-23 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-14 13:45 - 2013-11-20 13:49 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:38 - 2013-04-11 16:12 - 00019392 _____ (Dll-Files.com) C:\Windows\system32\roboot64.exe
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-07 11:07 - 2013-11-07 20:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-07 11:06 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-11-07 11:06 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2013-10-31 10:38 - 2013-10-31 10:38 - 00017058 _____ C:\Windows\system32\iglhxs64.vp
2013-10-31 10:30 - 2013-10-31 10:30 - 11176448 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 12617216 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 05363200 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2013-10-31 10:28 - 2013-10-31 10:28 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00098304 _____ C:\Windows\system32\igdde64.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00077312 _____ C:\Windows\SysWOW64\igdde32.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 10812928 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00223664 _____ C:\Windows\system32\Gfxres.th-TH.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00210106 _____ C:\Windows\system32\Gfxres.el-GR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00194245 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00166170 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00163421 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00159008 _____ C:\Windows\system32\Gfxres.he-IL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00149682 _____ C:\Windows\system32\Gfxres.it-IT.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00148042 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00147393 _____ C:\Windows\system32\Gfxres.de-DE.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00147288 _____ C:\Windows\system32\Gfxres.es-ES.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00146004 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00145491 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144645 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144260 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144020 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00143932 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142882 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142877 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142717 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00142289 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142008 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00141838 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00141049 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137889 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137784 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137141 _____ C:\Windows\system32\Gfxres.da-DK.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00132623 _____ C:\Windows\system32\Gfxres.en-US.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2013-10-31 10:27 - 2013-10-31 10:27 - 00126300 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00124650 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 01040384 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00963452 _____ C:\Windows\SysWOW64\igcodeckrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00963452 _____ C:\Windows\system32\igcodeckrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00931840 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00524800 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00519680 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00272928 _____ C:\Windows\SysWOW64\igvpkrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00272928 _____ C:\Windows\system32\igvpkrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00059425 _____ C:\Windows\system32\iglhxo64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059398 _____ C:\Windows\system32\iglhxg64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059230 _____ C:\Windows\system32\iglhxc64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp

==================== One Month Modified Files and Folders =======

2013-11-28 22:13 - 2013-11-28 22:13 - 00017768 _____ C:\Users\Engel\Desktop\FRST.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:10 - 2012-11-23 08:45 - 01625212 _____ C:\Windows\WindowsUpdate.log
2013-11-28 22:09 - 2013-11-28 22:08 - 01959024 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-11-28 22:06 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-11-28 22:06 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-11-28 22:06 - 2011-09-23 20:27 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-11-28 22:05 - 2013-11-28 21:47 - 00000336 _____ C:\Windows\setupact.log
2013-11-28 22:05 - 2011-09-23 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-28 22:05 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:04 - 2011-09-29 12:26 - 00000000 ____D C:\Users\Engel
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:55 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-28 21:55 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:45 - 2013-04-09 13:56 - 00000000 ____D C:\ProgramData\BetterSoft
2013-11-28 21:45 - 2013-04-09 13:55 - 00000000 ____D C:\ProgramData\Browwse22saave
2013-11-28 21:45 - 2013-04-09 13:55 - 00000000 ____D C:\Program Files (x86)\EasyLife
2013-11-28 21:45 - 2013-04-09 13:54 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-28 21:05 - 2012-04-03 15:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-28 16:24 - 2013-05-23 13:23 - 00003460 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-11-28 16:20 - 2011-11-27 12:46 - 00000000 ____D C:\Users\Engel\AppData\Roaming\vlc
2013-11-28 15:56 - 2013-04-10 16:06 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-28 15:39 - 2013-05-05 17:31 - 00000000 ____D C:\Users\Engel\Downloads\frisch geladen
2013-11-28 09:53 - 2010-11-21 07:50 - 00696870 _____ C:\Windows\system32\perfh007.dat
2013-11-28 09:53 - 2010-11-21 07:50 - 00148134 _____ C:\Windows\system32\perfc007.dat
2013-11-28 09:53 - 2009-07-14 06:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-27 14:35 - 2011-09-29 15:12 - 00000000 ____D C:\Users\Engel\AppData\Roaming\DAEMON Tools Lite
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-25 12:36 - 2012-07-07 09:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-24 14:01 - 2011-09-29 12:33 - 00000000 ____D C:\Users\Engel\AppData\Local\Adobe
2013-11-24 13:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-24 12:16 - 2012-04-03 15:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-24 12:16 - 2012-04-03 15:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 12:16 - 2011-09-23 20:04 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-23 16:24 - 2013-11-23 16:23 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 13:45 - 2013-11-14 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-23 11:31 - 2013-03-03 17:54 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-23 11:31 - 2013-03-03 17:54 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-23 11:31 - 2012-02-26 13:01 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-23 11:31 - 2011-09-29 12:45 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-23 11:31 - 2011-09-29 12:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-23 11:26 - 2011-09-29 12:44 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-23 11:25 - 2011-09-29 12:45 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-11-22 21:39 - 2013-10-23 06:16 - 00000116 _____ C:\Users\Engel\Desktop\Neues Textdokument.txt
2013-11-22 21:32 - 2013-11-22 21:12 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-22 20:04 - 2011-09-29 18:40 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-22 06:39 - 2012-10-29 16:56 - 00000000 ____D C:\Users\Engel\Downloads\Festplatte WD
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\system32\NV
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2011-09-23 12:56 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 20:02 - 2011-09-29 12:30 - 00109392 _____ C:\Users\Engel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-21 20:01 - 2009-07-14 05:45 - 00422896 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-21 19:50 - 2013-11-14 13:48 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:40 - 2011-09-23 20:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-21 19:39 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Local\Dell
2013-11-21 19:39 - 2011-09-23 20:30 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-11-21 19:36 - 2011-09-23 21:47 - 00000000 ____D C:\ProgramData\Dell
2013-11-21 19:29 - 2011-09-23 20:38 - 00000000 ____D C:\ProgramData\Sonic
2013-11-21 19:28 - 2011-09-23 20:37 - 00000000 ____D C:\ProgramData\Roxio
2013-11-21 19:26 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-21 19:24 - 2011-09-29 19:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-21 19:14 - 2011-10-09 14:41 - 00000000 ____D C:\Program Files (x86)\Activision
2013-11-21 14:32 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther
2013-11-21 09:17 - 2011-09-29 12:30 - 00001387 _____ C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-20 23:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-20 19:12 - 2011-10-14 09:00 - 00000000 ____D C:\ProgramData\PCDr
2013-11-20 13:54 - 2011-09-23 12:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-20 13:49 - 2013-11-14 13:45 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-20 08:08 - 2011-09-29 15:03 - 00000000 ____D C:\Users\Engel\Downloads\Bleach Chapter
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 19:18 - 2011-09-29 12:38 - 00000000 ____D C:\Program Files (x86)\Opera
2013-11-18 16:44 - 2011-09-29 15:54 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Skype
2013-11-18 10:27 - 2011-09-29 16:13 - 00000000 ____D C:\Users\Engel\Documents\Trainer
2013-11-18 10:22 - 2011-09-29 15:04 - 00000000 ____D C:\Users\Engel\Downloads\One Piece Chapter
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-15 08:40 - 2012-03-11 09:47 - 00000000 ____D C:\Users\UpdatusUser.Engel-PC
2013-11-15 08:38 - 2013-11-14 13:48 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-15 08:38 - 2009-07-14 03:34 - 84934656 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 17301504 _____ C:\Windows\system32\config\SYSTEM.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2013-11-14 23:57 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2013-11-14 23:56 - 2011-09-29 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 23:55 - 2013-08-14 20:43 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 23:53 - 2011-10-02 12:05 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 19:53 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:52 - 2013-11-14 19:49 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 19:09 - 2012-04-09 12:43 - 00000000 ____D C:\Program Files\AlienAutopsy
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 12:58 - 2013-11-20 13:51 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2011-09-23 21:43 - 15218504 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 02697248 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01242400 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00141336 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-14 10:29 - 2011-12-24 19:20 - 00000000 ____D C:\Program Files (x86)\WB Games
2013-11-14 10:26 - 2011-12-24 19:58 - 00000000 ____D C:\Users\Engel\Documents\WB Games
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 18:08 - 2011-09-30 11:28 - 00000000 ____D C:\Users\Engel\AppData\Local\Deployment
2013-11-11 16:02 - 2011-06-26 16:48 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2011-06-26 16:48 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2011-06-26 23:49 - 03467927 _____ C:\Windows\system32\nvcoproc.bin
2013-11-11 16:01 - 2011-06-26 23:49 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2011-06-26 16:49 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 21:47 - 2013-10-28 20:58 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-28 20:58 - 00955168 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-07 20:45 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll
2013-10-31 10:38 - 2013-10-31 10:38 - 00017058 _____ C:\Windows\system32\iglhxs64.vp
2013-10-31 10:30 - 2013-10-31 10:30 - 11176448 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2013-10-31 10:30 - 2011-08-31 11:42 - 12859392 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 12617216 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 05363200 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2013-10-31 10:28 - 2013-10-31 10:28 - 00330752 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00098304 _____ C:\Windows\system32\igdde64.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00077312 _____ C:\Windows\SysWOW64\igdde32.dll
2013-10-31 10:28 - 2013-10-31 10:28 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2013-10-31 10:28 - 2011-08-31 11:47 - 11049472 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 13031424 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 10812928 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439808 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00438272 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437760 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00437248 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00435712 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00432128 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00429056 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00428544 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00410624 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2013-10-31 10:27 - 2013-10-31 10:27 - 00223664 _____ C:\Windows\system32\Gfxres.th-TH.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00210106 _____ C:\Windows\system32\Gfxres.el-GR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00194245 _____ C:\Windows\system32\Gfxres.ru-RU.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00175104 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00166170 _____ C:\Windows\system32\Gfxres.ar-SA.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00163421 _____ C:\Windows\system32\Gfxres.ja-JP.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00159008 _____ C:\Windows\system32\Gfxres.he-IL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00149682 _____ C:\Windows\system32\Gfxres.it-IT.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00148042 _____ C:\Windows\system32\Gfxres.ko-KR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00147393 _____ C:\Windows\system32\Gfxres.de-DE.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00147288 _____ C:\Windows\system32\Gfxres.es-ES.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00146004 _____ C:\Windows\system32\Gfxres.ro-RO.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00145491 _____ C:\Windows\system32\Gfxres.fr-FR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144645 _____ C:\Windows\system32\Gfxres.tr-TR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144260 _____ C:\Windows\system32\Gfxres.pt-BR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00144020 _____ C:\Windows\system32\Gfxres.nl-NL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00143932 _____ C:\Windows\system32\Gfxres.hu-HU.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142882 _____ C:\Windows\system32\Gfxres.sv-SE.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142877 _____ C:\Windows\system32\Gfxres.pt-PT.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142717 _____ C:\Windows\system32\Gfxres.pl-PL.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00142289 _____ C:\Windows\system32\Gfxres.cs-CZ.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00142008 _____ C:\Windows\system32\Gfxres.fi-FI.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00141838 _____ C:\Windows\system32\Gfxres.sk-SK.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00141049 _____ C:\Windows\system32\Gfxres.hr-HR.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137889 _____ C:\Windows\system32\Gfxres.sl-SI.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137784 _____ C:\Windows\system32\Gfxres.nb-NO.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00137141 _____ C:\Windows\system32\Gfxres.da-DK.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00132623 _____ C:\Windows\system32\Gfxres.en-US.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2013-10-31 10:27 - 2013-10-31 10:27 - 00126300 _____ C:\Windows\system32\Gfxres.zh-TW.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00124650 _____ C:\Windows\system32\Gfxres.zh-CN.resources
2013-10-31 10:27 - 2013-10-31 10:27 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2013-10-31 10:27 - 2013-10-31 10:27 - 00009728 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2013-10-31 10:27 - 2011-09-23 21:43 - 00384512 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2013-10-31 10:27 - 2011-09-23 21:43 - 00110592 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2013-10-31 10:27 - 2011-09-23 21:43 - 00064000 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 01040384 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00963452 _____ C:\Windows\SysWOW64\igcodeckrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00963452 _____ C:\Windows\system32\igcodeckrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00931840 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00524800 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00519680 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00272928 _____ C:\Windows\SysWOW64\igvpkrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00272928 _____ C:\Windows\system32\igvpkrng600.bin
2013-10-31 10:24 - 2013-10-31 10:24 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2013-10-31 10:24 - 2013-10-31 10:24 - 00059425 _____ C:\Windows\system32\iglhxo64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059398 _____ C:\Windows\system32\iglhxg64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059230 _____ C:\Windows\system32\iglhxc64.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp
2013-10-31 10:24 - 2013-10-31 10:24 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-20 19:47

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-11-2013
Ran by Engel at 2013-11-28 22:14:08
Running from C:\Users\Engel\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32)
Activision(R) (x32 Version: 1.00.0000)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)
Advanced Audio FX Engine (x32 Version: 1.12.05)
AlienAutopsy (Version: 3.4.6361.48)
AlienRespawn - Support Software (x32 Version: 9.4.60)
AlienRespawn (x32 Version: 9.4.60)
Alienware Command Center (Version: 2.8.8.0)
Alienware Command Center (x32 Version: 2.8.8.0)
Alienware M17x Manual (Version: 1.0.0.1)
Alienware M17x Manual (x32 Version: 1.0.0.1)
Alienware On-Screen Display (x32 Version: 0.31.0.14C)
Anker Precision Laser Gaming Mouse version 1.2 (x32 Version: 1.2)
Assassin's Creed IV Black Flag (x32)
Assassin's Creed(R) III v1.06 (x32 Version: 1.06)
Audiosurf (x32 Version: 1.00.0000)
avast! Free Antivirus (x32 Version: 9.0.2008)
Batman - Arkham Origins (x32)
Batman: Arkham City™ (x32 Version: 1.0.0001.131)
Bigfoot Networks Killer Network Manager (Version: 6.0.1.0)
Bigfoot Networks Killer Network Manager (x32)
Blur(TM) (x32 Version: 1.00.0000)
CCleaner (Version: 4.07)
CyberLink PowerDVD 12 (x32 Version: 12.0.1312.54)
DAEMON Tools Lite (x32 Version: 4.41.3.0173)
DivX-Setup (x32 Version: 2.6.0.34)
Dll-Files Fixer (x32 Version: 1.0)
Dual-Core Optimizer (x32 Version: 1.1.4.0169)
EasyLife Search 1.74 (x32)
EMSC (x32 Version: 0.0.0.22C)
Free Audio Dub version 1.7.9.908 (x32 Version: 1.7.9.908)
Free Studio version 4.8 (x32)
Free Video to MP3 Converter version 5.0.20.1031 (x32 Version: 5.0.20.1031)
Free YouTube to MP3 Converter version 3.11.35.1031 (x32 Version: 3.11.35.1031)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Grand Theft Auto IV (x32 Version: 1.0.0013.131)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135)
High-Definition Video Playback (x32 Version: 7.3.10900.8.0)
IDT Audio (x32 Version: 1.0.6330.0)
Integrated Webcam Live! Central (x32 Version: 2.00.44)
Intel(R) Processor Graphics (x32 Version: 9.17.10.3347)
Intel(R) Rapid Storage Technology (x32 Version: 10.0.0.1046)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
JDownloader 2 (x32 Version: 2)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Mobile Partner (x32 Version: 16.002.03.01.40)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (x32 Version: 1)
Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0)
Nero 7 Premium (x32 Version: 7.02.9753)
Nero Control Center 10 (x32 Version: 10.6.13000.0.11)
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.2.10800)
Nero Core Components 10 (x32 Version: 2.0.20000.9.12)
Nero Update (x32 Version: 11.0.10022.15.0)
neroxml (x32 Version: 1.0.0)
NVIDIA 3D Vision Controller Driver (x32 Version: 268.90)
NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82)
NVIDIA 3D Vision Treiber 331.82 (Version: 331.82)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1)
NVIDIA Grafiktreiber 331.82 (Version: 331.82)
NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.140.952)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Optimus 9.3.21 (Version: 9.3.21)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182)
NVIDIA Systemsteuerung 331.82 (Version: 331.82)
NVIDIA Update 9.3.21 (Version: 9.3.21)
NVIDIA Update Components (Version: 9.3.21)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
OpenAL (x32)
Opera 12.16 (x32 Version: 12.16.1860)
Opera Stable 18.0.1284.49 (x32 Version: 18.0.1284.49)
OptimizerPro (Version: 1.0)
PunkBuster Services (x32 Version: 0.991)
Rapture3D 2.4.9 Game (x32)
Recuva (Version: 1.47)
SHIELD Streaming (Version: 1.6.53)
Skype™ 5.10 (x32 Version: 5.10.116)
Spider-Man(TM) - Web of Shadows 1.1 Patch (x32)
Star Wars: The Old Republic (x32 Version: 1.00)
Steam (x32 Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.1.19.0)
SyncUP (x32 Version: 1.10.11100.8.106)
SyncUP (x32 Version: 10.2.14900)
TeamSpeak 3 Client (Version: 3.0.10.1)
TechPowerUp GPU-Z (x32)
The Elder Scrolls V Skyrim All in One DLC-Pack Deutsche Version Plus Update 11 (1.8.151.0.7) 1.8.151.0.7 (x32 Version: 1.8.151.0.7)
The Elder Scrolls V Skyrim High Resolution Texture Pack  DLC 1.00 (x32 Version: 1.00)
The Witcher 2: Assassins of Kings Enhanced Edition (x32)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Uninstall 1.0.0.1 (x32)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825642) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
Uplay (x32 Version: 2.0)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
VLC media player 2.1.1 (x32 Version: 2.1.1)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 5.00 beta 1 (64-bit) (Version: 5.00.1)
Zinio Reader 4 (x32 Version: 4.2.4164)

==================== Restore Points  =========================

22-11-2013 20:02:04 DirectX wurde installiert
23-11-2013 10:26:38 avast! antivirus system restore point
23-11-2013 10:31:20 Windows Update
26-11-2013 17:14:56 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {098324B2-A392-4711-834D-1379A71002C8} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {2B142363-63D2-4548-995C-99633B4A22AB} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com
Task: {6CC73DA1-E94A-47D6-90FC-3E256B763598} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-24] (Adobe Systems Incorporated)
Task: {C69BFA9E-FBB4-46F1-B4E3-DB84B7410671} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\AlienAutopsy\sessionchecker.exe [2013-11-07] (PC-Doctor, Inc.)
Task: {CF619CB3-2E07-4741-BB84-BBDA20EA12A4} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\AlienAutopsy\uaclauncher.exe [2013-09-05] (PC-Doctor, Inc.)
Task: {DF84998E-6275-46F5-B546-5872926D5D40} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com
Task: {EA1A7D7E-8BBA-4008-A282-A8A5A1A9C9CB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {F810DF23-2AA2-4A19-BA13-395FC5BDC16C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-23] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe

==================== Loaded Modules (whitelisted) =============

2011-09-23 21:43 - 2011-05-04 03:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2010-06-14 07:16 - 2010-06-14 07:16 - 02765312 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtCore4.dll
2010-06-14 07:31 - 2010-06-14 07:31 - 10373120 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtGui4.dll
2010-06-14 07:17 - 2010-06-14 07:17 - 00919552 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtNetwork4.dll
2010-06-14 07:16 - 2010-06-14 07:16 - 00448512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\QtXml4.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00256512 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\BFCommon.dll
2010-02-08 21:48 - 2010-02-08 21:48 - 00685568 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\qwt5.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00626176 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modApplications.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00041984 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFeatures.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00030720 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modFraps.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00406528 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modGraph.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00082432 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modLCD.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00442368 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNetwork.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00338944 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modNpu.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00340992 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOptions.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00062976 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modOverview.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00054784 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modPing.dll
2011-03-30 00:50 - 2011-03-30 00:50 - 00500736 _____ () C:\Program Files\Bigfoot Networks\Killer Network Manager\plugins\modSystemInfo.dll
2013-11-28 20:00 - 2013-11-28 19:15 - 02149376 _____ () C:\Program Files\AVAST Software\Avast\defs\13112801\algo.dll
2013-02-08 23:36 - 2012-01-09 04:48 - 00541683 _____ () C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\sqlite3.dll
2009-12-18 17:07 - 2009-12-18 17:07 - 00577536 _____ () C:\Program Files (x86)\Alienware On-Screen Display\EMSC.dll
2013-06-30 17:35 - 2011-01-26 23:53 - 00028160 _____ () C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\uiHook.dll
2013-11-23 11:31 - 2013-11-23 11:31 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-11-19 19:18 - 2013-11-15 15:23 - 00886624 _____ () C:\Program Files (x86)\Opera\18.0.1284.49\libglesv2.dll
2013-11-19 19:18 - 2013-11-15 15:23 - 00108896 _____ () C:\Program Files (x86)\Opera\18.0.1284.49\libegl.dll
2013-11-19 19:18 - 2013-11-15 15:23 - 00879968 _____ () C:\Program Files (x86)\Opera\18.0.1284.49\ffmpegsumo.dll
2013-11-21 09:37 - 2013-11-24 12:16 - 16237448 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
2013-10-13 19:07 - 2013-10-13 19:07 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\cd9a4b4dbc1a4b564ebed696e18cadb6\IsdiInterop.ni.dll
2011-09-23 20:12 - 2010-09-14 00:28 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\CLDShowX.ini:Update.CL

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/28/2013 10:07:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/28/2013 09:51:01 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x9d8
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 09:48:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/28/2013 09:35:59 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x126c
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 09:20:57 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x1f28
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 09:05:56 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x1510
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 08:50:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x1320
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 08:35:52 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x18fc
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 08:20:50 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x1e90
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3

Error: (11/28/2013 08:05:48 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: CLMSServerPDVD12.exe, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6319
Name des fehlerhaften Moduls: CLMediaServer.dll, Version: 2.2.0.9709, Zeitstempel: 0x4f0a6296
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00011868
ID des fehlerhaften Prozesses: 0x187c
Startzeit der fehlerhaften Anwendung: 0xCLMSServerPDVD12.exe0
Pfad der fehlerhaften Anwendung: CLMSServerPDVD12.exe1
Pfad des fehlerhaften Moduls: CLMSServerPDVD12.exe2
Berichtskennung: CLMSServerPDVD12.exe3


System errors:
=============
Error: (11/28/2013 09:51:01 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/28/2013 09:35:59 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 50 Mal passiert.

Error: (11/28/2013 09:20:57 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 49 Mal passiert.

Error: (11/28/2013 09:05:56 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 48 Mal passiert.

Error: (11/28/2013 08:50:54 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 47 Mal passiert.

Error: (11/28/2013 08:35:52 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 46 Mal passiert.

Error: (11/28/2013 08:20:50 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 45 Mal passiert.

Error: (11/28/2013 08:05:48 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 44 Mal passiert.

Error: (11/28/2013 07:50:46 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 43 Mal passiert.

Error: (11/28/2013 07:35:44 PM) (Source: Service Control Manager) (User: )
Description: Dienst "CyberLink PowerDVD 12 Media Server Service" wurde unerwartet beendet. Dies ist bereits 42 Mal passiert.


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 35%
Total physical RAM: 8139.82 MB
Available physical RAM: 5279.3 MB
Total Pagefile: 16277.83 MB
Available Pagefile: 13137.45 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:688.86 GB) (Free:337.77 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 699 GB) (Disk ID: CB17D7FF)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=10 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=689 GB) - (Type=07 NTFS)

==================== End Of Log ============================
__________________
Alt 29.11.2013, 09:01   #4
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


GMER Teil 1 (musste es splitten da es sonst zu lang wurde)

Code:
ATTFilter
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-11-28 22:27:01
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD75 rev.01.0 698,64GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Engel\AppData\Local\Temp\kgloapow.sys


---- User code sections - GMER 2.1 ----

.text    C:\Windows\system32\wininit.exe[768] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\system32\winlogon.exe[812] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Windows\system32\services.exe[872] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[984] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\system32\nvvsvc.exe[360] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                  00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[384] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                             000000007555a2ba 1 byte [62]
.text    C:\Windows\System32\svchost.exe[756] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\System32\svchost.exe[548] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[476] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[1052] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Program Files\IDT\WDM\STacSV64.exe[1080] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                          00000000775deecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[1380] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Windows\system32\svchost.exe[1600] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!RegSetValueExW                                             000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                           0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                            00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                      00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                       00000000775deecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                    00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                    00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                    00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\kernel32.dll!RegSetValueExA                                             000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                              000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                         000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                           000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                       000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                        000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                      000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\ole32.dll!CoCreateInstance                                              000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1688] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                             000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Windows\system32\nvvsvc.exe[1696] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                 00000000775deecd 1 byte [62]
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                           000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                      000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                        000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                                    000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                     000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                                   000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\dxgi.dll!CreateDXGIFactory                                                                           000007fef88fdc88 5 bytes JMP 000007fff86f00d8
.text    C:\Windows\system32\Dwm.exe[1572] C:\Windows\system32\dxgi.dll!CreateDXGIFactory1                                                                          000007fef88fde10 5 bytes JMP 000007fff86f0110
.text    C:\Windows\Explorer.EXE[1624] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                        00000000775deecd 1 byte [62]
.text    C:\Windows\System32\spoolsv.exe[1812] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Windows\system32\taskhost.exe[1852] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe[2084] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                   000000007555a2ba 1 byte [62]
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe[2180] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                        00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe[2300] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112            000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe[2396] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                    000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe[2396] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                  0000000076871465 2 bytes [87, 76]
.text    C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe[2396] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                 00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                        000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                                      0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                                       00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                 00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                  00000000775deecd 1 byte [62]
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                               00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                               00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                               00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                        000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                         000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                    000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                      000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                  000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                   000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                 000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\ole32.dll!CoCreateInstance                                                         000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe[2464] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                        000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                                000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                                              0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                                               00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                         00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                          00000000775deecd 1 byte [62]
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                                       00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                                       00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                                       00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                                000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                 000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                            000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                              000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                          000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                           000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                         000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\ole32.dll!CoCreateInstance                                                                 000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\IDT\WDM\sttray64.exe[2476] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                                000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                            0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                              0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                              00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                             000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                        000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                     000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                     00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                     00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                       00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                          0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                        0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                            0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                               0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                       0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                         0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\USER32.dll!CreateWindowExW                               0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                           0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                           0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                    0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                              0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\ole32.dll!CoCreateInstance                               00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                      0000000076871465 2 bytes [87, 76]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe[2620] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                     00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Windows\System32\hkcmd.exe[2656] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                  00000000775deecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2664] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                00000000775deecd 1 byte [62]
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                                     000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                                                   0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                                                    00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                              00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                               00000000775deecd 1 byte [62]
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                                            00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                                            00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                                            00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                                     000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                                      000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                                 000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                                   000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                               000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                                000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                              000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\ole32.dll!CoCreateInstance                                                                      000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Windows\System32\igfxpers.exe[2672] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                                     000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                      0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                        0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                        00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                       000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                  000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                               000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                               00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                               00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                 00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                    0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                  0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                      0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                         0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                         0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                     0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                     0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                              0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                 0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                   0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                        0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe[2684] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                         00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!RegSetValueExW                                                         000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                                       0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                                        00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                                  00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                   00000000775deecd 1 byte [62]
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                                00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                                00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                                00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\kernel32.dll!RegSetValueExA                                                         000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                          000007fefd6c2db0 5 bytes JMP 000007fffd4e0180
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                     000007fefd6c37d0 7 bytes JMP 000007fffd4e00d8
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                       000007fefd6c8ef0 6 bytes JMP 000007fffd4e0148
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                                   000007fefd6daf60 5 bytes JMP 000007fffd4e0110
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                    000007feff0d89e0 8 bytes JMP 000007fffd4e01f0
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                                  000007feff0dbe40 8 bytes JMP 000007fffd4e01b8
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\ole32.dll!CoCreateInstance                                                          000007feff407490 11 bytes JMP 000007fffd4e0228
.text    C:\Program Files\Windows Sidebar\sidebar.exe[2708] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                                         000007feff41bf00 7 bytes JMP 000007fffd4e0260
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!RegSetValueExW                        000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!RegQueryValueExW                      0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!RegDeleteValueW                       00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                 00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                  00000000775deecd 1 byte [62]
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx               00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!K32GetModuleInformation               00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW               00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\kernel32.dll!RegSetValueExA                        000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                         000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                    000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                      000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                  000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                   000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                 000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\ole32.dll!CoCreateInstance                         000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe[2792] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                        000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!RegSetValueExW                                               000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                             0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                              00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                                        00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                         00000000775deecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                                      00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                                      00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                                      00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\kernel32.dll!RegSetValueExA                                               000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                           000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                             000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                         000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                          000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe[1684] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                        000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!RegSetValueExW                                      000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!RegQueryValueExW                                    0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!RegDeleteValueW                                     00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!K32GetMappedFileNameW                               00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                00000000775deecd 1 byte [62]
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!K32EnumProcessModulesEx                             00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!K32GetModuleInformation                             00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!K32GetModuleFileNameExW                             00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\kernel32.dll!RegSetValueExA                                      000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                       000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                  000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                    000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                 000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                               000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\d3d9.dll!Direct3DCreate9Ex                                       000007fef6162460 5 bytes JMP 000007fefd6702d0
.text    C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe[2236] C:\Windows\system32\d3d9.dll!Direct3DCreate9                                         000007fef61996b0 6 bytes JMP 000007fefd670298
.text    C:\Windows\system32\conhost.exe[2804] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[3020] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                       000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[3020] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                     0000000076871465 2 bytes [87, 76]
.text    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[3020] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                    00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                               000000007555a2ba 1 byte [62]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                                    0000000074cb1a22 2 bytes [CB, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                                    0000000074cb1ad0 2 bytes [CB, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                                    0000000074cb1b08 2 bytes [CB, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                                    0000000074cb1bba 2 bytes [CB, 74]
.text    C:\Windows\SysWOW64\PnkBstrA.exe[3148] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                                    0000000074cb1bda 2 bytes [CB, 74]
.text    C:\Program Files (x86)\AlienRespawn\sftservice.EXE[3208] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                             000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\AlienRespawn\sftservice.EXE[3208] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                           0000000076871465 2 bytes [87, 76]
.text    C:\Program Files (x86)\AlienRespawn\sftservice.EXE[3208] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                          00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Windows\system32\svchost.exe[3304] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[3336] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                        00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                      0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                        0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                        00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                       000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                  000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW               000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx               00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation               00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                 00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                    0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                  0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                      0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                         0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                 0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                   0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\USER32.dll!CreateWindowExW                         0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                     0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                     0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo              0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                        0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[3376] C:\Windows\syswow64\ole32.dll!CoCreateInstance                         00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                   0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                     0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                     00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                    000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112               000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW            000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx            00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation            00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW              00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                 0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW               0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                   0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                      0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\USER32.dll!CreateWindowExW                      0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                  0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                  0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo           0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList              0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                     0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe[3392] C:\Windows\syswow64\ole32.dll!CoCreateInstance                      00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                           0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                             0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                             00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                            000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                       000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                    000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                    00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                    00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                      00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                         0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                       0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                           0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                              0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                             0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\ole32.dll!CoCreateInstance                              00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                      0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                        0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\USER32.dll!CreateWindowExW                              0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                          0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                          0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe[3552] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                   0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                                                    0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                                                      0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                                                      00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                                                     000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                                                000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                                             000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                                             00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                                             00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                                               00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                                  0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                                0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                                    0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                                       0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                               0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                                 0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                                       0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                                   0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                                   0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                                            0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                                      0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                                       00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                              0000000076871465 2 bytes [87, 76]
.text    C:\Program Files (x86)\AlienRespawn\TOASTER.EXE[3600] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                             00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!RegSetValueExW                                  000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!RegQueryValueExW                                0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!RegDeleteValueW                                 00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!K32GetMappedFileNameW                           00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189                            00000000775deecd 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!K32EnumProcessModulesEx                         00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!K32GetModuleInformation                         00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!K32GetModuleFileNameExW                         00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNEL32.dll!RegSetValueExA                                  000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                   000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                              000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                            000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                             000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                           000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\ole32.dll!CoCreateInstance                                   000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\Alienware\Command Center\AWCCServiceController.exe[3684] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                                  000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                             0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                               0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                               00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                              000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                         000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                      000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                      00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                      00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                        00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                           0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                         0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                             0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                        0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                          0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                            0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                            0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                     0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                               0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\AlienRespawn\COMPONENTS\SCHEDULER\STSERVICE.EXE[3724] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                                  0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                                    0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                                    00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                                   000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                              000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                           000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                           00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                           00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                             00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                              0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                  0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                     0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                             0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                               0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                     0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                 0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                 0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                          0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                    0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe[3732] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                     00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files\AVAST Software\Avast\AvastUI.exe[3792] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                              000000007555a2ba 1 byte [62]
.text    C:\Windows\system32\wbem\wmiprvse.exe[4080] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                          00000000775deecd 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                           0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                             0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                             00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                            000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                       000000007555a2ba 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                    000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                    00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                    00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                      00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                         0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                       0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                           0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                              0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                      0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                        0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\USER32.dll!CreateWindowExW                              0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                          0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                          0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                   0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                             0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\ole32.dll!CoCreateInstance                              00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                     0000000076871465 2 bytes [87, 76]
.text    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe[4160] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                    00000000768714bb 2 bytes [87, 76]
.text    ...                                                                                                                                                        * 2
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe[1736] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                            000000007555a2ba 1 byte [62]
.text    C:\Windows\system32\SearchIndexer.exe[4384] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                          00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe[5260] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112         000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                  0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                    0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                    00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                   000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                              000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                           000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                           00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                           00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                             00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                              0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                  0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                     0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                             0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                               0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                     0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                 0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                 0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                          0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                    0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe[5276] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                     00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                                      000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                                                 000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                                                   000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                                               000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                                                000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe[5768] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                                              000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                             0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                               0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                               00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                              000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                         000000007555a2ba 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                      000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                      00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                      00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                        00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                           0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                         0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                             0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                        0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                          0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                            0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                            0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                     0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                               0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe[4368] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!RegSetValueExW                               000000007758af40 7 bytes JMP 000000016fff0260
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!RegQueryValueExW                             0000000077594a60 5 bytes JMP 000000016fff01b8
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!RegDeleteValueW                              00000000775b2990 5 bytes JMP 000000016fff01f0
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!K32GetMappedFileNameW                        00000000775befe0 5 bytes JMP 000000016fff0148
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189                         00000000775deecd 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!K32EnumProcessModulesEx                      00000000775e99b0 7 bytes JMP 000000016fff00d8
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!K32GetModuleInformation                      00000000775f94d0 5 bytes JMP 000000016fff0180
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!K32GetModuleFileNameExW                      00000000775f9640 5 bytes JMP 000000016fff0110
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNEL32.dll!RegSetValueExA                               000000007761a500 7 bytes JMP 000000016fff0228
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNELBASE.dll!FreeLibrary                                000007fefd6c2db0 5 bytes JMP 000007fffd670180
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleW                           000007fefd6c37d0 7 bytes JMP 000007fffd6700d8
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW                             000007fefd6c8ef0 6 bytes JMP 000007fffd670148
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\KERNELBASE.dll!GetModuleHandleExW                         000007fefd6daf60 5 bytes JMP 000007fffd670110
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\GDI32.dll!D3DKMTQueryAdapterInfo                          000007feff0d89e0 8 bytes JMP 000007fffd6701f0
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\GDI32.dll!D3DKMTGetDisplayModeList                        000007feff0dbe40 8 bytes JMP 000007fffd6701b8
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\ole32.dll!CoCreateInstance                                000007feff407490 11 bytes JMP 000007fffd670228
.text    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe[3888] C:\Windows\system32\ole32.dll!CoSetProxyBlanket                               000007feff41bf00 7 bytes JMP 000007fffd670260
.text    C:\Program Files\Alienware\Command Center\AlienFusionService.exe[2432] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189                               00000000775deecd 1 byte [62]
.text    C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe[956] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112  000000007555a2ba 1 byte [62]
.text    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[6620] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112            000000007555a2ba 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!RegQueryValueExW                                0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExW                                  0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!RegSetValueExA                                  00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!RegDeleteValueW                                 000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112                            000000007555a2ba 1 byte [62]
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleFileNameExW                         000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!K32EnumProcessModulesEx                         00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!K32GetModuleInformation                         00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNEL32.dll!K32GetMappedFileNameW                           00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                              0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                            0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                   0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                           0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                             0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                   0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                               0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                               0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                        0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                  0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Program Files\Alienware\Command Center\AlienFusionController.exe[5608] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                   00000000768c9d0b 5 bytes JMP 00000001713a121c
.text    C:\Program Files (x86)\Nero\Update\NASvc.exe[2996] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                   000000007555a2ba 1 byte [62]
.text    C:\Windows\system32\AUDIODG.EXE[1920] C:\Windows\System32\kernel32.dll!GetBinaryTypeW + 189                                                                00000000775deecd 1 byte [62]
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!RegQueryValueExW                                                          0000000075531eee 7 bytes JMP 00000001713a1695
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!RegSetValueExW                                                            0000000075535b85 7 bytes JMP 00000001713a11a9
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!RegSetValueExA                                                            00000000755413e1 7 bytes JMP 00000001713a128a
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!RegDeleteValueW                                                           000000007554ea0d 7 bytes JMP 00000001713a1244
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                      000000007555a2ba 1 byte [62]
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!K32GetModuleFileNameExW                                                   000000007555b1d3 5 bytes JMP 00000001713a15aa
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!K32EnumProcessModulesEx                                                   00000000755d88b4 7 bytes JMP 00000001713a1339
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!K32GetModuleInformation                                                   00000000755d8939 5 bytes JMP 00000001713a16d6
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\kernel32.dll!K32GetMappedFileNameW                                                     00000000755d8c8f 5 bytes JMP 00000001713a170d
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleW                                                        0000000076df1d1b 5 bytes JMP 00000001713a11c2
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\KERNELBASE.dll!GetModuleHandleExW                                                      0000000076df1dc9 5 bytes JMP 00000001713a1014
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW                                                          0000000076df2aa4 5 bytes JMP 00000001713a1555
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\KERNELBASE.dll!FreeLibrary                                                             0000000076df2d0a 5 bytes JMP 00000001713a1271
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\GDI32.dll!D3DKMTGetDisplayModeList                                                     0000000076c7e96b 5 bytes JMP 00000001713a15c3
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\GDI32.dll!D3DKMTQueryAdapterInfo                                                       0000000076c7eba5 5 bytes JMP 00000001713a1186
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\USER32.dll!CreateWindowExW                                                             0000000076cf8a29 5 bytes JMP 00000001713a1726
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesA                                                         0000000076d04572 5 bytes JMP 00000001713a10a0
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\USER32.dll!EnumDisplayDevicesW                                                         0000000076d1e567 5 bytes JMP 00000001713a1415
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\USER32.dll!DisplayConfigGetDeviceInfo                                                  0000000076d57a5c 5 bytes JMP 00000001713a15d2
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\ole32.dll!CoSetProxyBlanket                                                            0000000076895ea5 5 bytes JMP 00000001713a15fa
.text    C:\Users\Engel\Desktop\gmer_2.1.19163.exe[6524] C:\Windows\syswow64\ole32.dll!CoCreateInstance                                                             00000000768c9d0b 5 bytes JMP 00000001713a121c

Alt 29.11.2013, 09:02   #5
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


GMER Teil 2
Code:
ATTFilter
---- Threads - GMER 2.1 ----

Thread   C:\Windows\System32\svchost.exe [7128:4276]                                                                                                                000007fee6379688

---- Services - GMER 2.1 ----

Service  C:\Windows\system32\drivers\aswFsBlk.sys (*** hidden *** )                                                                                                 [AUTO] aswFsBlk                                                                                                                                              <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswMonFlt.sys (*** hidden *** )                                                                                                [AUTO] aswMonFlt                                                                                                                                             <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswRdr2.sys (*** hidden *** )                                                                                                  [SYSTEM] aswRdr                                                                                                                                              <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswRvrt.sys (*** hidden *** )                                                                                                  [BOOT] aswRvrt                                                                                                                                               <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswSnx.sys (*** hidden *** )                                                                                                   [SYSTEM] aswSnx                                                                                                                                              <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswSP.sys (*** hidden *** )                                                                                                    [SYSTEM] aswSP                                                                                                                                               <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswTdi.sys (*** hidden *** )                                                                                                   [SYSTEM] aswTdi                                                                                                                                              <-- ROOTKIT !!!
Service  C:\Windows\system32\drivers\aswVmm.sys (*** hidden *** )                                                                                                   [BOOT] aswVmm                                                                                                                                                <-- ROOTKIT !!!
Service  C:\Program Files\AVAST Software\Avast\AvastSvc.exe (*** hidden *** )                                                                                       [AUTO] avast! Antivirus                                                                                                                                      <-- ROOTKIT !!!

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Type                                                                                                       2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Start                                                                                                      2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@ErrorControl                                                                                               1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DisplayName                                                                                                aswFsBlk
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Group                                                                                                      FSFilter Activity Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DependOnService                                                                                            FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Description                                                                                                Avast! Mini-filter Driver
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Tag                                                                                                        2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@ImagePath                                                                                                  \??\C:\Windows\system32\drivers\aswFsBlk.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances                                                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances@DefaultInstance                                                                                  aswFsBlk Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance                                                                                
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude                                                                       388400
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Flags                                                                          0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk                                                                                                            
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Type                                                                                                      2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Start                                                                                                     2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ErrorControl                                                                                              1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ImagePath                                                                                                 \??\C:\Windows\system32\drivers\aswMonFlt.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DisplayName                                                                                               aswMonFlt
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Group                                                                                                     FSFilter Anti-Virus
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DependOnService                                                                                           FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Description                                                                                               avast! mini-filter driver (aswMonFlt)
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances                                                                                                 
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances@DefaultInstance                                                                                 aswMonFlt Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude                                                                     320700
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Flags                                                                        0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt                                                                                                           
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Type                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Start                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DisplayName                                                                                                  aswRdr
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Group                                                                                                        PNP_TDI
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DependOnService                                                                                              tcpip?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Description                                                                                                  avast! WFP Redirect driver
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ImagePath                                                                                                    \??\C:\Windows\system32\drivers\aswRdr2.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters                                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@MSIgnoreLSPDefault                                                                                
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@WSIgnoreLSPDefault                                                                                nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRdr                                                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Type                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Start                                                                                                       0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@ErrorControl                                                                                                1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@DisplayName                                                                                                 avast! Revert
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Description                                                                                                 avast! Revert
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters                                                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@BootCounter                                                                                      8
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@TickCounter                                                                                      317995
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@SystemRoot                                                                                       \Device\Harddisk0\Partition3\Windows
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@ImproperShutdown                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswRvrt                                                                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Type                                                                                                         2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Start                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DisplayName                                                                                                  aswSnx
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Group                                                                                                        FSFilter Virtualization
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DependOnService                                                                                              FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Description                                                                                                  avast! virtualization driver (aswSnx)
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Tag                                                                                                          2
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx@ImagePath                                                                                                    \??\C:\Windows\system32\drivers\aswSnx.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances                                                                                                    
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances@DefaultInstance                                                                                    aswSnx Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance                                                                                    
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Altitude                                                                           137600
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Flags                                                                              0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters                                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@ProgramFolder                                                                                     \??\C:\Program Files\AVAST Software\Avast
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@DataFolder                                                                                        \??\C:\ProgramData\AVAST Software\Avast
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSnx                                                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Type                                                                                                          1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Start                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@ErrorControl                                                                                                  1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@DisplayName                                                                                                   aswSP
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@Description                                                                                                   avast! Self Protection
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP@ImagePath                                                                                                     \??\C:\Windows\system32\drivers\aswSP.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters                                                                                                    
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@BehavShield                                                                                        0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFolder                                                                                      \??\C:\Program Files\AVAST Software\Avast
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@DataFolder                                                                                         \??\C:\ProgramData\AVAST Software\Avast
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFilesFolder                                                                                 \??\C:\Program Files
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@GadgetFolder                                                                                       \??\C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswSP                                                                                                               
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Type                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Start                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DisplayName                                                                                                  aswTdi
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Group                                                                                                        PNP_TDI
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DependOnService                                                                                              tcpip?
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Description                                                                                                  aswTdi
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Tag                                                                                                          10
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi@ImagePath                                                                                                    \??\C:\Windows\system32\drivers\aswTdi.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswTdi                                                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Type                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Start                                                                                                        0
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@ErrorControl                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@DisplayName                                                                                                  avast! VM Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Description                                                                                                  avast! VM Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm\Parameters                                                                                                   
Reg      HKLM\SYSTEM\CurrentControlSet\services\aswVmm                                                                                                              
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Type                                                                                               288
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Start                                                                                              2
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ErrorControl                                                                                       1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ImagePath                                                                                          "C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DisplayName                                                                                        avast! Antivirus
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Group                                                                                              ShellSvcGroup
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DependOnService                                                                                    aswMonFlt?RpcSS?
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@WOW64                                                                                              1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ObjectName                                                                                         LocalSystem
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ServiceSidType                                                                                     1
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Description                                                                                        Verwaltet und implementiert die avast! Antivirus Dienste auf diesem Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus Container sowie die Zeitplan.
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus\Parameters                                                                                         
Reg      HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus                                                                                                    
Reg      HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9ab2a8d8                                                                                
Reg      HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9ab2a8d8@90c1155e725f                                                                   0x93 0x27 0xFF 0x80 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                                                           
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                        C:\Program Files (x86)\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                        0x00 0x00 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                        0
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                     0x19 0x6C 0x40 0x9E ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                                                                  
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                               0xA0 0x02 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                            0x53 0x8C 0xF3 0xC2 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                                                             
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                       0x50 0x0E 0x04 0xC2 ...
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Type                                                                                                           2
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Start                                                                                                          2
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@ErrorControl                                                                                                   1
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DisplayName                                                                                                    aswFsBlk
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Group                                                                                                          FSFilter Activity Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DependOnService                                                                                                FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Description                                                                                                    Avast! Mini-filter Driver
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Tag                                                                                                            2
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk@ImagePath                                                                                                      \??\C:\Windows\system32\drivers\aswFsBlk.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances (not active ControlSet)                                                                              
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances@DefaultInstance                                                                                      aswFsBlk Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance (not active ControlSet)                                                            
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude                                                                           388400
Reg      HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Flags                                                                              0
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Type                                                                                                          2
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Start                                                                                                         2
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ErrorControl                                                                                                  1
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ImagePath                                                                                                     \??\C:\Windows\system32\drivers\aswMonFlt.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DisplayName                                                                                                   aswMonFlt
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Group                                                                                                         FSFilter Anti-Virus
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DependOnService                                                                                               FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Description                                                                                                   avast! mini-filter driver (aswMonFlt)
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances (not active ControlSet)                                                                             
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances@DefaultInstance                                                                                     aswMonFlt Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance (not active ControlSet)                                                          
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude                                                                         320700
Reg      HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Flags                                                                            0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Type                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Start                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@ErrorControl                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@DisplayName                                                                                                      aswRdr
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Group                                                                                                            PNP_TDI
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@DependOnService                                                                                                  tcpip?
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@Description                                                                                                      avast! WFP Redirect driver
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr@ImagePath                                                                                                        \??\C:\Windows\system32\drivers\aswRdr2.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters (not active ControlSet)                                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@MSIgnoreLSPDefault                                                                                    
Reg      HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@WSIgnoreLSPDefault                                                                                    nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Type                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Start                                                                                                           0
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@ErrorControl                                                                                                    1
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@DisplayName                                                                                                     avast! Revert
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt@Description                                                                                                     avast! Revert
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters (not active ControlSet)                                                                              
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@BootCounter                                                                                          8
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@TickCounter                                                                                          317995
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@SystemRoot                                                                                           \Device\Harddisk0\Partition3\Windows
Reg      HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@ImproperShutdown                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Type                                                                                                             2
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Start                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@ErrorControl                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@DisplayName                                                                                                      aswSnx
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Group                                                                                                            FSFilter Virtualization
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@DependOnService                                                                                                  FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Description                                                                                                      avast! virtualization driver (aswSnx)
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@Tag                                                                                                              2
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx@ImagePath                                                                                                        \??\C:\Windows\system32\drivers\aswSnx.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances (not active ControlSet)                                                                                
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances@DefaultInstance                                                                                        aswSnx Instance
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance (not active ControlSet)                                                                
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Altitude                                                                               137600
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Flags                                                                                  0
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters (not active ControlSet)                                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@ProgramFolder                                                                                         \??\C:\Program Files\AVAST Software\Avast
Reg      HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@DataFolder                                                                                            \??\C:\ProgramData\AVAST Software\Avast
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Type                                                                                                              1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Start                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@ErrorControl                                                                                                      1
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@DisplayName                                                                                                       aswSP
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@Description                                                                                                       avast! Self Protection
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP@ImagePath                                                                                                         \??\C:\Windows\system32\drivers\aswSP.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters (not active ControlSet)                                                                                
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@BehavShield                                                                                            0
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFolder                                                                                          \??\C:\Program Files\AVAST Software\Avast
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@DataFolder                                                                                             \??\C:\ProgramData\AVAST Software\Avast
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFilesFolder                                                                                     \??\C:\Program Files
Reg      HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@GadgetFolder                                                                                           \??\C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Type                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Start                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@ErrorControl                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@DisplayName                                                                                                      aswTdi
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Group                                                                                                            PNP_TDI
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@DependOnService                                                                                                  tcpip?
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Description                                                                                                      aswTdi
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@Tag                                                                                                              10
Reg      HKLM\SYSTEM\ControlSet002\services\aswTdi@ImagePath                                                                                                        \??\C:\Windows\system32\drivers\aswTdi.sys
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Type                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Start                                                                                                            0
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@ErrorControl                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@DisplayName                                                                                                      avast! VM Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm@Description                                                                                                      avast! VM Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\aswVmm\Parameters (not active ControlSet)                                                                               
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Type                                                                                                   288
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Start                                                                                                  2
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ErrorControl                                                                                           1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ImagePath                                                                                              "C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DisplayName                                                                                            avast! Antivirus
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Group                                                                                                  ShellSvcGroup
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DependOnService                                                                                        aswMonFlt?RpcSS?
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@WOW64                                                                                                  1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ObjectName                                                                                             LocalSystem
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ServiceSidType                                                                                         1
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Description                                                                                            Verwaltet und implementiert die avast! Antivirus Dienste auf diesem Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus Container sowie die Zeitplan.
Reg      HKLM\SYSTEM\ControlSet002\services\avast! Antivirus\Parameters (not active ControlSet)                                                                     
Reg      HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9ab2a8d8 (not active ControlSet)                                                            
Reg      HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9ab2a8d8@90c1155e725f                                                                       0x93 0x27 0xFF 0x80 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                                                       
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                            C:\Program Files (x86)\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                            0x00 0x00 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                            0
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                         0x19 0x6C 0x40 0x9E ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)                                              
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                                   0xA0 0x02 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                                0x53 0x8C 0xF3 0xC2 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)                                         
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                           0x50 0x0E 0x04 0xC2 ...

---- EOF - GMER 2.1 ----


Alt 30.11.2013, 14:42   #6
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77,

vielen Dank für die Logs. Ich sehe in deinen Logs nur eine Startseitenänderung und eine Suchumleitung von easylife.com und eine nicht erwünschenswerte Erweiterung.
Die Rootkits, die GMER da anzeigt sind Fehlalarme.

Zitat:
Im Taskmanager befinden sich diverse Prozesse ohne Benutzer oder Beschreibung und ein gewisser Prozess namens conhost.exe kommt dabei 3fach vor.
Conhost.exe startet immer wenn ein Fenster der Windowskonsole (cmd.exe) offen ist, für jedes Fenster startet dann eine Conhost.exe, kannst du mal einen Screenshot vom Taskmanager machen, wenn das vorkommt, in deinen Logs sehe ich sie nämlich jetzt grad nicht laufen.

Schritt 1
Bitte deinstalliere folgende Programme:
EasyLife Search
OptimizerPro
Dazu gehe auf:
den Windowsbutton in der Taskleiste --> Systemsteuerung --> Programme (Unterpunkt Programme deinstallieren) --> Programm auswählen --> entfernen

Schritt 2
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.easylifeapp.com/?pid=798&src=ie1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF DefaultSearchEngine: EasyLife
FF SearchEngineOrder.1: EasyLife
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "EasyLife");: user_pref("browser.search.order.1,S", "EasyLife");
FF SelectedSearchEngine: EasyLife
FF Homepage: hxxp://search.easylifeapp.com/?pid=798&src=ff1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF Keyword.URL: hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=
FF Extension: Browwse22saave - C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com
C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com
CHR Extension: (Browwse22saave) - C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1
C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1
c:\progra~2\browse~1\sprote~1.dll

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 3
Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, wird ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.
__________________
--> Verdacht auf Virenbefall

Alt 01.12.2013, 23:13   #7
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo Sandra,
hier ist der fixlog.

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-12-2013
Ran by Engel at 2013-12-01 23:09:03 Run:1
Running from C:\Users\Engel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.easylifeapp.com/?pid=798&src=ie1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF DefaultSearchEngine: EasyLife
FF SearchEngineOrder.1: EasyLife
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "EasyLife");: user_pref("browser.search.order.1,S", "EasyLife");
FF SelectedSearchEngine: EasyLife
FF Homepage: hxxp://search.easylifeapp.com/?pid=798&src=ff1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF Keyword.URL: hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=
FF Extension: Browwse22saave - C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com
C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com
CHR Extension: (Browwse22saave) - C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1
C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1
c:\progra~2\browse~1\sprote~1.dll
*****************

HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
Firefox homepage deleted successfully.
Firefox Keyword.URL deleted successfully.
C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com => Moved successfully.
"C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\omsabjj@mbom.com" => File/Directory not found.
C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb => Moved successfully.
"C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljkjaodjjgigpihjngpbbeooomfijljb\1" => File/Directory not found.
"c:\progra~2\browse~1\sprote~1.dll" => File/Directory not found.

==== End of Fixlog ====
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-12-2013
Ran by Engel (administrator) on ENGEL-PC on 01-12-2013 23:10:44
Running from C:\Users\Engel\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\PowerDVD12Agent.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.49\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [Command Center Controllers] - C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [12656 2012-06-15] (Alienware)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HotKeysCmds] - "C:\Windows\system32\hkcmd.exe"
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {06e19868-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {06e1987b-0d23-11e2-b6e2-d0df9ab2a8d8} - G:\AutoRun.exe
MountPoints2: {06e19887-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d444abf0-f58d-11e2-beea-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d7db91e2-120a-11e2-b3bc-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {dd5866f9-0e1b-11e2-a177-d0df9ab2a8d8} - F:\AutoRun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] - C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1635696 2011-03-08] ()
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EsternTimesMouseExRun] - C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe [3351040 2013-04-23] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\376f8352-1d8f-471a-b1e0-903c6e889e33.exe [180184 2013-11-23] (AVAST Software)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll  c:\progra~2\browse~1\sprote~1.dll, C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 141.35.1.16 141.35.1.80

FireFox:
========
FF ProfilePath: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default
FF DefaultSearchEngine: EasyLife
FF SearchEngineOrder.1: EasyLife
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "EasyLife");: user_pref("browser.search.order.1,S", "EasyLife");
FF SelectedSearchEngine: EasyLife
FF Homepage: hxxp://search.easylifeapp.com/?pid=798&src=ff1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE
FF Keyword.URL: hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=
FF DefaultSearchEngine: Google 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\searchplugins\EasyLife.xml
FF Extension: 									 em:name="Free YouTube Download (Free Studio) Menu" - C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-23] (AVAST Software)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [763904 2011-03-30] ()
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [87336 2012-01-12] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [75048 2012-01-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296232 2012-01-12] (CyberLink)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2013-11-22] ()

==================== Drivers (Whitelisted) ====================

R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [2705000 2011-03-30] (Bigfoot Networks, Inc.)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-23] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-23] ()
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [68712 2011-03-30] (Bigfoot Networks, Inc.)
R3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [38472 2011-02-02] (Dell Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [82928 2011-10-27] (Cyberlink Corp.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [300320 2013-11-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [146928 2012-01-11] (CyberLink Corp.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [x]
S4 sptd; \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-01 23:02 - 2013-12-01 23:02 - 01959184 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-11-29 20:26 - 2013-11-29 20:27 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-12-01 23:10 - 00017578 _____ C:\Users\Engel\Desktop\FRST.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:47 - 2013-12-01 22:13 - 00000840 _____ C:\Windows\setupact.log
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-28 21:42 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-23 16:23 - 2013-11-23 16:24 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-22 21:12 - 2013-11-22 21:32 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 21:05 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-11-22 21:05 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2013-11-21 20:16 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\system32\NV
2013-11-20 13:51 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-20 07:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-14 19:52 - 2013-11-14 19:53 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:49 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 16:36 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:36 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 16:36 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 16:36 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 16:36 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 16:36 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:36 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 16:36 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:36 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:36 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 16:36 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:36 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:48 - 2013-11-21 19:50 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-14 13:48 - 2013-11-15 08:38 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-14 13:45 - 2013-11-30 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-14 13:45 - 2013-11-20 13:49 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:38 - 2013-04-11 16:12 - 00019392 _____ (Dll-Files.com) C:\Windows\system32\roboot64.exe
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-07 11:07 - 2013-11-07 20:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-07 11:06 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-11-07 11:06 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

==================== One Month Modified Files and Folders =======

2013-12-01 23:10 - 2013-11-28 22:13 - 00017578 _____ C:\Users\Engel\Desktop\FRST.txt
2013-12-01 23:05 - 2013-05-23 13:23 - 00003460 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-12-01 23:05 - 2012-04-03 15:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-01 23:02 - 2013-12-01 23:02 - 01959184 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-12-01 22:21 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-01 22:21 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-01 22:17 - 2012-11-23 08:45 - 01723522 _____ C:\Windows\WindowsUpdate.log
2013-12-01 22:14 - 2012-07-07 09:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-01 22:14 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-12-01 22:14 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-12-01 22:14 - 2011-09-23 20:27 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-12-01 22:13 - 2013-11-28 21:47 - 00000840 _____ C:\Windows\setupact.log
2013-12-01 22:13 - 2011-09-23 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-01 22:13 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-30 13:56 - 2011-11-27 12:46 - 00000000 ____D C:\Users\Engel\AppData\Roaming\vlc
2013-11-30 13:45 - 2013-11-14 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-30 10:01 - 2013-05-05 17:31 - 00000000 ____D C:\Users\Engel\Downloads\frisch geladen
2013-11-30 09:21 - 2013-04-10 16:06 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-29 20:27 - 2013-11-29 20:26 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-29 20:26 - 2012-10-29 16:56 - 00000000 ____D C:\Users\Engel\Downloads\Festplatte WD
2013-11-29 20:08 - 2010-11-21 07:50 - 00696870 _____ C:\Windows\system32\perfh007.dat
2013-11-29 20:08 - 2010-11-21 07:50 - 00148134 _____ C:\Windows\system32\perfc007.dat
2013-11-29 20:08 - 2009-07-14 06:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:04 - 2011-09-29 12:26 - 00000000 ____D C:\Users\Engel
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:45 - 2013-04-09 13:56 - 00000000 ____D C:\ProgramData\BetterSoft
2013-11-28 21:45 - 2013-04-09 13:55 - 00000000 ____D C:\ProgramData\Browwse22saave
2013-11-28 21:45 - 2013-04-09 13:54 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-27 14:35 - 2011-09-29 15:12 - 00000000 ____D C:\Users\Engel\AppData\Roaming\DAEMON Tools Lite
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-24 14:01 - 2011-09-29 12:33 - 00000000 ____D C:\Users\Engel\AppData\Local\Adobe
2013-11-24 13:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-24 12:16 - 2012-04-03 15:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-24 12:16 - 2012-04-03 15:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 12:16 - 2011-09-23 20:04 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-23 16:24 - 2013-11-23 16:23 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-23 11:31 - 2013-03-03 17:54 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-23 11:31 - 2013-03-03 17:54 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-23 11:31 - 2012-02-26 13:01 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-23 11:31 - 2011-09-29 12:45 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-23 11:31 - 2011-09-29 12:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-23 11:26 - 2011-09-29 12:44 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-23 11:25 - 2011-09-29 12:45 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-11-22 21:39 - 2013-10-23 06:16 - 00000116 _____ C:\Users\Engel\Desktop\Neues Textdokument.txt
2013-11-22 21:32 - 2013-11-22 21:12 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-22 20:04 - 2011-09-29 18:40 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\system32\NV
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2011-09-23 12:56 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 20:02 - 2011-09-29 12:30 - 00109392 _____ C:\Users\Engel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-21 20:01 - 2009-07-14 05:45 - 00422896 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-21 19:50 - 2013-11-14 13:48 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:40 - 2011-09-23 20:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-21 19:39 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Local\Dell
2013-11-21 19:39 - 2011-09-23 20:30 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-11-21 19:36 - 2011-09-23 21:47 - 00000000 ____D C:\ProgramData\Dell
2013-11-21 19:29 - 2011-09-23 20:38 - 00000000 ____D C:\ProgramData\Sonic
2013-11-21 19:28 - 2011-09-23 20:37 - 00000000 ____D C:\ProgramData\Roxio
2013-11-21 19:26 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-21 19:24 - 2011-09-29 19:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-21 19:14 - 2011-10-09 14:41 - 00000000 ____D C:\Program Files (x86)\Activision
2013-11-21 14:32 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther
2013-11-21 09:17 - 2011-09-29 12:30 - 00001387 _____ C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-20 23:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-20 19:12 - 2011-10-14 09:00 - 00000000 ____D C:\ProgramData\PCDr
2013-11-20 13:54 - 2011-09-23 12:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-20 13:49 - 2013-11-14 13:45 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-20 08:08 - 2011-09-29 15:03 - 00000000 ____D C:\Users\Engel\Downloads\Bleach Chapter
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 19:18 - 2011-09-29 12:38 - 00000000 ____D C:\Program Files (x86)\Opera
2013-11-18 16:44 - 2011-09-29 15:54 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Skype
2013-11-18 10:27 - 2011-09-29 16:13 - 00000000 ____D C:\Users\Engel\Documents\Trainer
2013-11-18 10:22 - 2011-09-29 15:04 - 00000000 ____D C:\Users\Engel\Downloads\One Piece Chapter
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-15 08:40 - 2012-03-11 09:47 - 00000000 ____D C:\Users\UpdatusUser.Engel-PC
2013-11-15 08:38 - 2013-11-14 13:48 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-15 08:38 - 2009-07-14 03:34 - 84934656 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 17301504 _____ C:\Windows\system32\config\SYSTEM.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2013-11-14 23:57 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2013-11-14 23:56 - 2011-09-29 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 23:55 - 2013-08-14 20:43 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 23:53 - 2011-10-02 12:05 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 19:53 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:52 - 2013-11-14 19:49 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 19:09 - 2012-04-09 12:43 - 00000000 ____D C:\Program Files\AlienAutopsy
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 12:58 - 2013-11-20 13:51 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2011-09-23 21:43 - 15218504 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 02697248 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01242400 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00141336 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-14 10:29 - 2011-12-24 19:20 - 00000000 ____D C:\Program Files (x86)\WB Games
2013-11-14 10:26 - 2011-12-24 19:58 - 00000000 ____D C:\Users\Engel\Documents\WB Games
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 18:08 - 2011-09-30 11:28 - 00000000 ____D C:\Users\Engel\AppData\Local\Deployment
2013-11-11 16:02 - 2011-06-26 16:48 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2011-06-26 16:48 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2011-06-26 23:49 - 03467927 _____ C:\Windows\system32\nvcoproc.bin
2013-11-11 16:01 - 2011-06-26 23:49 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2011-06-26 16:49 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 21:47 - 2013-10-28 20:58 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-28 20:58 - 00955168 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-07 20:45 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 08:34

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

Alt 02.12.2013, 12:03   #8
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77,
super. Das deinstallieren hat auch funktioniert? Ich seh da immer noch easylife in deinen Log
Wir müssem noch eine Kleinigkeit fixen.

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll  c:\progra~2\browse~1\sprote~1.dll, C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 2
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 3
Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, wird ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.
Alt 02.12.2013, 12:15   #9
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo,
eigentlich hat die Deinstallation funktioniert. Soll ich vllt. den CCleaner noch drüber laufen lassen damit wirklich alles von dem Programm weg ist?

Fixlog. txt
Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-12-2013
Ran by Engel at 2013-12-02 12:06:21 Run:2
Running from C:\Users\Engel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll  c:\progra~2\browse~1\sprote~1.dll, C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

*****************

HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.

==== End of Fixlog ====
AdwCleaner log

Code:
ATTFilter
# AdwCleaner v3.014 - Bericht erstellt am 02/12/2013 um 12:08:17
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Engel - ENGEL-PC
# Gestartet von : C:\Users\Engel\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\BetterSoft
Ordner Gelöscht : C:\ProgramData\SoftSafe
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Engel\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Engel\AppData\Roaming\NCdownloader
Ordner Gelöscht : C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\searchplugins\EasyLife.xml

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Schlüssel Gelöscht : HKLM\Software\SP Global
Schlüssel Gelöscht : HKLM\Software\SProtector

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ Datei : C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default\prefs.js ]

Zeile gelöscht : user_pref("aol_toolbar.default.homepage.check", false);
Zeile gelöscht : user_pref("aol_toolbar.default.search.check", false);
Zeile gelöscht : user_pref("browser.search.defaultenginename", "EasyLife");
Zeile gelöscht : user_pref("browser.search.defaultenginename,S", "EasyLife");
Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=");
Zeile gelöscht : user_pref("browser.search.order.1", "EasyLife");
Zeile gelöscht : user_pref("browser.search.order.1,S", "EasyLife");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "EasyLife");
Zeile gelöscht : user_pref("browser.search.selectedEngine,S", "EasyLife");
Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://search.easylifeapp.com/?pid=798&src=ff1&r=2013/04/09&hid=4227944131&lg=EN&cc=DE");
Zeile gelöscht : user_pref("extensions.51640f99741a1.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) return;}c[...]
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Zeile gelöscht : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
Zeile gelöscht : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
Zeile gelöscht : user_pref("extensions.wrc.SearchRules.rambler.ru.style", ".WRCN {display:none} .search-results .title + .WRCN {display:inline !important; background: url(\"IMAGE\") right no-repeat}");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://search.easylifeapp.com/?pid=798&src=ff2&r=2013/04/09&hid=4227944131&lg=EN&cc=DE&l=1&q=");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Zeile gelöscht : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Zeile gelöscht : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Zeile gelöscht : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Zeile gelöscht : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v

[ Datei : C:\Users\Engel\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [4913 octets] - [02/12/2013 12:07:26]
AdwCleaner[S0].txt - [4832 octets] - [02/12/2013 12:08:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4892 octets] ##########
FRST Log


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-12-2013
Ran by Engel (administrator) on ENGEL-PC on 02-12-2013 12:14:18
Running from C:\Users\Engel\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\DSUpd.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\AlienRespawn\Components\Scheduler\STService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
() C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.49\opera_crashreporter.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [Command Center Controllers] - C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [12656 2012-06-15] (Alienware)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HotKeysCmds] - "C:\Windows\system32\hkcmd.exe"
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {06e19868-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {06e1987b-0d23-11e2-b6e2-d0df9ab2a8d8} - G:\AutoRun.exe
MountPoints2: {06e19887-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d444abf0-f58d-11e2-beea-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d7db91e2-120a-11e2-b3bc-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {dd5866f9-0e1b-11e2-a177-d0df9ab2a8d8} - F:\AutoRun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] - C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1635696 2011-03-08] ()
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EsternTimesMouseExRun] - C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe [3351040 2013-04-23] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\376f8352-1d8f-471a-b1e0-903c6e889e33.exe [180184 2013-11-23] (AVAST Software)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 141.35.1.16 141.35.1.80

FireFox:
========
FF ProfilePath: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default
FF DefaultSearchEngine: Google 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-23] (AVAST Software)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [763904 2011-03-30] ()
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [87336 2012-01-12] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [75048 2012-01-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296232 2012-01-12] (CyberLink)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2013-11-22] ()

==================== Drivers (Whitelisted) ====================

R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [2705000 2011-03-30] (Bigfoot Networks, Inc.)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-23] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-23] ()
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [68712 2011-03-30] (Bigfoot Networks, Inc.)
R3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [38472 2011-02-02] (Dell Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [82928 2011-10-27] (Cyberlink Corp.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [300320 2013-11-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [146928 2012-01-11] (CyberLink Corp.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [x]
S4 sptd; \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-02 12:07 - 2013-12-02 12:08 - 00000000 ____D C:\AdwCleaner
2013-12-02 12:06 - 2013-12-02 12:07 - 01110034 _____ C:\Users\Engel\Desktop\adwcleaner.exe
2013-12-01 23:02 - 2013-12-01 23:02 - 01959184 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-11-29 20:26 - 2013-11-29 20:27 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-12-02 12:14 - 00015346 _____ C:\Users\Engel\Desktop\FRST.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:47 - 2013-12-02 12:09 - 00001008 _____ C:\Windows\setupact.log
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-28 21:42 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-23 16:23 - 2013-11-23 16:24 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-22 21:12 - 2013-11-22 21:32 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 21:05 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-11-22 21:05 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2013-11-21 20:16 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-20 13:54 - 2013-11-21 20:18 - 00000000 ____D C:\Windows\system32\NV
2013-11-20 13:51 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-20 07:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-14 19:52 - 2013-11-14 19:53 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:49 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 16:36 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:36 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 16:36 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 16:36 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 16:36 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 16:36 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:36 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 16:36 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:36 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:36 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 16:36 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:36 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:48 - 2013-11-21 19:50 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-14 13:48 - 2013-11-15 08:38 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-14 13:45 - 2013-11-30 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-14 13:45 - 2013-11-20 13:49 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-07 11:07 - 2013-11-07 20:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-07 11:06 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-11-07 11:06 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

==================== One Month Modified Files and Folders =======

2013-12-02 12:14 - 2013-11-28 22:13 - 00015346 _____ C:\Users\Engel\Desktop\FRST.txt
2013-12-02 12:11 - 2011-09-23 20:27 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-12-02 12:10 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-12-02 12:10 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-12-02 12:09 - 2013-11-28 21:47 - 00001008 _____ C:\Windows\setupact.log
2013-12-02 12:09 - 2011-09-23 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-02 12:09 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-02 12:08 - 2013-12-02 12:07 - 00000000 ____D C:\AdwCleaner
2013-12-02 12:08 - 2012-11-23 08:45 - 01743199 _____ C:\Windows\WindowsUpdate.log
2013-12-02 12:07 - 2013-12-02 12:06 - 01110034 _____ C:\Users\Engel\Desktop\adwcleaner.exe
2013-12-02 12:05 - 2012-04-03 15:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-02 10:20 - 2010-11-21 07:50 - 00696870 _____ C:\Windows\system32\perfh007.dat
2013-12-02 10:20 - 2010-11-21 07:50 - 00148134 _____ C:\Windows\system32\perfc007.dat
2013-12-02 10:20 - 2009-07-14 06:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-01 23:05 - 2013-05-23 13:23 - 00003460 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-12-01 23:02 - 2013-12-01 23:02 - 01959184 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-12-01 22:21 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-01 22:21 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-01 22:14 - 2012-07-07 09:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-30 13:56 - 2011-11-27 12:46 - 00000000 ____D C:\Users\Engel\AppData\Roaming\vlc
2013-11-30 13:45 - 2013-11-14 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-30 10:01 - 2013-05-05 17:31 - 00000000 ____D C:\Users\Engel\Downloads\frisch geladen
2013-11-30 09:21 - 2013-04-10 16:06 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-29 20:27 - 2013-11-29 20:26 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-29 20:26 - 2012-10-29 16:56 - 00000000 ____D C:\Users\Engel\Downloads\Festplatte WD
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:04 - 2011-09-29 12:26 - 00000000 ____D C:\Users\Engel
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:47 - 2013-11-28 21:47 - 00000000 _____ C:\Windows\setuperr.log
2013-11-28 21:46 - 2013-11-28 21:46 - 00002726 _____ C:\Windows\PFRO.log
2013-11-28 21:45 - 2013-04-09 13:55 - 00000000 ____D C:\ProgramData\Browwse22saave
2013-11-28 21:45 - 2013-04-09 13:54 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-27 14:35 - 2011-09-29 15:12 - 00000000 ____D C:\Users\Engel\AppData\Roaming\DAEMON Tools Lite
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-24 14:01 - 2011-09-29 12:33 - 00000000 ____D C:\Users\Engel\AppData\Local\Adobe
2013-11-24 13:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-24 12:16 - 2012-04-03 15:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-24 12:16 - 2012-04-03 15:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 12:16 - 2011-09-23 20:04 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-23 16:24 - 2013-11-23 16:23 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-23 11:31 - 2013-03-03 17:54 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-23 11:31 - 2013-03-03 17:54 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-23 11:31 - 2012-02-26 13:01 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-23 11:31 - 2011-09-29 12:45 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-23 11:31 - 2011-09-29 12:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-23 11:26 - 2011-09-29 12:44 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-23 11:25 - 2011-09-29 12:45 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-11-22 21:39 - 2013-10-23 06:16 - 00000116 _____ C:\Users\Engel\Desktop\Neues Textdokument.txt
2013-11-22 21:32 - 2013-11-22 21:12 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-22 20:04 - 2011-09-29 18:40 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-21 20:18 - 2013-11-20 13:54 - 00000000 ____D C:\Windows\system32\NV
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2011-09-23 12:56 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 20:02 - 2011-09-29 12:30 - 00109392 _____ C:\Users\Engel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-21 20:01 - 2009-07-14 05:45 - 00422896 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-21 19:50 - 2013-11-14 13:48 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:40 - 2011-09-23 20:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-21 19:39 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Local\Dell
2013-11-21 19:39 - 2011-09-23 20:30 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-11-21 19:36 - 2011-09-23 21:47 - 00000000 ____D C:\ProgramData\Dell
2013-11-21 19:29 - 2011-09-23 20:38 - 00000000 ____D C:\ProgramData\Sonic
2013-11-21 19:28 - 2011-09-23 20:37 - 00000000 ____D C:\ProgramData\Roxio
2013-11-21 19:26 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-21 19:24 - 2011-09-29 19:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-21 19:14 - 2011-10-09 14:41 - 00000000 ____D C:\Program Files (x86)\Activision
2013-11-21 14:32 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther
2013-11-21 09:17 - 2011-09-29 12:30 - 00001387 _____ C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-20 23:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-20 19:12 - 2011-10-14 09:00 - 00000000 ____D C:\ProgramData\PCDr
2013-11-20 13:54 - 2011-09-23 12:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-20 13:49 - 2013-11-14 13:45 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-20 08:08 - 2011-09-29 15:03 - 00000000 ____D C:\Users\Engel\Downloads\Bleach Chapter
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 19:18 - 2011-09-29 12:38 - 00000000 ____D C:\Program Files (x86)\Opera
2013-11-18 16:44 - 2011-09-29 15:54 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Skype
2013-11-18 10:27 - 2011-09-29 16:13 - 00000000 ____D C:\Users\Engel\Documents\Trainer
2013-11-18 10:22 - 2011-09-29 15:04 - 00000000 ____D C:\Users\Engel\Downloads\One Piece Chapter
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-15 08:40 - 2012-03-11 09:47 - 00000000 ____D C:\Users\UpdatusUser.Engel-PC
2013-11-15 08:38 - 2013-11-14 13:48 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-15 08:38 - 2009-07-14 03:34 - 84934656 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 17301504 _____ C:\Windows\system32\config\SYSTEM.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2013-11-14 23:57 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2013-11-14 23:56 - 2011-09-29 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 23:55 - 2013-08-14 20:43 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 23:53 - 2011-10-02 12:05 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 19:53 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:52 - 2013-11-14 19:49 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 19:09 - 2012-04-09 12:43 - 00000000 ____D C:\Program Files\AlienAutopsy
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 12:58 - 2013-11-20 13:51 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 22951200 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 17560352 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 15862272 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09691888 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09619872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02947872 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02747680 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00609568 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00562464 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 00266984 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2011-09-23 21:43 - 15218504 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 02697248 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01242400 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00141336 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-14 10:29 - 2011-12-24 19:20 - 00000000 ____D C:\Program Files (x86)\WB Games
2013-11-14 10:26 - 2011-12-24 19:58 - 00000000 ____D C:\Users\Engel\Documents\WB Games
2013-11-12 18:16 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 18:08 - 2011-09-30 11:28 - 00000000 ____D C:\Users\Engel\AppData\Local\Deployment
2013-11-11 16:02 - 2011-06-26 16:48 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2011-06-26 16:48 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2011-06-26 23:49 - 03467927 _____ C:\Windows\system32\nvcoproc.bin
2013-11-11 16:01 - 2011-06-26 23:49 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2011-06-26 16:49 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-08 21:47 - 2013-10-28 20:58 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-10-28 20:58 - 00955168 ____N (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-07 20:45 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

Some content of TEMP:
====================
C:\Users\Engel\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 08:34

==================== End Of Log ============================
--- --- ---
Alt 02.12.2013, 21:19   #10
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hier der Screenshot den du haben wolltest.
Es sind die Conhostprozesse wieder aufgetreten und das auch ohne, dass ich überhaupt die Konsole geöffnet habe.
Miniaturansicht angehängter Grafiken
Verdacht auf Virenbefall-taskmanager.jpg  

Alt 04.12.2013, 21:12   #11
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77,

Zitat:
eigentlich hat die Deinstallation funktioniert. Soll ich vllt. den CCleaner noch drüber laufen lassen damit wirklich alles von dem Programm weg ist?
Nein! Das hat der adwarecleaner alles gut wegbekommen.

Wie läuft dein Rechner denn momentan?

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Reg: reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows" /v AppInit_DLLs /t REG_SZ /d c:\windows\syswow64\nvinit.dll /f

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.



Schritt 3
Da der Scan mit Eset sehr gründlich ist, kann er unter Umständen mehrere Stunden dauern

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset



Schritt 4
Starte noch einmal FRST.
  • Ändere keine der Voreinstellungen und drücke auf Scan.
  • Wenn der Scan abgeschlossen ist, wird ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
  • Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.
Alt 05.12.2013, 07:51   #12
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


hey Sandra,
mein Laptop läuft soweit wieder ganz gut und der Fehler der mir immer aufgefallen ist tritt nicht mehr ganz so häufig auf.

Fixlog

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-12-2013
Ran by Engel at 2013-12-04 21:22:00 Run:3
Running from C:\Users\Engel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Reg: reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows" /v AppInit_DLLs /t REG_SZ /d c:\windows\syswow64\nvinit.dll /f
*****************


========= reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows" /v AppInit_DLLs /t REG_SZ /d c:\windows\syswow64\nvinit.dll /f =========

Der Vorgang wurde erfolgreich beendet.



========= End of Reg: =========


==== End of Fixlog ====
MBAM log

Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.04.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Engel :: ENGEL-PC [Administrator]

04.12.2013 21:23:02
mbam-log-2013-12-04 (21-23-02).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 236191
Laufzeit: 2 Minute(n), 35 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
ESETlog

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=82a4822d59fa7547a6d34d3e4928481a
# engine=16138
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-04 11:54:45
# local_time=2013-12-05 12:54:45 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 83 998399 162911157 0 0
# compatibility_mode=5893 16776573 100 94 103602 137831135 0 0
# scanned=182792
# found=0
# cleaned=0
# scan_time=4415

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-12-2013
Ran by Engel (administrator) on ENGEL-PC on 05-12-2013 07:46:57
Running from C:\Users\Engel\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(SoftThinks SAS) C:\Program Files (x86)\AlienRespawn\SftService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(SoftThinks - Dell) C:\Program Files (x86)\AlienRespawn\Toaster.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Bigfoot Networks\Killer Network Manager\KillerNetManager.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
() C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
() C:\Program Files (x86)\Opera\18.0.1284.49\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\18.0.1284.49\opera.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2392872 2010-11-29] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-17] (IDT, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [Command Center Controllers] - C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [12656 2012-06-15] (Alienware)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [HotKeysCmds] - "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {06e19868-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {06e1987b-0d23-11e2-b6e2-d0df9ab2a8d8} - G:\AutoRun.exe
MountPoints2: {06e19887-0d23-11e2-b6e2-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d444abf0-f58d-11e2-beea-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {d7db91e2-120a-11e2-b3bc-d0df9ab2a8d8} - F:\AutoRun.exe
MountPoints2: {dd5866f9-0e1b-11e2-a177-d0df9ab2a8d8} - F:\AutoRun.exe
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] - C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [1635696 2011-03-08] ()
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] - C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [EsternTimesMouseExRun] - C:\Program Files (x86)\Anker Precision Laser Gaming Mouse\AnkerMonEx.exe [3351040 2013-04-23] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\376f8352-1d8f-471a-b1e0-903c6e889e33.exe [180184 2013-11-23] (AVAST Software)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.de/alienware
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [183400] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [192104] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 141.35.1.16 141.35.1.80

FireFox:
========
FF ProfilePath: C:\Users\Engel\AppData\Roaming\Mozilla\Firefox\Profiles\3pe3ee9g.default
FF DefaultSearchEngine: Google 
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-23] (AVAST Software)
R2 Bigfoot Networks Killer Service; C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [763904 2011-03-30] ()
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [87336 2012-01-12] (CyberLink Corp.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [75048 2012-01-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [296232 2012-01-12] (CyberLink)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2013-11-22] ()

==================== Drivers (Whitelisted) ====================

R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [2705000 2011-03-30] (Bigfoot Networks, Inc.)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-23] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-23] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-11-23] ()
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [68712 2011-03-30] (Bigfoot Networks, Inc.)
R3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [38472 2011-02-02] (Dell Inc.)
R2 ntk_PowerDVD12; C:\Program Files (x86)\Cyberlink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [82928 2011-10-27] (Cyberlink Corp.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [300320 2013-11-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [146928 2012-01-11] (CyberLink Corp.)
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 GPU-Z; \??\C:\Users\Engel\AppData\Local\Temp\GPU-Z.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [x]
S4 sptd; \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-04 22:04 - 2012-11-09 19:12 - 00000000 ____D C:\Users\Engel\Downloads\VA - KuschelRock Christmas (2012)
2013-12-04 21:27 - 2013-12-04 21:27 - 02347384 _____ (ESET) C:\Users\Engel\Downloads\esetsmartinstaller_enu.exe
2013-12-04 21:27 - 2013-12-04 21:27 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-04 21:21 - 2013-12-04 21:21 - 01959766 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-12-04 20:20 - 2013-12-04 20:20 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E11.Wutprobe.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 20:15 - 2013-12-04 20:15 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E13.Liebeskrank.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 20:14 - 2013-12-04 20:14 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E12.Das.Vierer.Date.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:29 - 2013-12-04 17:29 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E12.Vertigo.GERMAN.DUBBED.DL.720p.BluRay.x264-euHD
2013-12-04 17:27 - 2013-12-04 17:27 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E16.Wahre.Gefaehrten.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:23 - 2013-12-04 17:23 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E15.Unter.Druck.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:21 - 2013-12-04 17:21 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E14.Lemon.2.0.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 12:27 - 2013-12-04 12:27 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-12-04 12:27 - 2013-12-04 12:27 - 00000000 ____D C:\Windows\system32\NV
2013-12-04 12:24 - 2013-12-04 12:24 - 00000000 ____D C:\NVIDIA
2013-12-04 11:54 - 2013-12-04 12:30 - 00000336 _____ C:\Windows\setupact.log
2013-12-04 11:54 - 2013-12-04 11:54 - 00000000 _____ C:\Windows\setuperr.log
2013-12-04 11:29 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-04 11:29 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-04 11:14 - 2013-12-04 11:18 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-12-02 12:07 - 2013-12-02 12:08 - 00000000 ____D C:\AdwCleaner
2013-12-02 12:06 - 2013-12-02 12:07 - 01110034 _____ C:\Users\Engel\Desktop\adwcleaner.exe
2013-11-29 20:26 - 2013-11-29 20:27 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-12-05 07:46 - 00016637 _____ C:\Users\Engel\Desktop\FRST.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-28 21:42 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-23 16:23 - 2013-11-23 16:24 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-22 21:12 - 2013-11-22 21:32 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 21:05 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-11-22 21:05 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2013-11-21 20:16 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-20 13:51 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-20 13:51 - 2013-11-14 12:58 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-20 13:51 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-20 07:06 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-14 19:52 - 2013-11-14 19:53 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:49 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 16:36 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 16:36 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 16:36 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 16:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 16:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 16:36 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 16:36 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 16:36 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 16:36 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 16:36 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 16:36 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 16:36 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 16:36 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 16:36 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 16:36 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 16:36 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 16:36 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 16:36 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 16:36 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 16:36 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 16:36 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:48 - 2013-11-21 19:50 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-14 13:48 - 2013-11-15 08:38 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-14 13:45 - 2013-12-04 16:58 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-11-14 13:45 - 2013-11-30 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-12 18:16 - 2013-12-04 11:33 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-07 11:07 - 2013-11-07 20:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-07 11:06 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-11-07 11:06 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

==================== One Month Modified Files and Folders =======

2013-12-05 07:47 - 2013-11-28 22:13 - 00016637 _____ C:\Users\Engel\Desktop\FRST.txt
2013-12-05 07:05 - 2012-04-03 15:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-05 03:42 - 2012-11-23 08:45 - 01907008 _____ C:\Windows\WindowsUpdate.log
2013-12-04 23:14 - 2011-11-27 12:46 - 00000000 ____D C:\Users\Engel\AppData\Roaming\vlc
2013-12-04 21:27 - 2013-12-04 21:27 - 02347384 _____ (ESET) C:\Users\Engel\Downloads\esetsmartinstaller_enu.exe
2013-12-04 21:27 - 2013-12-04 21:27 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-04 21:21 - 2013-12-04 21:21 - 01959766 _____ (Farbar) C:\Users\Engel\Desktop\FRST64.exe
2013-12-04 20:20 - 2013-12-04 20:20 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E11.Wutprobe.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 20:20 - 2013-04-10 16:06 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-12-04 20:15 - 2013-12-04 20:15 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E13.Liebeskrank.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 20:14 - 2013-12-04 20:14 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E12.Das.Vierer.Date.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 18:58 - 2013-05-23 13:23 - 00003460 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-12-04 17:29 - 2013-12-04 17:29 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E12.Vertigo.GERMAN.DUBBED.DL.720p.BluRay.x264-euHD
2013-12-04 17:27 - 2013-12-04 17:27 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E16.Wahre.Gefaehrten.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:23 - 2013-12-04 17:23 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E15.Unter.Druck.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:21 - 2013-12-04 17:21 - 00000000 ____D C:\Users\Engel\Downloads\Hart.of.Dixie.S02E14.Lemon.2.0.GERMAN.Dubbed.720p.HDTV.x264-iNFOTv
2013-12-04 17:00 - 2010-11-21 07:50 - 00696870 _____ C:\Windows\system32\perfh007.dat
2013-12-04 17:00 - 2010-11-21 07:50 - 00148134 _____ C:\Windows\system32\perfc007.dat
2013-12-04 17:00 - 2009-07-14 06:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-04 16:58 - 2013-11-14 13:45 - 00000276 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
2013-12-04 12:37 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-04 12:37 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-04 12:30 - 2013-12-04 11:54 - 00000336 _____ C:\Windows\setupact.log
2013-12-04 12:30 - 2011-09-23 20:27 - 00000000 ____D C:\Program Files (x86)\AlienRespawn
2013-12-04 12:29 - 2011-09-23 20:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-04 12:29 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-04 12:28 - 2011-09-23 12:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-04 12:27 - 2013-12-04 12:27 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-12-04 12:27 - 2013-12-04 12:27 - 00000000 ____D C:\Windows\system32\NV
2013-12-04 12:24 - 2013-12-04 12:24 - 00000000 ____D C:\NVIDIA
2013-12-04 11:55 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-12-04 11:55 - 2011-09-23 20:33 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-12-04 11:54 - 2013-12-04 11:54 - 00000000 _____ C:\Windows\setuperr.log
2013-12-04 11:35 - 2013-10-27 20:47 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA
2013-12-04 11:33 - 2013-11-12 18:16 - 00000000 ____D C:\Users\Engel\AppData\Local\NVIDIA Corporation
2013-12-04 11:30 - 2011-09-23 12:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-04 11:29 - 2011-09-23 12:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-04 11:18 - 2013-12-04 11:14 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-12-03 20:04 - 2012-07-07 09:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-03 20:02 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-02 12:08 - 2013-12-02 12:07 - 00000000 ____D C:\AdwCleaner
2013-12-02 12:07 - 2013-12-02 12:06 - 01110034 _____ C:\Users\Engel\Desktop\adwcleaner.exe
2013-11-30 13:45 - 2013-11-14 13:45 - 00000292 _____ C:\Windows\Tasks\DLL-Files.Com Fixer_Updates.job
2013-11-30 10:01 - 2013-05-05 17:31 - 00000000 ____D C:\Users\Engel\Downloads\frisch geladen
2013-11-29 20:27 - 2013-11-29 20:26 - 00000000 ____D C:\Users\Engel\Downloads\Arrow.S01E11.Verdacht.German.DD51.Dubbed.DL.720p.BD.x264-TVS
2013-11-29 20:26 - 2012-10-29 16:56 - 00000000 ____D C:\Users\Engel\Downloads\Festplatte WD
2013-11-29 17:58 - 2013-10-28 20:58 - 01096480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-29 17:58 - 2013-10-28 20:58 - 00979744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-28 22:46 - 2013-11-28 22:46 - 00024246 _____ C:\Users\Engel\Desktop\Logfiles.rar
2013-11-28 22:27 - 2013-11-28 22:27 - 00154395 _____ C:\Users\Engel\Desktop\Gmer.log
2013-11-28 22:20 - 2013-11-28 22:20 - 00377856 _____ C:\Users\Engel\Desktop\gmer_2.1.19163.exe
2013-11-28 22:18 - 2013-11-28 22:18 - 00000392 _____ C:\Users\Engel\Desktop\Thema.txt
2013-11-28 22:14 - 2013-11-28 22:14 - 00025023 _____ C:\Users\Engel\Desktop\Addition.txt
2013-11-28 22:13 - 2013-11-28 22:13 - 00000000 ____D C:\FRST
2013-11-28 22:04 - 2013-11-28 22:04 - 00000652 _____ C:\Users\Engel\Downloads\defogger_disable.log
2013-11-28 22:04 - 2013-11-28 22:04 - 00000188 _____ C:\Users\Engel\defogger_reenable
2013-11-28 22:04 - 2011-09-29 12:26 - 00000000 ____D C:\Users\Engel
2013-11-28 22:03 - 2013-11-28 22:03 - 00050477 _____ C:\Users\Engel\Desktop\Defogger.exe
2013-11-28 21:45 - 2013-04-09 13:55 - 00000000 ____D C:\ProgramData\Browwse22saave
2013-11-28 21:45 - 2013-04-09 13:54 - 00000000 ____D C:\ProgramData\InstallMate
2013-11-28 21:42 - 2013-11-28 21:42 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-28 21:42 - 2013-11-28 21:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-27 14:35 - 2011-09-29 15:12 - 00000000 ____D C:\Users\Engel\AppData\Roaming\DAEMON Tools Lite
2013-11-27 14:24 - 2013-11-27 14:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-27 14:23 - 2013-11-27 14:23 - 00000000 ____D C:\Users\Engel\Documents\FIFA 14
2013-11-24 14:01 - 2011-09-29 12:33 - 00000000 ____D C:\Users\Engel\AppData\Local\Adobe
2013-11-24 13:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-24 12:16 - 2012-04-03 15:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-24 12:16 - 2012-04-03 15:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 12:16 - 2011-09-23 20:04 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-23 16:24 - 2013-11-23 16:23 - 103350272 _____ C:\Users\Engel\Desktop\Klett Mathe.iso
2013-11-23 16:22 - 2013-11-23 16:22 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2013-11-23 11:36 - 2013-11-23 11:36 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AVAST Software
2013-11-23 11:31 - 2013-03-03 17:54 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-11-23 11:31 - 2013-03-03 17:54 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-11-23 11:31 - 2012-02-26 13:01 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-11-23 11:31 - 2011-09-29 12:45 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-11-23 11:31 - 2011-09-29 12:45 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-11-23 11:31 - 2011-09-29 12:44 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-11-23 11:26 - 2011-09-29 12:44 - 00000000 ____D C:\ProgramData\AVAST Software
2013-11-23 11:25 - 2011-09-29 12:45 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-11-22 21:39 - 2013-10-23 06:16 - 00000116 _____ C:\Users\Engel\Desktop\Neues Textdokument.txt
2013-11-22 21:32 - 2013-11-22 21:12 - 00000000 ____D C:\Users\Engel\Documents\Assassin's Creed IV Black Flag
2013-11-22 20:56 - 2013-11-22 20:56 - 00189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-22 20:56 - 2013-11-22 20:56 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-22 20:04 - 2011-09-29 18:40 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-21 20:31 - 2013-11-21 20:31 - 00000000 _____ C:\Users\Engel\AppData\Local\Driver_Jupiter_01Present.flag
2013-11-21 20:16 - 2013-11-21 20:16 - 00000000 ____D C:\ProgramData\Intel
2013-11-21 20:16 - 2011-09-23 12:56 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-21 20:10 - 2013-11-21 20:10 - 00000000 ____D C:\Users\Engel\AppData\Local\DriverTuner
2013-11-21 20:02 - 2011-09-29 12:30 - 00109392 _____ C:\Users\Engel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-21 20:01 - 2009-07-14 05:45 - 00422896 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-21 19:50 - 2013-11-14 13:48 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2013-11-21 19:42 - 2013-11-21 19:42 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2013-11-21 19:40 - 2011-09-23 20:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-21 19:39 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Local\Dell
2013-11-21 19:39 - 2011-09-23 20:30 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2013-11-21 19:36 - 2011-09-23 21:47 - 00000000 ____D C:\ProgramData\Dell
2013-11-21 19:29 - 2011-09-23 20:38 - 00000000 ____D C:\ProgramData\Sonic
2013-11-21 19:28 - 2011-09-23 20:37 - 00000000 ____D C:\ProgramData\Roxio
2013-11-21 19:26 - 2011-09-29 12:30 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio
2013-11-21 19:25 - 2013-11-21 19:25 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Roxio Log Files
2013-11-21 19:24 - 2011-09-29 19:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-21 19:14 - 2011-10-09 14:41 - 00000000 ____D C:\Program Files (x86)\Activision
2013-11-21 14:32 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther
2013-11-21 09:17 - 2011-09-29 12:30 - 00001387 _____ C:\Users\Engel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-20 23:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-20 19:12 - 2011-10-14 09:00 - 00000000 ____D C:\ProgramData\PCDr
2013-11-20 08:08 - 2011-09-29 15:03 - 00000000 ____D C:\Users\Engel\Downloads\Bleach Chapter
2013-11-20 07:03 - 2013-11-20 07:03 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-20 07:03 - 2013-11-20 07:03 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-20 07:03 - 2013-11-20 07:03 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-20 07:03 - 2013-11-20 07:03 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-20 07:03 - 2013-11-20 07:03 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-20 07:03 - 2013-11-20 07:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-20 07:03 - 2013-11-20 07:03 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-20 07:03 - 2013-11-20 07:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 19:18 - 2011-09-29 12:38 - 00000000 ____D C:\Program Files (x86)\Opera
2013-11-18 16:44 - 2011-09-29 15:54 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Skype
2013-11-18 10:27 - 2011-09-29 16:13 - 00000000 ____D C:\Users\Engel\Documents\Trainer
2013-11-18 10:22 - 2011-09-29 15:04 - 00000000 ____D C:\Users\Engel\Downloads\One Piece Chapter
2013-11-15 13:52 - 2013-11-15 13:52 - 05904880 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00515568 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00442352 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00399856 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00254960 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2013-11-15 13:52 - 2013-11-15 13:52 - 00172016 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2013-11-15 08:38 - 2013-11-14 13:48 - 00002264 _____ C:\Windows\system32\ASOROSet.bin
2013-11-15 08:38 - 2009-07-14 03:34 - 84934656 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 17301504 _____ C:\Windows\system32\config\SYSTEM.bak
2013-11-15 08:38 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2013-11-14 23:57 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2013-11-14 23:56 - 2011-09-29 13:21 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 23:55 - 2013-08-14 20:43 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 23:53 - 2011-10-02 12:05 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 19:53 - 2013-11-14 19:52 - 00000000 ____D C:\Users\Engel\Downloads\Lost Girl
2013-11-14 19:52 - 2013-11-14 19:49 - 00000000 ____D C:\Users\Engel\Downloads\Unforgettable
2013-11-14 19:09 - 2012-04-09 12:43 - 00000000 ____D C:\Program Files\AlienAutopsy
2013-11-14 13:59 - 2013-11-14 13:59 - 00000000 ____D C:\Users\Engel\AppData\Roaming\Injustice
2013-11-14 13:58 - 2013-11-14 13:58 - 00535008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2013-11-14 13:45 - 2013-11-14 13:45 - 00003032 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2013-11-14 13:45 - 2013-11-14 13:45 - 00003018 _____ C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Users\Engel\AppData\Roaming\dll-files.com
2013-11-14 13:45 - 2013-11-14 13:45 - 00000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2013-11-14 13:39 - 2013-11-14 13:39 - 00875472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2013-11-14 13:29 - 2013-11-14 13:29 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 12:58 - 2013-11-20 13:51 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00300320 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2013-11-14 12:58 - 2013-11-20 13:51 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-20 13:51 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2011-09-23 21:43 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2011-09-23 21:43 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-14 10:29 - 2011-12-24 19:20 - 00000000 ____D C:\Program Files (x86)\WB Games
2013-11-14 10:26 - 2011-12-24 19:58 - 00000000 ____D C:\Users\Engel\Documents\WB Games
2013-11-11 18:08 - 2011-09-30 11:28 - 00000000 ____D C:\Users\Engel\AppData\Local\Deployment
2013-11-11 16:02 - 2011-06-26 16:48 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2011-06-26 16:48 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2011-06-26 23:49 - 03467927 _____ C:\Windows\system32\nvcoproc.bin
2013-11-11 16:01 - 2011-06-26 23:49 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2011-06-26 16:49 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2011-06-26 16:49 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-07 20:45 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\AppData\Roaming\AppFile
2013-11-07 11:07 - 2013-11-07 11:07 - 00000000 ____D C:\Users\Engel\Documents\My Cheat Tables
2013-11-06 11:06 - 2013-11-06 11:06 - 00342528 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2013-11-06 11:06 - 2013-11-06 11:06 - 00016896 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2013-11-06 11:05 - 2013-11-06 11:05 - 00116224 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3347.dll

Some content of TEMP:
====================
C:\Users\Engel\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-30 08:34

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 06.12.2013, 10:21   #13
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77,
installiere dir bezüglich der conhost den ProcessExplorer als Ersatz für den Windows Taskmanager, hiermit kannst du genau sehen, welcher Prozess von welchen Anwendungen gestartet bzw. benötigt wird.

Lade Dir den Process Explorer als Ersatz für den Taskmanager herunter und führe die Datei aus. Der Process Explorer ist ein wesentlich leistungsfähigerer Ersatz für den Windows-Taskmanager. Im Menü unter "Options" kannst Du den ProcessExplorer dauerhaft als Ersatz für den Taskmanager einrichten (Replace Taskmanager). Das ist sehr empfehlenswert, weil der ProcessExplorer erheblich mehr Funktionen als der Taskmanager hat. Wenn Du diese Einstellung gemacht hast, öffnet sich mit der Tastenkombination STRG + ALT + Entf. nicht mehr der Taskmanager, sondern der ProcessExplorer. Das kann jederzeit durch Abhaken dieser Einstellung wieder rückgängig gemacht werden.

Was wir jetzt konkret brauchen: In jeder Zeile steht ein Prozess, ein paar der Zeilen sind keine richtigen Prozesse, sondern nur Pseudoprozesse für die Tätigkeit des Windows-Kernels. Wenn du nun wieder bemerkst, dass sich die conhost.exe in der Prozessliste befindet, kannst du mit dem Prozessexplorer wesentlich gezielter nachschauen, woher dieser prozess stammt. Dazu doppelklickst du einfach auf den Prozess, es öffnet sich ein Fenster, mache bitte von dem Reiter Images einen Screenshot und hänge ihn an. Mich interessiert die conhost, die keine Beschreibung (description) hat.

OK
So wie ich es sehe, haben wir damit alles Schadhafte entfernt. Deine Logs sind sauber.
Abschließend räumen wir noch etwas auf, führen Updates durch und dann bekommst du noch etwas Lesestoff von mir.

Schritt 1
Bitte starte Defogger noch einmal und klicke auf re-enable.

Schritt 2
Falls Du Malwarebytes-Antimalware und den ESET-Onlinescan nicht mehr benötigst, kannst Du beide Programme einfach über die Programmdeinstallation deinstallieren.
Ich empfehle Dir aber zumindest Malwarebytes zu behalten, und damit einmal die Woche einen Kontrollscan zu machen.

Schritt 3
Downloade dir bitte delfix auf deinen Desktop.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
  • DelFix entfernt u. a. alle verwendeten Programme und löscht sich abschließend selbst.

Updates / Programme aktualisieren
  • FlashPlayer
Dein FlashPlayer für den InternetExplorer ist nicht mehr aktuell.
  • deinstalliere die alten Versionen.
  • Öffne mit dem InternetExplorer folgenden Link Adobe - Adobe Flash Player installieren
  • Lade Dir von dort die neueste Version herunter und entferne den Haken bei McAfee Security Plus
Aktualisierung einstellen
Stelle sicher, dass dein FlashPlayer nach Updates sucht. Den FlashPlayer kann man direkt bei der Installation so konfigurieren, dass er nach Updates automatisch sucht, nachträglich kann man das über folgenden Link machen:
Adobe - Flash Player: Einstellungsmanager - Globale Benachrichtigungseinstellungen

Nun zum Schluss noch ein paar Tipps zur Absicherung deines Systems.

Aktualität des Systems
Es ist extrem wichtig, dass sowohl dein System als auch die darauf installierte sicherheitsrelevante Software (Flash Player, PDF-Reader und besonders Java) aktuell sind.
  • Bitte überprüfe, ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.

Antivirensoftware
  • Gehe sicher immer eine Antiviren Software installiert zu haben und halte diese unbedingt aktuell.

Zusätzlicher Schutz
  • MalwareBytes Anti-Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On-Demand Scantool welches viele aktuelle Malware erkennt und auch entfernt.
    Aktualisiere das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der Internet Explorer, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf einen Banner um diesen zu AdBlockPlus hinzuzufügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Systemleistung
Lösche regelmäßig deine temporären Dateien. Ich empfehle hierzu TFC
Halte dich fern von jeglichen Registry Cleanern.
Diese schaden deinem System mehr als dass sie es schneller machen.

Verhaltensregeln zum sichereren Surfen
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Falls Du Lob oder Kritik abgeben möchtest, kannst Du das sehr gerne hier tun.

Wenn Du etwas für das Forum und unsere Arbeit spenden möchtest, so kannst Du das hier tun.

Alt 06.12.2013, 10:44   #14
thedarkone77
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Danke für deine Hilfe Sandra

Hoffe jetzt bleibt alles sauber ^^

Anbei noch der Screenshot von der conhost.exe ohne Beschreibung.
Miniaturansicht angehängter Grafiken
Verdacht auf Virenbefall-conhost-ohne-beschreibung.jpg  

Alt 10.12.2013, 10:06   #15
Bootsektor
Ruhe in Frieden
† 2019
 
Verdacht auf Virenbefall - Standard

Verdacht auf Virenbefall


Hallo thedarkone77,
bitte entschuldige die Verzögerung.
Die conhost ist ganz normal dort, du siehst nur keine Beschreibung und weitere Angaben, weil dir die nötigen Rechte (Administratorrechte) dafür fehlen um diese zu sehen. Das ist aber nicht weiter schlimm.

Antwort

Themen zu Verdacht auf Virenbefall
.exe, befall, befinden, benutzer, beschreibung, conhost.exe, diverse, hilfe, host.exe, inter, interne, internet, lösungen, namens, problem, prozesse, stunde, stunden, taskma, taskmanager, verdacht, virenbefal, virenbefall


« Windows 8: Fund von TR/Dropper.gen, PUP.Optional.Iminent.A, PUP.Optional.BizzyBolt, PUP.Optional.DigitalSites.A | Rechner sauber nach Recovery? »


Ähnliche Themen: Verdacht auf Virenbefall


  1. userinit.exe Verdacht auf Virenbefall im Netzwerk
    Log-Analyse und Auswertung - 15.10.2014 (9)
  2. Verdacht auf Virenbefall
    Log-Analyse und Auswertung - 20.08.2014 (3)
  3. Windows Vista -64 Bit - Verdacht auf Virenbefall
    Log-Analyse und Auswertung - 20.08.2014 (15)
  4. Starker Verdacht auf Virenbefall
    Plagegeister aller Art und deren Bekämpfung - 30.05.2014 (13)
  5. Mc Affee Echtzeitscan wird deaktiviert und lässt sich nicht wieder aktivieren! Verdacht auf Virenbefall im System!
    Plagegeister aller Art und deren Bekämpfung - 14.12.2013 (1)
  6. Win 7 - Verdacht auf Virenbefall, Internet spinnt
    Plagegeister aller Art und deren Bekämpfung - 06.09.2013 (5)
  7. Verdacht auf Virenbefall - Internet langsam/laggt
    Plagegeister aller Art und deren Bekämpfung - 28.03.2013 (13)
  8. Verdacht auf Virenbefall - Rechner ist langsamer geworden
    Plagegeister aller Art und deren Bekämpfung - 07.03.2013 (6)
  9. verdacht auf virenbefall bitte um unterstützung
    Log-Analyse und Auswertung - 06.06.2012 (5)
  10. Verdacht auf weiteren Virenbefall (u.a. TrojanDownloader.Agent.NCJ trojan gefunden und gelöscht)
    Log-Analyse und Auswertung - 06.04.2012 (3)
  11. Verdacht auf Virenbefall
    Log-Analyse und Auswertung - 21.02.2010 (4)
  12. Rechner friert ein und Browser stürzt ab. Verdacht auf Virenbefall.
    Plagegeister aller Art und deren Bekämpfung - 28.01.2010 (2)
  13. Virenbefall!
    Plagegeister aller Art und deren Bekämpfung - 08.07.2009 (3)
  14. Virenbefall
    Plagegeister aller Art und deren Bekämpfung - 28.04.2009 (1)
  15. Virenbefall
    Plagegeister aller Art und deren Bekämpfung - 07.02.2008 (6)
  16. verdacht auf virenbefall aber ich finde nix
    Plagegeister aller Art und deren Bekämpfung - 25.01.2006 (3)
  17. Virenbefall
    Log-Analyse und Auswertung - 05.11.2005 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Verdacht auf Virenbefall - Hallo, ich bin zum ersten mal bei so einer Community. Seit einigen Stunden durchsuche ich das Internet nach Lösungen, aber kann per tu keine finden. Mein Problem sieht wie folgt - Verdacht auf Virenbefall...
Archiv
Du betrachtest: Verdacht auf Virenbefall auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131