Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Nach Tuneup utilities Internet Browser sehr langsam

Nach Tuneup utilities Internet Browser sehr langsam


Plagegeister aller Art und deren Bekämpfung: Nach Tuneup utilities Internet Browser sehr langsam

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 26.12.2013, 02:53   #1
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Hi, Seid die Tuneup utilities 2014 Testversion abgelaufen ist sind meine Internet Browser (also Google Chrome, Mozilla Firefox und Internet Explorer) ca. 10 Minuten nach dem Pc neustart sehr langsam und verlieren auch manchmal die Verbindung... Ich habe schon ausprobiert wiederherstellen zu einem Punkt bringt aber nix und malware Scans und AntiVir habe ich auch schon ausgeführt. Ich weiß nicht mehr weiter ich hoffe ihr könnt mir weiterhelfen.

Danke im Voraus^^

PS: Ich hab Tuneup utilities 2014 schon gelöscht und mein Betriebssystem ist Windows 7.

Alt 26.12.2013, 12:51   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 26.12.2013, 13:15   #3
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Hi schrauber^^
Hier sind die Txt dateien:


FRST:

http://www.trojaner-board.de/attachm...1&d=1388060113

Addition:

hxxp://www.trojaner-board.de/attachment.php?attachmentid=63251&stc=1&d=1388060032
__________________
Geändert von Schwerle (26.12.2013 um 14:00 Uhr)

Alt 27.12.2013, 10:35   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 27.12.2013, 12:03   #5
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


FRST:

#
FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-12-2013
Ran by Dome (administrator) on DOME-PC on 26-12-2013 13:04:03
Running from C:\Users\Dome\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Acer Group) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\setup\emupdate\8c5dce61-3f74-4ac7-99db-4b7fbca6b046.exe [180184 2013-11-23] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
MountPoints2: K - K:\Install.exe
MountPoints2: {8e0475c3-9926-11e2-9cea-f80f41164d7d} - K:\Install.exe
MountPoints2: {fb95df99-79de-11e2-9a9c-f80f41164d7d} - K:\Install.exe
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://packardbell.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x79DABEB8024CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.qvo6.com/?utm_source=b&utm_medium=amt&from=amt&uid=HitachiXHDS721010CLA332_JP2940HZ0Z05UC0Z05UCX&ts=1375644202
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.qvo6.com/?utm_source=b&utm_medium=amt&from=amt&uid=HitachiXHDS721010CLA332_JP2940HZ0Z05UC0Z05UCX&ts=1375644202
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.qvo6.com/?utm_source=b&utm_medium=amt&from=amt&uid=HitachiXHDS721010CLA332_JP2940HZ0Z05UC0Z05UCX&ts=1375644202
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=HitachiXHDS721010CLA332_JP2940HZ0Z05UC0Z05UCX&ts=1375644202
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.qvo6.com/web/?utm_source=b&utm_medium=amt&from=amt&uid=HitachiXHDS721010CLA332_JP2940HZ0Z05UC0Z05UCX&ts=1375644202
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=DE&userid=1098efc2-27d9-45b7-b9b8-3c3aa5b387a6&searchtype=ds&q={searchTerms}&installDate=29/07/2013
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
SearchScopes: HKCU - DefaultScope {07F6B409-A840-4E8C-BECC-6B2358B9EE69} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=24b74ba60000000000009444529b4209&r=953
SearchScopes: HKCU - BrowserMngrDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=DE&userid=1098efc2-27d9-45b7-b9b8-3c3aa5b387a6&searchtype=ds&q={searchTerms}&installDate=29/07/2013
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP250D3F6B-40B5-4948-94D0-7C0957F511BD&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {07F6B409-A840-4E8C-BECC-6B2358B9EE69} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=24b74ba60000000000009444529b4209&r=953
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=24B700AC17AD889B&affID=120695&tsp=5026
SearchScopes: HKCU - {89544C87-842E-4726-BB09-192DC970DE84} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=407956&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: IEExtension.Extension - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
DPF: HKLM-x32 {24896211-7A6C-4C7A-A4D9-686B5490B8DC} hxxp://wk2.gameheart.jp/GameheartWebStart.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default
FF user.js: detected! => C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\user.js
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @ogplanet.com/npOGPPlugin - C:\Windows\system32\npOGPPlugin.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\softonic.xml
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\staged
FF Extension: Better Battlelog (BBLog) - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack.xpi
FF Extension: Pirrit Suggestor - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\suggestor@suggestor.pirrit.com.xpi
FF Extension: Adblock Plus - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Black Google Theme - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{e9876d64-8bac-4287-bdc4-0f0c56804b4f}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP250D3F6B-40B5-4948-94D0-7C0957F511BD&SSPV=", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=24b74ba60000000000009444529b4209"
CHR Extension: (Forge of Empires) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaphblkfplenhkephgneolhnmjminjg\1.2_0
CHR Extension: (Battlefield 4 Theme) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckppbgmmmlkhblbcdkjohbklfecclock\1_0
CHR Extension: (Tampermonkey) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.5.3630.77_0
CHR Extension: (AdBlock) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (avast! Online Security) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0
CHR Extension: (Grepolis) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog\2.11.14_0
CHR Extension: (Google Wallet) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Dome\AppData\Local\mysearchdial.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hbcennhacfaagdopikcegfcobcadeocj] - C:\Program Files (x86)\Common Files\Spigot\GC\saebay_1.1.crx
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.2.crx
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx
CHR HKLM-x32\...\Chrome\Extension: [pfndaklgolladniicklehhancnlgocpp] - C:\Program Files (x86)\Common Files\Spigot\GC\saamazon_1.0.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-19] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2013-12-19] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-30] ()
S2 SecureUpdateSvc; C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [2472272 2013-10-23] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S2 SystemStoreService; C:\Program Files (x86)\SoftwareUpdater\SystemStore.exe [297984 2013-12-23] ()
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 npggsvc; C:\Windows\system32\GameMon.des -service [x]
S2 PirritUpdater; C:\Program Files (x86)\Pirrit\AutoUpdater.exe [x]

==================== Drivers (Whitelisted) ====================

S1 acedrv05; C:\Windows\system32\drivers\acedrv05.sys [136192 2013-03-12] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2013-12-08] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-18] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [439648 2013-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-18] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-12-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-18] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-07-12] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-30] (DT Soft Ltd)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-07-12] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0073.sys [28768 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 wod0205; C:\Windows\System32\DRIVERS\wod0205.sys [33160 2011-04-23] (WeOnlyDo Software)
U3 DfSdkS; 
S3 dump_wmimmc; \??\C:\AeriaGames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP5\WNt500x64\Sandra.sys [x]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [x]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-26 13:04 - 2013-12-26 13:04 - 00021280 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:44 - 2013-12-26 03:16 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 02:26 - 2013-12-26 02:27 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu.exe
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:47 - 2013-12-26 00:48 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:20 - 2013-12-25 21:21 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 15:16 - 2013-10-12 02:28 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-12-25 15:16 - 2013-10-12 02:28 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-12-25 15:16 - 2013-10-12 02:28 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2013-12-25 15:11 - 2013-12-25 15:13 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 01:59 - 2013-12-25 14:14 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 01:57 - 2013-12-25 01:58 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:13 - 2013-12-25 01:15 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-23 21:25 - 2013-12-26 01:54 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:22 - 2013-12-23 15:25 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\DownloadGuide
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:42 - 2011-01-27 03:05 - 20479080 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 18580072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 15055464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 13011560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 12987368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-12-23 14:42 - 2011-01-27 03:05 - 12868712 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 10084968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 07734888 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 06606440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 05656680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 04943464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 03113576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 02897512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 02482280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 02252904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00067176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00057960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-23 14:42 - 2010-11-12 08:10 - 00155752 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-12-23 14:42 - 2010-11-12 08:10 - 00029288 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-22 16:13 - 2013-12-22 16:13 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-22 16:13 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-22 15:15 - 2013-12-22 15:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-22 14:32 - 2013-12-26 01:57 - 00066476 _____ C:\Windows\PFRO.log
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-26 12:55 - 00007750 _____ C:\Windows\setupact.log
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:34 - 2013-12-24 01:48 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:16 - 2013-12-26 03:14 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-19 20:44 - 2013-12-19 20:44 - 00000000 ____D C:\Users\Dome\AppData\Local\SoftwareUpdater
2013-12-18 19:26 - 2013-12-20 16:55 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:23 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 20:16 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 13:39 - 2013-12-14 13:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-12 20:54 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 20:54 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 20:54 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 20:54 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 20:54 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 20:54 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 20:54 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 20:54 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 20:54 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 20:54 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 20:54 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 20:54 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 20:54 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 20:54 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 20:50 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-12 20:50 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-12 20:50 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 20:50 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 20:50 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 20:50 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 20:50 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 20:50 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-12 20:50 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 20:50 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-09 21:54 - 2013-12-26 00:59 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-09 19:49 - 2013-12-09 19:49 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Pirrit
2013-12-09 19:32 - 2013-12-25 17:22 - 00000000 ____D C:\AeriaGames
2013-12-08 16:57 - 2013-12-19 13:37 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-08 16:57 - 2013-12-19 13:37 - 00001984 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-12-08 16:57 - 2013-12-08 16:56 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2013-12-08 16:56 - 2013-12-18 19:25 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-08 14:08 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-12-08 14:08 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-12-08 14:08 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-12-08 14:08 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-08 14:08 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-08 14:08 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-08 14:08 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-12-08 14:08 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-12-08 14:08 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-12-08 14:08 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-12-08 14:08 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-12-08 14:08 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-12-08 14:08 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-08 14:08 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:04 - 2013-12-07 23:05 - 00000000 ___HD C:\Windows\Icons
2013-12-07 23:00 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-07 23:00 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-07 23:00 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-07 23:00 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-12-07 23:00 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-12-07 23:00 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-07 23:00 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-12-07 23:00 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-12-07 23:00 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-12-07 22:59 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-07 22:59 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-12-07 22:59 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-07 22:59 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-07 22:59 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-07 22:59 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-12-07 22:59 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-07 22:59 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-12-07 22:59 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-12-07 20:26 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-07 20:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-07 20:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-07 20:26 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-07 20:26 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-12-07 20:26 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-07 20:26 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-07 20:26 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-07 20:26 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-07 20:26 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-07 20:25 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-07 20:25 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-07 20:25 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-07 20:25 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-07 20:25 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-07 20:25 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-12-07 20:25 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-07 20:25 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-07 20:25 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-07 20:25 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-07 20:25 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-07 20:25 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-07 20:25 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-07 10:58 - 2013-12-24 01:22 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-06 20:14 - 2013-12-25 15:15 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 20:09 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2013-12-06 20:09 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2013-12-06 20:09 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2013-12-06 20:09 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2013-12-06 20:09 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2013-12-06 20:09 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2013-12-06 20:09 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2013-12-01 13:46 - 2013-12-06 15:49 - 00000000 ____D C:\Users\Dome\AppData\Local\Lollipop
2013-11-28 18:05 - 2013-11-28 18:05 - 00000000 ___RD C:\Users\Dome\Documents\Ubisoft
2013-11-28 16:44 - 2013-11-28 16:44 - 00000000 ____D C:\Windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
2013-11-28 12:55 - 2013-11-28 12:55 - 00000222 _____ C:\Users\Dome\Desktop\Trials Evolution Gold Edition.url
2013-11-28 12:55 - 2013-11-28 12:55 - 00000222 _____ C:\Users\Dome\Desktop\Outlast.url

==================== One Month Modified Files and Folders =======

2013-12-26 13:04 - 2013-12-26 13:04 - 00021280 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 13:02 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-26 13:02 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-26 12:59 - 2013-06-23 00:04 - 01394516 _____ C:\Windows\WindowsUpdate.log
2013-12-26 12:56 - 2013-11-13 06:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-26 12:56 - 2013-11-08 22:49 - 00003018 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-12-26 12:55 - 2013-12-21 23:34 - 00007750 _____ C:\Windows\setupact.log
2013-12-26 12:54 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-26 03:54 - 2013-11-18 18:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-26 03:20 - 2013-03-28 19:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-26 03:16 - 2013-12-26 02:44 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 03:14 - 2013-12-21 18:16 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:27 - 2013-12-26 02:26 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu.exe
2013-12-26 01:57 - 2013-12-22 14:32 - 00066476 _____ C:\Windows\PFRO.log
2013-12-26 01:55 - 2012-09-27 18:26 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-26 01:54 - 2013-12-23 21:25 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-26 01:54 - 2013-11-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\uTorrent
2013-12-26 01:54 - 2013-05-11 16:18 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2
2013-12-26 01:54 - 2012-09-24 07:25 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-26 01:41 - 2010-11-04 08:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 01:38 - 2010-11-04 07:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-26 01:35 - 2012-10-16 10:41 - 00000000 ____D C:\Users\Dome\AppData\Local\ESN Sonar
2013-12-26 01:34 - 2012-11-02 12:58 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-12-26 01:32 - 2010-11-04 08:08 - 00000000 ____D C:\Program Files (x86)\Packard Bell
2013-12-26 01:27 - 2013-08-10 12:59 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-26 01:06 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 01:03 - 2013-10-25 19:33 - 00000000 ____D C:\Users\Dome\AppData\Local\Unity
2013-12-26 01:00 - 2013-08-12 23:17 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CDG
2013-12-26 00:59 - 2013-12-09 21:54 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:48 - 2013-12-26 00:47 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:21 - 2013-12-25 21:20 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 20:27 - 2013-02-10 18:47 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Skype
2013-12-25 20:02 - 2013-02-20 18:52 - 00000000 ____D C:\Users\Dome\AppData\Local\ArmA 2 OA
2013-12-25 17:26 - 2013-10-25 19:30 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-25 17:26 - 2013-03-01 07:41 - 00003922 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{783438CF-2A8A-471F-B0B7-D902999259E6}
2013-12-25 17:23 - 2012-10-01 20:32 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-12-25 17:22 - 2013-12-09 19:32 - 00000000 ____D C:\AeriaGames
2013-12-25 17:22 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2013-12-25 15:17 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Local\CrashDumps
2013-12-25 15:15 - 2013-12-06 20:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-25 15:13 - 2013-12-25 15:11 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 14:14 - 2013-12-25 01:59 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 02:15 - 2013-04-29 17:24 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2013-12-25 01:58 - 2013-12-25 01:57 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:15 - 2013-12-25 01:13 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 22:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-12-24 11:17 - 2013-04-19 16:50 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA.job
2013-12-24 11:17 - 2013-04-19 16:50 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core.job
2013-12-24 01:48 - 2013-12-21 19:34 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-24 01:23 - 2013-05-18 16:43 - 00003116 _____ C:\Windows\System32\Tasks\{372228DF-0B7D-4A55-82FE-613FF172BD78}
2013-12-24 01:23 - 2013-04-10 18:08 - 00003372 _____ C:\Windows\System32\Tasks\{28E06FD2-71B1-47A9-B7BF-CCD743A4F569}
2013-12-24 01:22 - 2013-12-07 10:58 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-24 01:22 - 2013-04-19 16:50 - 00004096 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA
2013-12-24 01:22 - 2013-04-19 16:50 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core
2013-12-24 01:21 - 2013-10-28 09:29 - 00003096 _____ C:\Windows\System32\Tasks\ASC6_PerformanceMonitor
2013-12-24 01:21 - 2012-12-16 14:37 - 00003160 _____ C:\Windows\System32\Tasks\Game_Booster_AutoUpdate
2013-12-24 01:20 - 2012-09-29 09:49 - 00003706 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-12-24 01:19 - 2013-10-28 09:50 - 00003168 _____ C:\Windows\System32\Tasks\SmartDefrag_Startup
2013-12-24 01:19 - 2013-10-28 09:50 - 00003166 _____ C:\Windows\System32\Tasks\SmartDefragUpdate
2013-12-24 01:19 - 2013-10-05 17:10 - 00003174 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate
2013-12-24 01:19 - 2013-06-15 12:30 - 00004208 _____ C:\Windows\System32\Tasks\Software Updater
2013-12-24 01:19 - 2013-06-15 12:30 - 00004150 _____ C:\Windows\System32\Tasks\Software Updater Ui
2013-12-24 01:17 - 2013-05-28 23:33 - 00000000 ____D C:\Windows\pss
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 19:44 - 2012-09-27 18:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:32 - 2010-11-04 07:57 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:25 - 2013-12-23 15:22 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:25 - 2012-09-27 16:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Packard Bell
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:18 - 2010-11-04 08:33 - 00000000 ___HD C:\OEM
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\DownloadGuide
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:42 - 2012-09-24 07:22 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-23 14:23 - 2012-09-24 17:15 - 00765588 _____ C:\Windows\system32\perfh007.dat
2013-12-23 14:23 - 2012-09-24 17:15 - 00174818 _____ C:\Windows\system32\perfc007.dat
2013-12-23 14:23 - 2009-07-14 06:13 - 01807338 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-22 19:23 - 2013-10-05 17:03 - 00000000 ____D C:\ProgramData\BitGuard
2013-12-22 19:23 - 2013-08-25 22:15 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-12-22 19:23 - 2013-04-19 12:42 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Iminent
2013-12-22 19:23 - 2013-04-19 12:42 - 00000000 ____D C:\ProgramData\Iminent
2013-12-22 17:11 - 2013-09-15 13:47 - 00000000 ____D C:\ProgramData\DSearchLink
2013-12-22 17:11 - 2012-09-27 16:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Babylon
2013-12-22 16:13 - 2013-12-22 16:13 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-22 15:16 - 2013-12-22 15:15 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:34 - 2013-11-12 06:28 - 00000000 ____D C:\Program Files (x86)\Iminent
2013-12-21 19:14 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome\AppData\Local\VirtualStore
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-21 17:59 - 2012-09-27 17:21 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TS3Client
2013-12-20 16:55 - 2013-12-18 19:26 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-20 16:43 - 2012-10-25 18:18 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-19 20:44 - 2013-12-19 20:44 - 00000000 ____D C:\Users\Dome\AppData\Local\SoftwareUpdater
2013-12-19 13:37 - 2013-12-08 16:57 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-19 13:37 - 2013-12-08 16:57 - 00001984 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-12-19 13:33 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome
2013-12-19 13:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-12-19 13:30 - 2013-06-15 12:30 - 00000000 ____D C:\Program Files (x86)\SoftwareUpdater
2013-12-19 13:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-18 19:26 - 2013-11-08 12:54 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-18 19:26 - 2013-11-08 12:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-18 19:26 - 2012-11-27 17:48 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-18 19:25 - 2013-12-08 16:56 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-18 16:53 - 2007-07-12 02:49 - 00000000 ____D C:\Windows\Panther
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:24 - 2013-12-16 14:23 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 20:16 - 2013-12-14 13:40 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 20:16 - 2009-07-14 03:34 - 76283904 _____ C:\Windows\system32\config\software.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 24903680 _____ C:\Windows\system32\config\system.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 00032768 _____ C:\Windows\system32\config\security.bak
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 13:39 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-14 13:40 - 2013-11-10 19:18 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Systweak
2013-12-14 11:09 - 2009-07-14 03:34 - 00065536 _____ C:\Windows\system32\config\sam.bak
2013-12-13 22:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-12 20:54 - 2013-08-14 12:07 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 19:21 - 2013-03-28 19:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 19:20 - 2012-10-27 16:29 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 19:20 - 2012-10-27 16:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-09 19:49 - 2013-12-09 19:49 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Pirrit
2013-12-08 17:29 - 2013-05-08 16:39 - 00001677 _____ C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-08 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-08 16:56 - 2013-12-08 16:57 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2013-12-08 16:56 - 2013-11-08 12:54 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-12-08 14:18 - 2013-02-24 12:41 - 01780682 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-07 23:39 - 2009-07-14 03:34 - 75759616 _____ C:\Windows\system32\config\SOFTWARE_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 24641536 _____ C:\Windows\system32\config\SYSTEM_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 45875200 _____ C:\Windows\system32\config\COMPONENTS_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 01835008 _____ C:\Windows\system32\config\DEFAULT_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM_tureg_old
2013-12-07 23:10 - 2013-10-05 16:57 - 00000000 ____D C:\Program Files (x86)\Secure Speed Dial
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:05 - 2013-12-07 23:04 - 00000000 ___HD C:\Windows\Icons
2013-12-07 10:58 - 2013-02-20 19:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Downloaded Installations
2013-12-07 10:58 - 2012-09-29 09:49 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-07 10:50 - 2012-09-29 09:45 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-12-06 20:14 - 2012-09-29 09:45 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TuneUp Software
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 15:49 - 2013-12-01 13:46 - 00000000 ____D C:\Users\Dome\AppData\Local\Lollipop
2013-12-06 15:49 - 2012-09-27 16:22 - 00000000 ___RD C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 15:47 - 2013-11-10 19:21 - 00007953 _____ C:\Users\Dome\daemonprocess.txt
2013-12-06 15:47 - 2013-11-10 19:21 - 00000000 ____D C:\Users\Dome\AppData\Local\Mobogenie
2013-12-06 15:47 - 2013-11-10 19:21 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU(4).TXT
2013-12-01 14:42 - 2012-09-27 18:18 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-29 19:38 - 2012-10-08 21:02 - 00000000 ____D C:\Users\Dome\Documents\My Games
2013-11-28 18:05 - 2013-11-28 18:05 - 00000000 ___RD C:\Users\Dome\Documents\Ubisoft
2013-11-28 16:44 - 2013-11-28 16:44 - 00000000 ____D C:\Windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
2013-11-28 12:55 - 2013-11-28 12:55 - 00000222 _____ C:\Users\Dome\Desktop\Trials Evolution Gold Edition.url
2013-11-28 12:55 - 2013-11-28 12:55 - 00000222 _____ C:\Users\Dome\Desktop\Outlast.url
2013-11-26 12:54 - 2013-12-12 20:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 12:25 - 2012-09-24 08:22 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-26 11:19 - 2013-12-12 20:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 11:18 - 2013-12-12 20:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 11:11 - 2013-12-12 20:54 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 10:48 - 2013-12-12 20:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 10:46 - 2013-12-12 20:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 10:41 - 2013-12-12 20:54 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 10:29 - 2013-12-12 20:54 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 10:27 - 2013-12-12 20:54 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 10:23 - 2013-12-12 20:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 10:21 - 2013-12-12 20:54 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 10:18 - 2013-12-12 20:54 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 10:18 - 2013-12-12 20:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 10:16 - 2013-12-12 20:54 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 09:57 - 2013-12-12 20:54 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 09:38 - 2013-12-12 20:54 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 09:38 - 2013-12-12 20:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 09:35 - 2013-12-12 20:54 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 09:32 - 2013-12-12 20:54 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 09:28 - 2013-12-12 20:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 09:16 - 2013-12-12 20:54 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 09:02 - 2013-12-12 20:54 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 08:48 - 2013-12-12 20:54 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 08:32 - 2013-12-12 20:54 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 08:26 - 2013-12-12 20:54 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 08:07 - 2013-12-12 20:54 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 07:40 - 2013-12-12 20:54 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 07:34 - 2013-12-12 20:54 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 07:34 - 2013-12-12 20:54 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 07:33 - 2013-12-12 20:54 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 07:27 - 2013-12-12 20:54 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

Some content of TEMP:
====================
C:\Users\Dome\AppData\Local\Temp\MSN726.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-22 00:45

==================== End Of Log ============================
--- --- ---

--- --- ---


Alt 27.12.2013, 12:06   #6
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Die Addition passt nicht mehr in die Anderen Antwort hinein. Hoffentlich Finden wir einen Fehler.


Addition:

#FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-12-2013
Ran by Dome at 2013-12-26 13:04:36
Running from C:\Users\Dome\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Internet Security (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Internet Security (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Internet Security (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Photoshop Elements 8.0 (x32 Version: 8.0)
Adobe Reader 9.5.5 MUI (x32 Version: 9.5.5)
Advertising Center (x32 Version: 0.0.0.2)
Alliance of Valiant Arms (x32)
Arma 2 (x32)
Arma 2: DayZ Mod (x32)
Arma 2: Operation Arrowhead (x32)
Arma 2: Operation Arrowhead Beta (x32)
ATI Catalyst Install Manager (Version: 3.0.769.0)
avast! Internet Security (x32 Version: 9.0.2011)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlefield 4™ (x32 Version: 1.0.0.0)
Battlefield 4™ Beta (x32 Version: 1.0.0.0)
Battlelog Web Plugins (x32 Version: 2.3.2)
BattlEye for OA Uninstall (x32)
Belkin USB Wireless Adaptor (x32 Version: 1.0.0.10)
Borderlands 2 (x32)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Black Ops II - Zombies (x32)
Call of Duty: Black Ops II (x32)
CCleaner (Version: 3.24)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.47.1.0333)
DayZ (x32)
DayZ Commander (x32 Version: 0.91.4)
Free YouTube to MP3 Converter version 3.12.0.128 (x32 Version: 3.12.0.128)
Game Booster 3 (x32 Version: 3.4)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Chrome (HKCU Version: 31.0.1650.63)
Google Update Helper (x32 Version: 1.3.23.0)
Guild Wars 2 (x32)
HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (Version: 22.50.231.0)
HP Deskjet 2050 J510 series Hilfe (x32 Version: 140.0.61.61)
HP Photo Creations (x32 Version: 1.0.0.3781)
HP Update (x32 Version: 5.002.006.003)
ImagXpress (x32 Version: 7.0.74.0)
Iminent (x32 Version: 6.14.22.0) <==== ATTENTION
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.0.1008)
Java 7 Update 21 (64-bit) (Version: 7.0.210)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Left 4 Dead 2 Beta (x32)
LogMeIn Hamachi (x32 Version: 2.1.0.296)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (x32 Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 R2 Management Objects (x32 Version: 10.50.1447.4)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server Compact 3.5 SP2 DEU (x32 Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (Version: 3.5.8080.0)
Microsoft SQL Server System CLR Types (x32 Version: 10.50.1447.4)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Visual Basic 2010 Express - DEU (x32 Version: 10.0.30319)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (x32 Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (Version: 10.0.30319)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
MSI Afterburner 2.3.1 (x32 Version: 2.3.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML4 Parser (x32 Version: 1.0.0)
Nero ControlCenter (x32 Version: 9.0.0.1)
Nero DiscSpeed (x32 Version: 5.4.13.100)
Nero DiscSpeed Help (x32 Version: 5.4.4.100)
Nero DriveSpeed (x32 Version: 4.4.12.100)
Nero DriveSpeed Help (x32 Version: 4.4.4.100)
Nero Express Help (x32 Version: 9.4.37.100)
Nero InfoTool (x32 Version: 6.4.12.100)
Nero InfoTool Help (x32 Version: 6.4.4.100)
Nero Installer (x32 Version: 4.4.9.0)
Nero Online Upgrade (x32 Version: 1.3.0.0)
Nero StartSmart (x32 Version: 9.4.37.100)
Nero StartSmart Help (x32 Version: 9.4.27.100)
Nero StartSmart OEM (x32 Version: 9.4.10.100)
NeroExpress (x32 Version: 9.4.37.100)
neroxml (x32 Version: 1.0.0)
NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82)
NVIDIA 3D Vision Treiber 331.82 (Version: 331.82)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1)
NVIDIA Grafiktreiber 266.84 (Version: 266.84)
NVIDIA HD-Audiotreiber 1.1.13.1 (Version: 1.1.13.1)
NVIDIA Install Application (Version: 2.1002.141.953)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6684)
NVIDIA Systemsteuerung 266.84 (Version: 266.84)
NVIDIA Update 9.3.21 (Version: 9.3.21)
NVIDIA Update Components (Version: 9.3.21)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
Origin (x32 Version: 9.2.1.4399)
Outlast (x32)
Packard Bell Recovery Management (x32 Version: 4.05.3013)
Packard Bell Registration (x32 Version: 1.03.3003)
Packard Bell ScreenSaver (x32 Version: 1.1.0825.2010)
Packard Bell Software Suite SE (x32 Version: 2.01.3003)
Packard Bell Updater (x32 Version: 1.02.3001)
Pando Media Booster (x32 Version: 2.6.0.9)
PlanetSide 2 (x32)
PunkBuster Services (x32 Version: 0.993)
Revo Uninstaller 1.95 (x32 Version: 1.95)
Security Task Manager 1.8g (x32 Version: 1.8g)
Service Pack 1 für SQL Server 2008 (KB 968369) (64-bit) (Version: 10.1.2531.0)
SHIELD Streaming (Version: 1.6.53)
Skype™ 6.1 (x32 Version: 6.1.129)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
Steam (x32 Version: 1.0.0.0)
Studie zur Verbesserung von HP Deskjet 2050 J510 series Produkten (Version: 22.50.231.0)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1)
The Elder Scrolls V: Skyrim (x32)
Trials Evolution Gold Edition (x32)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup  (Version: 10.1.2731.0)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (x32 Version: 4.0.8080.0)
Welcome Center (x32 Version: 1.02.3005)
Windows Installer Clean Up (x32 Version: 3.00.00.0000)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)

==================== Restore Points  =========================

25-12-2013 14:15:36 TuneUp Utilities 2014 wird installiert
25-12-2013 16:23:05 Removed Aeria Ignite
25-12-2013 16:27:59 Removed Norton Online Backup
25-12-2013 23:50:00 Revo Uninstaller's restore point - TuneUp Utilities 2014
25-12-2013 23:50:28 TuneUp Utilities 2014 wird entfernt
25-12-2013 23:52:07 TuneUp Utilities 2014 (de-DE) wird entfernt
25-12-2013 23:53:53 Revo Uninstaller's restore point - Photo Frame
25-12-2013 23:54:32 Revo Uninstaller's restore point - Nero 9 Essentials
25-12-2013 23:55:24 Revo Uninstaller's restore point - Java 7 Update 13
25-12-2013 23:56:06 Revo Uninstaller's restore point - Java 7 Update 13
25-12-2013 23:56:50 Revo Uninstaller's restore point - Java 7 Update 17
25-12-2013 23:57:43 Revo Uninstaller's restore point - Java Auto Updater
25-12-2013 23:58:10 Revo Uninstaller's restore point - Java Auto Updater
25-12-2013 23:58:49 Revo Uninstaller's restore point - Aeria Ignite
25-12-2013 23:59:41 Revo Uninstaller's restore point - WonderKing
26-12-2013 00:01:06 Revo Uninstaller's restore point - MorphVOX Junior
26-12-2013 00:02:00 Revo Uninstaller's restore point - MorphVOX Pro
26-12-2013 00:02:41 Revo Uninstaller's restore point - Welcome Center
26-12-2013 00:03:12 Revo Uninstaller's restore point - Unity Web Player
26-12-2013 00:04:45 Revo Uninstaller's restore point - Microsoft Visual C++ 2010 Express - DEU
26-12-2013 00:08:36 Revo Uninstaller's restore point - MSI Kombustor 2.5.0
26-12-2013 00:09:38 Revo Uninstaller's restore point - Norton Online Backup
26-12-2013 00:09:48 Removed Norton Online Backup
26-12-2013 00:10:41 Revo Uninstaller's restore point - Mozilla Maintenance Service
26-12-2013 00:11:44 Revo Uninstaller's restore point - Renesas Electronics USB 3.0 Host Controller Driver
26-12-2013 00:11:58 Entfernt Renesas Electronics USB 3.0 Host Controller Driver
26-12-2013 00:12:41 Revo Uninstaller's restore point - Microsoft Silverlight
26-12-2013 00:12:53 Removed Microsoft Silverlight
26-12-2013 00:15:09 Revo Uninstaller's restore point - Left 4 Dead 2
26-12-2013 00:28:52 Revo Uninstaller's restore point - Left 4 Dead 2 Beta
26-12-2013 00:32:25 Revo Uninstaller's restore point - Hotkey Utility
26-12-2013 00:33:03 Revo Uninstaller's restore point - InstallMonetizer Setup version 1.5
26-12-2013 00:33:59 Revo Uninstaller's restore point - FilesFrog Update Checker
26-12-2013 00:34:28 Revo Uninstaller's restore point - ESN Sonar
26-12-2013 00:35:12 Revo Uninstaller's restore point - CyberLink MediaShow
26-12-2013 00:35:30 Konfiguriert MediaShow
26-12-2013 00:39:56 Revo Uninstaller's restore point - Audiosurf Beta
26-12-2013 00:40:42 Revo Uninstaller's restore point - Acrobat.com
26-12-2013 00:41:00 Removed Acrobat.com

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0FA55792-1AF6-4737-9F43-71A3D21AB046} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {106E5CCA-7137-4F4C-9EC6-4927ADB63A29} - System32\Tasks\Google Updater and Installer => C:\Users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-19] (Google Inc.)
Task: {168B5E07-6E91-446F-928D-0748B636A82D} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {2289E96D-32AE-48A4-AB87-43C11CD6EE6B} - System32\Tasks\Norton Internet Security CBE\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security CBE\Engine\20.2.1.22\SymErr.exe
Task: {2F347CD2-0B1C-4176-8D3D-CB27341FEDDD} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe
Task: {2FD56365-9DCB-44D9-BC64-D070130BAFAB} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2013-01-23] ()
Task: {36F888E1-011F-4438-815E-254AACA37C49} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe [2010-06-24] (Acer)
Task: {390DE8EE-C1C3-4E2B-9FAF-2AF31FC5A1BC} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-19] ()
Task: {42238CBC-BD00-4C06-8049-80638AF2740F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA => C:\Users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-19] (Google Inc.)
Task: {552959B9-F5BC-416E-86B0-52CCDDC3EBF9} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {593A916F-5341-4AD7-990A-DF417B7099F3} - System32\Tasks\{B81EB5F7-E79A-4EB5-8560-462610FB019D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.0.0.152.370/de/abandoninstall?page=tsMain&amp;installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled
Task: {6EB9964C-3A9A-446F-BC8E-3C69A7E9C7C9} - System32\Tasks\SmartDefragUpdate => C:\Program Files (x86)\IObit\Smart Defrag 2\AutoUpdate.exe
Task: {727118B8-B0F1-4120-BE0A-A96DBE1F0638} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {8A5BAF98-2430-42B1-9223-A07362F298DA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd)
Task: {9A4EE48D-66E9-4710-860F-466EC497B9D3} - System32\Tasks\Norton Internet Security CBE\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security CBE\Engine\20.2.1.22\SymErr.exe
Task: {9C3E5069-543B-443D-B9E9-546796046A76} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2012-04-23] (IObit)
Task: {B0D26320-6898-41A5-8891-F87FB14EE5DF} - System32\Tasks\hpwebreg_CN14K3N0N305D1 => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\hpwebreg.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {BEC24EC1-0807-4175-B543-5FD5721DB3C3} - System32\Tasks\ASC6_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
Task: {C20EC04C-9541-4F0F-A38B-6A835B38DF3D} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-19] ()
Task: {D0200C0B-AE3F-466C-946D-DF3415DD69A4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core => C:\Users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-19] (Google Inc.)
Task: {D5AA8253-6330-4827-9C83-C7D2EF17270E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-12-18] (AVAST Software)
Task: {E1026213-5CBB-4D27-9E8B-F7C68D006EC2} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [2010-06-09] (Hewlett-Packard)
Task: {F00DC142-CD59-4C87-A559-2CB53ECA61E7} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {F38C9BAD-EF49-43BE-85D7-494C1D7427E4} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)
Task: {FCC1FD1E-7B23-4E5E-89BB-522BE51B7D42} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core.job => C:\Users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA.job => C:\Users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\hpwebreg_CN14K3N0N305D1.job => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HpWebReg.exe

==================== Loaded Modules (whitelisted) =============

2013-12-26 00:27 - 2013-12-25 19:58 - 02153984 _____ () C:\Program Files\AVAST Software\Avast\defs\13122501\algo.dll
2013-12-26 12:56 - 2013-12-26 10:19 - 02153984 _____ () C:\Program Files\AVAST Software\Avast\defs\13122600\algo.dll
2013-11-08 12:53 - 2013-11-08 12:53 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-12-06 07:42 - 2013-12-04 03:47 - 00702416 _____ () C:\Users\Dome\AppData\Local\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-06 07:42 - 2013-12-04 03:47 - 00099792 _____ () C:\Users\Dome\AppData\Local\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-06 07:42 - 2013-12-04 03:48 - 04055504 _____ () C:\Users\Dome\AppData\Local\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-06 07:42 - 2013-12-04 03:48 - 00399312 _____ () C:\Users\Dome\AppData\Local\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-06 07:42 - 2013-12-04 03:47 - 01619408 _____ () C:\Users\Dome\AppData\Local\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-23 15:33 - 2013-12-23 15:33 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\e8528450958aa7609157e3c1a2a2c3cf\IsdiInterop.ni.dll
2010-11-04 07:59 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: VPN Client Adapter - VPN
Description: VPN Client Adapter - VPN
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: SoftEther Project
Service: Neo_VPN
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WeOnlyDo Network Adapter 2.5
Description: WeOnlyDo Network Adapter 2.5
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: WeOnlyDo Network Provider
Service: wod0205
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/26/2013 03:07:27 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/26/2013 03:07:25 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (12/26/2013 01:41:01 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:41:01 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:40:43 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:40:43 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:39:56 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:39:56 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:35:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (12/26/2013 01:35:31 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.
.


System errors:
=============
Error: (12/26/2013 00:56:14 PM) (Source: Service Control Manager) (User: )
Description: Dienst "SecureUpdate" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (12/26/2013 00:55:42 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
acedrv05

Error: (12/26/2013 00:55:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PirritUpdater" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (12/26/2013 02:19:01 AM) (Source: Service Control Manager) (User: )
Description: Dienst "SecureUpdate" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (12/26/2013 02:18:19 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
acedrv05

Error: (12/26/2013 02:17:53 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PirritUpdater" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (12/26/2013 01:59:28 AM) (Source: Service Control Manager) (User: )
Description: Dienst "SecureUpdate" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (12/26/2013 01:58:44 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
acedrv05

Error: (12/26/2013 01:58:21 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "PirritUpdater" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (12/26/2013 00:27:18 AM) (Source: Service Control Manager) (User: )
Description: Dienst "SecureUpdate" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================
Error: (12/26/2013 03:07:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Dome\Downloads\esetsmartinstaller_enu.exe

Error: (12/26/2013 03:07:25 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Dome\Downloads\esetsmartinstaller_enu.exe

Error: (12/26/2013 01:41:01 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:41:01 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:40:43 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:40:43 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:39:56 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:39:56 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:35:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service TuneUp Utilities Service since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (12/26/2013 01:35:31 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary TuneUpUtilitiesDrv.

System Error:
Das System kann die angegebene Datei nicht finden.


CodeIntegrity Errors:
===================================
  Date: 2013-12-26 12:54:18.020
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 12:54:17.880
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 02:17:00.582
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 02:17:00.457
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 01:57:28.880
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 01:57:28.755
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 00:25:48.109
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-26 00:25:47.984
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-25 20:52:21.563
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-12-25 20:52:21.438
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\acedrv05.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 35%
Total physical RAM: 6126.05 MB
Available physical RAM: 3969.39 MB
Total Pagefile: 7172.23 MB
Available Pagefile: 4662.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:456.71 GB) (Free:116.57 GB) NTFS
Drive d: (Data) (Fixed) (Total:456.71 GB) (Free:456.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 33228B4C)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=457 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

Alt 28.12.2013, 08:29   #7
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Haste mal ne Systemwiederherstellung gemacht auf nen Punkt bevor Du den Rechner mit TuneUp zerballert hast?

Ahja, steht ja oben. Router bitte 30 min vom Strom nehmen.
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 28.12.2013, 12:32   #8
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Hi schrauber ich habe den Router 30 Minuten lang vom strom entfehrt und dann ComboFix ausgeführt hier ist das Ergebnis:

#Combofix Logfile:
Code:
ATTFilter
ComboFix 13-12-26.01 - Dome 28.12.2013  12:13:18.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.6126.4553 [GMT 1:00]
ausgeführt von:: c:\users\Dome\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\DealPly
c:\program files (x86)\DealPly\uninst.exe
c:\program files (x86)\Windows Live\Messenger\msacm32.dll
c:\users\Dome\AppData\Local\lollipop
c:\users\Dome\AppData\Roaming\chrtmp
c:\windows\wininit.ini
D:\install.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-11-28 bis 2013-12-28  ))))))))))))))))))))))))))))))
.
.
2013-12-26 20:26 . 2013-12-26 20:26	--------	d-----w-	C:\NVIDIA
2013-12-26 12:03 . 2013-12-26 12:03	--------	d-----w-	C:\FRST
2013-12-26 00:40 . 2013-12-26 13:03	--------	d-----w-	c:\users\Dome\AppData\Local\DayZ
2013-12-25 23:48 . 2013-12-25 23:48	--------	d-----w-	c:\program files (x86)\VS Revo Group
2013-12-25 14:16 . 2013-10-12 01:28	40760	----a-w-	c:\windows\system32\TURegOpt.exe
2013-12-25 14:16 . 2013-10-12 01:28	29496	----a-w-	c:\windows\system32\authuitu.dll
2013-12-25 14:16 . 2013-10-12 01:28	25400	----a-w-	c:\windows\SysWow64\authuitu.dll
2013-12-25 00:59 . 2013-12-25 13:14	--------	d-----w-	c:\users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-24 14:01 . 2013-12-04 03:28	10315576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{DAA165B7-7C48-4266-BBB9-9FB6E435F04C}\mpengine.dll
2013-12-23 20:25 . 2013-12-26 00:54	--------	d-----w-	c:\programdata\SecTaskMan
2013-12-23 20:25 . 2013-12-23 20:25	--------	d-----w-	c:\program files (x86)\Security Task Manager
2013-12-23 14:25 . 2013-12-23 14:25	--------	d-----w-	c:\users\Dome\AppData\Roaming\CyberLink
2013-12-23 14:25 . 2013-12-23 14:25	--------	d-----w-	c:\users\Dome\AppData\Local\Cyberlink
2013-12-23 14:21 . 2013-12-23 14:21	--------	d-----w-	c:\programdata\Symantec
2013-12-23 14:16 . 2013-12-23 14:16	--------	d-----w-	c:\users\Dome\AppData\Local\DownloadGuide
2013-12-23 14:16 . 2013-12-23 14:16	--------	d-----w-	c:\users\Dome\AppData\Local\Software Updater
2013-12-23 13:46 . 2013-12-23 13:46	--------	d-----w-	c:\users\Dome\AppData\Roaming\InstallShield
2013-12-23 13:43 . 2013-12-23 13:43	--------	d-----w-	c:\windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 13:42 . 2013-11-14 11:56	18293608	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-12-23 13:42 . 2013-11-14 11:56	15862272	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2013-12-23 13:42 . 2011-01-27 02:05	67176	----a-w-	c:\windows\system32\OpenCL.dll
2013-12-23 13:42 . 2011-01-27 02:05	57960	----a-w-	c:\windows\SysWow64\OpenCL.dll
2013-12-23 13:40 . 2013-12-23 13:40	--------	d-----w-	c:\program files\ATI
2013-12-23 13:36 . 2013-12-23 13:36	--------	d-----w-	C:\Intel
2013-12-22 15:13 . 2013-12-22 15:13	--------	d-----w-	c:\users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 15:13 . 2013-12-22 15:13	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-22 15:13 . 2013-12-22 15:13	--------	d-----w-	c:\programdata\Malwarebytes
2013-12-22 15:13 . 2013-04-04 13:50	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-12-22 14:09 . 2013-12-27 17:53	--------	d-----w-	c:\users\Dome\AppData\Local\ElevatedDiagnostics
2013-12-19 19:44 . 2013-12-19 19:44	--------	d-----w-	c:\users\Dome\AppData\Local\SoftwareUpdater
2013-12-18 18:26 . 2013-12-20 15:55	79672	----a-w-	c:\windows\system32\drivers\aswstm.sys
2013-12-14 12:40 . 2013-12-14 19:16	2216	----a-w-	c:\windows\system32\ASOROSet.bin
2013-12-12 19:50 . 2013-10-30 01:24	3155968	----a-w-	c:\windows\system32\win32k.sys
2013-12-09 20:54 . 2013-12-25 23:59	--------	d-----w-	c:\program files (x86)\Aeria Games
2013-12-09 20:54 . 2013-12-09 20:54	--------	d-----w-	c:\users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-09 18:49 . 2013-12-09 18:49	--------	d-----w-	c:\users\Dome\AppData\Roaming\Pirrit
2013-12-09 18:32 . 2013-12-25 16:22	--------	d-----w-	C:\AeriaGames
2013-12-08 15:57 . 2013-12-08 15:56	28184	----a-w-	c:\windows\system32\drivers\aswKbd.sys
2013-12-08 15:56 . 2013-12-18 18:25	439648	----a-w-	c:\windows\system32\drivers\aswNdisFlt.sys
2013-12-08 13:16 . 2013-12-08 13:16	--------	d-----w-	c:\windows\Migration
2013-12-08 13:08 . 2012-08-23 15:09	3584	----a-w-	c:\windows\system32\drivers\de-DE\tsusbflt.sys.mui
2013-12-07 22:05 . 2013-12-07 22:05	--------	d-----w-	c:\users\Dome\AppData\Local\Avg2014
2013-12-07 22:04 . 2013-12-07 22:05	--------	d--h--w-	c:\windows\Icons
2013-12-07 21:59 . 2013-10-04 02:28	190464	----a-w-	c:\windows\system32\SmartcardCredentialProvider.dll
2013-12-07 19:26 . 2013-10-05 20:25	1474048	----a-w-	c:\windows\system32\crypt32.dll
2013-12-07 19:25 . 2013-06-06 03:30	368128	----a-w-	c:\windows\system32\atmfd.dll
2013-12-06 19:14 . 2013-12-25 14:15	--------	d-sh--w-	c:\programdata\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-06 19:09 . 2013-12-06 19:10	--------	d-----w-	c:\users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 19:09 . 2005-05-18 10:52	1212416	----a-w-	c:\windows\SysWow64\NCTAudioInformation2.dll
2013-12-06 19:09 . 2005-05-17 11:37	1986560	----a-w-	c:\windows\SysWow64\NCTAudioFile2.dll
2013-12-06 19:09 . 2005-04-25 12:01	458752	----a-w-	c:\windows\SysWow64\NCTAudioRecord2.dll
2013-12-06 19:09 . 2005-04-25 12:01	458752	----a-w-	c:\windows\SysWow64\NCTAudioPlayer2.dll
2013-12-06 19:09 . 2005-04-15 11:08	880640	----a-w-	c:\windows\SysWow64\NCTAudioEditor2.dll
2013-12-06 19:09 . 2005-04-04 16:21	602112	----a-w-	c:\windows\SysWow64\NCTAudioTransform2.dll
2013-12-06 19:09 . 2005-03-28 14:54	479232	----a-w-	c:\windows\SysWow64\NCTAudioVisualization2.dll
2013-12-06 19:09 . 2004-11-04 12:31	835584	----a-w-	c:\windows\SysWow64\NCTAudioCDGrabber2.dll
2013-12-06 19:09 . 2002-01-05 15:37	344064	----a-w-	c:\windows\SysWow64\msvcr70.dll
2013-11-28 15:44 . 2013-11-28 15:44	--------	d-----w-	c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-28 01:29 . 2013-10-30 13:48	214392	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2013-12-28 01:23 . 2012-10-16 09:20	214392	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2013-12-18 18:26 . 2013-11-08 11:54	207904	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2013-12-18 18:26 . 2013-11-08 11:54	78648	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2013-12-18 18:26 . 2013-11-08 11:54	422216	----a-w-	c:\windows\system32\drivers\aswsp.sys
2013-12-18 18:26 . 2013-11-08 11:54	1034464	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2013-12-18 18:26 . 2012-11-27 16:48	334136	----a-w-	c:\windows\system32\aswBoot.exe
2013-12-18 18:26 . 2013-11-08 11:53	43152	----a-w-	c:\windows\avastSS.scr
2013-12-11 18:20 . 2012-10-27 15:29	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 18:20 . 2012-10-27 15:29	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-08 15:56 . 2013-11-08 11:54	65264	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-12-01 13:42 . 2012-09-27 17:18	90708896	----a-w-	c:\windows\system32\MRT.exe
2013-11-26 11:25 . 2012-09-24 07:22	267936	------w-	c:\windows\system32\MpSigStub.exe
2013-11-15 14:13 . 2012-10-16 09:27	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2013-11-14 11:57 . 2013-10-28 23:30	1064224	----a-w-	c:\windows\system32\nvspcap64.dll
2013-11-14 11:57 . 2013-10-28 23:30	955168	----a-w-	c:\windows\SysWow64\nvspcap.dll
2013-11-14 11:56 . 2013-11-20 13:52	1242400	----a-w-	c:\windows\SysWow64\nvumdshim.dll
2013-11-14 11:56 . 2012-10-10 20:23	1436528	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-11-14 11:56 . 2013-11-20 13:52	9619872	----a-w-	c:\windows\SysWow64\nvopencl.dll
2013-11-14 11:56 . 2013-11-20 13:52	11514624	----a-w-	c:\windows\system32\nvopencl.dll
2013-11-14 11:56 . 2013-11-20 13:52	317472	----a-w-	c:\windows\system32\nvoglshim64.dll
2013-11-14 11:56 . 2013-11-20 13:52	266984	----a-w-	c:\windows\SysWow64\nvoglshim32.dll
2013-11-14 11:56 . 2013-11-20 13:52	707360	----a-w-	c:\windows\system32\NvFBC64.dll
2013-11-14 11:56 . 2013-11-20 13:52	657184	----a-w-	c:\windows\system32\NvIFR64.dll
2013-11-14 11:56 . 2013-11-20 13:52	609568	----a-w-	c:\windows\SysWow64\NvFBC.dll
2013-11-14 11:56 . 2013-11-20 13:52	562464	----a-w-	c:\windows\SysWow64\NvIFR.dll
2013-11-14 11:56 . 2013-11-20 13:52	168616	----a-w-	c:\windows\system32\nvinitx.dll
2013-11-14 11:56 . 2013-11-20 13:52	1511712	----a-w-	c:\windows\system32\nvdispgenco6433182.dll
2013-11-14 11:56 . 2013-11-20 13:52	141336	----a-w-	c:\windows\SysWow64\nvinit.dll
2013-11-14 11:56 . 2013-11-20 13:52	1884448	----a-w-	c:\windows\system32\nvdispco6433182.dll
2013-11-14 11:56 . 2012-10-10 20:23	3069608	----a-w-	c:\windows\system32\nvapi64.dll
2013-11-14 11:56 . 2012-10-10 20:22	2697248	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-11-11 15:02 . 2011-01-26 17:52	6674208	----a-w-	c:\windows\system32\nvcpl.dll
2013-11-11 15:02 . 2011-01-26 17:52	3490080	----a-w-	c:\windows\system32\nvsvc64.dll
2013-11-11 15:01 . 2011-01-26 17:53	219424	----a-w-	c:\windows\system32\nvmctray.dll
2013-11-11 15:01 . 2011-01-26 17:53	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2013-11-11 15:01 . 2011-01-26 17:53	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2013-11-11 15:01 . 2011-01-26 16:53	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-11-11 15:01 . 2012-10-03 16:32	3467927	----a-w-	c:\windows\system32\nvcoproc.bin
2013-11-11 07:59 . 2013-11-11 07:59	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-11-08 11:53 . 2013-11-08 11:54	65776	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2013-11-08 11:53 . 2013-11-08 11:54	92544	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2013-10-30 13:48 . 2013-10-30 13:48	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2013-10-25 20:50 . 2013-10-25 20:50	113440	----a-w-	c:\programdata\Microsoft\VCExpress\10.0\1031\ResourceCache.dll
2013-10-23 10:30 . 2013-10-28 23:41	1884448	----a-w-	c:\windows\system32\nvdispco6433165.dll
2013-10-23 10:30 . 2013-10-28 23:41	1511712	----a-w-	c:\windows\system32\nvdispgenco6433165.dll
2013-10-16 00:48 . 2013-10-27 23:40	1884448	----a-w-	c:\windows\system32\nvdispco6433158.dll
2013-10-16 00:48 . 2013-10-27 23:40	1511712	----a-w-	c:\windows\system32\nvdispgenco6433158.dll
2013-10-14 17:00 . 2013-05-08 15:36	28368	----a-w-	c:\windows\system32\IEUDINIT.EXE
2013-09-30 07:16 . 2013-10-05 15:57	268968	----a-w-	c:\windows\SysWow64\sqlite3.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{d40c654d-7c51-4eb3-95b2-1e23905c2a2d}]
2010-11-05 01:58	297808	----a-w-	c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-19 3764024]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2013-05-08 41056]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 PirritUpdater;PirritUpdater;c:\program files (x86)\Pirrit\AutoUpdater.exe;c:\program files (x86)\Pirrit\AutoUpdater.exe [x]
R2 SecureUpdateSvc;SecureUpdate;c:\program files (x86)\Secure Speed Dial\IE\SecureUpdate.exe;c:\program files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [x]
R2 SystemStoreService;System Store;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService;c:\program files (x86)\SoftwareUpdater\SystemStore.exe  -displayname System Store -servicename SystemStoreService [x]
R3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dump_wmimmc;dump_wmimmc;c:\aeriagames\Wolfteam-DE\GameGuard\dump_wmimmc.sys;c:\aeriagames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Neo_VPN;VPN Client Device Driver - VPN;c:\windows\system32\DRIVERS\Neo_0073.sys;c:\windows\SYSNATIVE\DRIVERS\Neo_0073.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 SEE;SoftEther Ethernet Layer Driver;c:\windows\system32\drivers\see.sys;c:\windows\SYSNATIVE\drivers\see.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bbus.sys [x]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdfl.sys [x]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdm.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [x]
R3 wod0205;WeOnlyDo Network Adapter 2.5;c:\windows\system32\DRIVERS\wod0205.sys;c:\windows\SYSNATIVE\DRIVERS\wod0205.sys [x]
R3 X6va011;X6va011;c:\windows\SysWOW64\Drivers\X6va011;c:\windows\SysWOW64\Drivers\X6va011 [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys;c:\windows\xhunter1.sys [x]
R4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [x]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys;c:\windows\SYSNATIVE\DRIVERS\RsFx0103.sys [x]
R4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE;c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-12-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-27 18:21]
.
2013-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core.job
- c:\users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-19 15:50]
.
2013-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA.job
- c:\users\Dome\AppData\Local\Google\Update\GoogleUpdate.exe [2013-04-19 15:50]
.
2012-12-31 c:\windows\Tasks\hpwebreg_CN14K3N0N305D1.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\hpwebreg.exe [2010-11-16 19:29]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2013-01-28 14:49	342176	----a-w-	c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}"= "c:\program files\AVAST Software\Avast\aswWebRepIE64.dll" [2013-12-18 1372864]
.
[HKEY_CLASSES_ROOT\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-19 12:37	287280	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-14 1028384]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-11-14 1064224]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
Trusted Zone: aeriagames.com
TCP: DhcpNameServer = 192.168.2.1
DPF: {24896211-7A6C-4C7A-A4D9-686B5490B8DC} - hxxp://wk2.gameheart.jp/GameheartWebStart.cab
FF - ProfilePath - c:\users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-11-02 02:11; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-11-15 20:10; {e9876d64-8bac-4287-bdc4-0f0c56804b4f}; c:\users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\extensions\{e9876d64-8bac-4287-bdc4-0f0c56804b4f}.xpi
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=&q=
FF - user.js: extensions.mysearchdial.id - F80F41164D7D4BA6
FF - user.js: extensions.mysearchdial.instlDay - 15846
FF - user.js: extensions.mysearchdial.vrsn - 
FF - user.js: extensions.mysearchdial.vrsni - 
FF - user.js: extensions.mysearchdial_i.vrsnTs - 7:37
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - airmsd
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef - 
FF - user.js: extensions.mysearchdial.dfltLng - 
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial_i.hmpg - true
FF - user.js: extensions.irspeeddial.aflt - airmsd
FF - user.js: extensions.irspeeddial.instlRef - 
FF - user.js: extensions.irspeeddial.cr - 318048556
FF - user.js: extensions.irspeeddial.cd - 2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q
user_pref(extensions.eseeky.hmpgUrl,hxxp://eseeky.com/ws/?source=0e457f76&tbp=homepage&toolbarid=base&u=24b74ba60000000000009444529b4209);
user_pref(extensions.eseeky.srchPrvdr,Search The Web (eseeky));
user_pref(extensions.eseeky.newTabUrl,hxxp://eseeky.com/ws/?source=0e457f76&tbp=homepage&toolbarid=base&u=24b74ba60000000000009444529b4209);
user_pref(extensions.eseeky.newTab,true);
user_pref(extensions.eseeky.rvrt,false);
user_pref(extensions.eseeky.cmpny,eseeky);
user_pref(extensions.eseeky.prdct,eseeky);
user_pref(extensions.eseeky.prtnrId,eseeky);
user_pref(extensions.eseeky.vrsn,1.8.21.26);
user_pref(extensions.eseeky.vrsnTs,);
user_pref(extensions.eseeky.afltId,00006);
user_pref(extensions.eseeky.aflt,00006);
user_pref(extensions.eseeky.smplGrp,none);
user_pref(extensions.eseeky.tlbrId,base);
user_pref(extensions.eseeky.instlRef,0e457f76);
user_pref(extensions.eseeky.dfltLng,);
user_pref(extensions.eseeky.tlbrSrchUrl,hxxp://eseeky.com/ws/?source=0e457f76&tbp=main&toolbarid=base&u=24b74ba60000000000009444529b4209&q=);
user_pref(extensions.eseeky.admin,false);
user_pref(extensions.eseeky.dpblck,);
user_pref(extensions.eseeky.cntry,);
user_pref(extensions.eseeky.id,24b74ba60000000000009444529b4209);
user_pref(extensions.eseeky.hardid,24b74ba60000000000009444529b4209);
user_pref(extensions.eseeky.instlDay,15914);
user_pref(extensions.eseeky.excTlbr,true);
FF - user.js: extensions.shownSelectionUI - true
FF - user.js: extensions.delta.tlbrSrchUrl - 
FF - user.js: extensions.delta.id - 24b74ba600000000000000ac17ad889b
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15983
FF - user.js: extensions.delta.vrsn - 1.8.24.6
FF - user.js: extensions.delta.vrsni - 1.8.24.6
FF - user.js: extensions.delta.vrsnTs - 1.8.24.618:03
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - de
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=120695&tsp=5026
FF - user.js: extensions.delta_i.babExt - 
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
FF - user.js: extensions.Softonic.tlbrSrchUrl - hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=24b74ba60000000000009444529b4209&q=
FF - user.js: extensions.Softonic.id - 24b74ba60000000000009444529b4209
FF - user.js: extensions.Softonic.appId - {7ABBFE1C-E485-44AA-8F36-353751B4124D}
FF - user.js: extensions.Softonic.instlDay - 16045
FF - user.js: extensions.Softonic.vrsn - 1.8.21.14
FF - user.js: extensions.Softonic.vrsni - 1.8.21.14
FF - user.js: extensions.Softonic.vrsnTs - 1.8.21.1420:10
FF - user.js: extensions.Softonic.prtnrId - softonic
FF - user.js: extensions.Softonic.prdct - Softonic
FF - user.js: extensions.Softonic.aflt - OC
FF - user.js: extensions.Softonic.smplGrp - none
FF - user.js: extensions.Softonic.tlbrId - opencandy2013
FF - user.js: extensions.Softonic.instlRef - MOY00621
FF - user.js: extensions.Softonic.dfltLng - de
FF - user.js: extensions.Softonic.excTlbr - false
FF - user.js: extensions.Softonic.ffxUnstlRst - false
FF - user.js: extensions.Softonic.admin - false
FF - user.js: extensions.Softonic.autoRvrt - false
FF - user.js: extensions.Softonic.rvrt - false
FF - user.js: extensions.Softonic.hmpg - true
FF - user.js: extensions.Softonic.hmpgUrl - hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=24b74ba60000000000009444529b4209
FF - user.js: extensions.Softonic.dfltSrch - true
FF - user.js: extensions.Softonic.srchPrvdr - Search the web (Softonic)
FF - user.js: extensions.Softonic.dnsErr - true
FF - user.js: extensions.Softonic.newTab - true
FF - user.js: extensions.Softonic.newTabUrl - hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=24b74ba60000000000009444529b4209
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
AddRemove-Microsoft Visual Basic 2010 Express - DEU - c:\program files (x86)\Microsoft Visual Studio 10.0\Microsoft Visual Basic 2010 Express - DEU\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va011]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va011"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}"=hex:51,66,7a,6c,4c,1d,38,12,8d,ec,f8,
   7b,2b,25,27,06,e7,c4,bc,f0,98,15,0d,de
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
   1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}"=hex:51,66,7a,6c,4c,1d,38,12,60,d8,39,
   64,cd,04,79,07,f5,b7,d6,9a,c1,81,e0,1c
"{6D53EC84-6AAE-4787-AEEE-F4628F01010C}"=hex:51,66,7a,6c,4c,1d,38,12,ea,ef,40,
   69,9c,24,e9,02,d1,f8,b7,22,8a,5f,45,18
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
   72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
   94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}"=hex:51,66,7a,6c,4c,1d,38,12,85,b5,89,
   a4,87,7f,22,00,e8,fa,d8,69,48,cc,aa,3e
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
   df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}"=hex:51,66,7a,6c,4c,1d,38,12,27,28,80,
   ea,f2,9b,77,08,dc,cc,8d,48,4c,7b,c9,f2
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:dd,3d,85,4b,d5,84,ce,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,5b,fe,b4,b1,be,c8,0c,44,ac,4b,20,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,5b,fe,b4,b1,be,c8,0c,44,ac,4b,20,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-12-28  12:22:10
ComboFix-quarantined-files.txt  2013-12-28 11:22
.
Vor Suchlauf: 15 Verzeichnis(se), 122.870.784.000 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 122.788.892.672 Bytes frei
.
- - End Of File - - E2B10676C78C3D64551E07AB9C0A1368
--- --- ---

Alt 29.12.2013, 11:30   #9
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 29.12.2013, 19:42   #10
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


#AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 29/12/2013 um 19:06:27
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Dome - DOME-PC
# Gestartet von : C:\Users\Dome\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : PirritUpdater
[#] Dienst Gelöscht : SystemStoreService

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\BitGuard
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\BrowserDefender
Ordner Gelöscht : C:\ProgramData\DSearchLink
Ordner Gelöscht : C:\ProgramData\eSafe
Ordner Gelöscht : C:\ProgramData\Iminent
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Program Files (x86)\Iminent
Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
Ordner Gelöscht : C:\Program Files (x86)\MyPC Backup
Ordner Gelöscht : C:\Program Files (x86)\Secure Speed Dial
Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
Ordner Gelöscht : C:\Program Files (x86)\Common Files\Spigot
Ordner Gelöscht : C:\Program Files (x86)\Common Files\Umbrella
Ordner Gelöscht : C:\Windows\SysWOW64\hotspot shield
Ordner Gelöscht : C:\Users\Dome\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\Dome\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Dome\AppData\Local\Pirrit Suggestor
Ordner Gelöscht : C:\Users\Dome\AppData\Local\Searchprotect
Ordner Gelöscht : C:\Users\Dome\AppData\Local\Software_Updater
Ordner Gelöscht : C:\Users\Dome\AppData\Local\SoftwareUpdater
Ordner Gelöscht : C:\Users\Dome\AppData\Local\SwvUpdater
Ordner Gelöscht : C:\Users\Dome\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\Dome\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\Dome\AppData\LocalLow\Delta
Ordner Gelöscht : C:\Users\Dome\AppData\LocalLow\Softonic
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\eIntaller
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\Iminent
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\Pirrit
Ordner Gelöscht : C:\Users\Dome\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Dome\Documents\Mobogenie
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\suggestor@suggestor.pirrit.com.xpi
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Dome\AppData\Local\mysearchdial.crx
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\invalidprefs.js
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\conduit-search.xml
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\softonic.xml
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\Web Search.xml
Datei Gelöscht : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\user.js
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\Desk 365 RunAsStdUser
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater Ui
Datei Gelöscht : C:\Windows\System32\Tasks\Software Updater

***** [ Verknüpfungen ] *****

Verknüpfung Desinfiziert : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support\Contact.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Dome\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk

***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\addlyrics_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\addlyrics_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AutoLyricsUpdater_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AutoLyricsUpdater_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Schlüssel Gelöscht : HKCU\Software\5928cdeb06ebd47
Schlüssel Gelöscht : HKLM\SOFTWARE\5928cdeb06ebd47
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_hamachi_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D40C654D-7C51-4EB3-95B2-1E23905C2A2D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\anchorfree
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\lollipop
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Pokki
Schlüssel Gelöscht : HKCU\Software\powerpack
Schlüssel Gelöscht : HKCU\Software\SearchProtectINT
Schlüssel Gelöscht : HKCU\Software\Somoto
Schlüssel Gelöscht : HKCU\Software\systweak
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AutoLyrics
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\LyricsContainer
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Search Settings
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\BrowserMngr
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Desksvc
Schlüssel Gelöscht : HKLM\Software\hdcode
Schlüssel Gelöscht : HKLM\Software\InstallCore
Schlüssel Gelöscht : HKLM\Software\Pirrit
Schlüssel Gelöscht : HKLM\Software\SearchProtect
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\Software\Video downloader
Schlüssel Gelöscht : HKLM\Software\Vittalia
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{89B5DFCA-81E0-4EA4-8A0A-4F4087A1DD00}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Speedchecker Limited
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Video downloader
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\prefs.js ]

Zeile gelöscht : user_pref("extensions.Softonic.admin", false);
Zeile gelöscht : user_pref("extensions.Softonic.aflt", "OC");
Zeile gelöscht : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
Zeile gelöscht : user_pref("extensions.Softonic.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.Softonic.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.Softonic.dnsErr", true);
Zeile gelöscht : user_pref("extensions.Softonic.excTlbr", false);
Zeile gelöscht : user_pref("extensions.Softonic.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.Softonic.hmpg", true);
Zeile gelöscht : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=24b74ba60000000000009444529b4209");
Zeile gelöscht : user_pref("extensions.Softonic.id", "24b74ba60000000000009444529b4209");
Zeile gelöscht : user_pref("extensions.Softonic.instlDay", "16045");
Zeile gelöscht : user_pref("extensions.Softonic.instlRef", "MOY00621");
Zeile gelöscht : user_pref("extensions.Softonic.newTab", true);
Zeile gelöscht : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=24b74ba60000000000009444529b4209");
Zeile gelöscht : user_pref("extensions.Softonic.prdct", "Softonic");
Zeile gelöscht : user_pref("extensions.Softonic.prtnrId", "softonic");
Zeile gelöscht : user_pref("extensions.Softonic.rvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=24b74ba60000000000009444529b4209&q=");
Zeile gelöscht : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.Softonic.vrsnTs", "1.8.21.1420:10:45");
Zeile gelöscht : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.crossrider.bic", "1404ab918650c5bfd8fbfb33411732c7");
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.id", "24b74ba600000000000000ac17ad889b");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15983");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.618:03:09");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=120695&tsp=5026");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.eseeky.srchPrvdr", "Search The Web (eseeky)");
Zeile gelöscht : user_pref("extensions.helperbar.DockingPositionDown", false);
Zeile gelöscht : user_pref("extensions.helperbar.LastHiddenTime", 22918543);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarDisabled", true);
Zeile gelöscht : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
Zeile gelöscht : user_pref("extensions.helperbar.Visibility", true);
Zeile gelöscht : user_pref("extensions.helperbar.countryiso", "de");
Zeile gelöscht : user_pref("extensions.helperbar.downloadprovider", "snapdogoblidooyb");
Zeile gelöscht : user_pref("extensions.helperbar.installationid", "1098efc2-27d9-45b7-b9b8-3c3aa5b387a6");
Zeile gelöscht : user_pref("extensions.helperbar.installdate", "29/07/2013");
Zeile gelöscht : user_pref("extensions.helperbar.publisher", "snapdogoblidooyb");
Zeile gelöscht : user_pref("extensions.mysearchdial.aflt", "airmsd");
Zeile gelöscht : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Zeile gelöscht : user_pref("extensions.mysearchdial.dfltLng", "");
Zeile gelöscht : user_pref("extensions.mysearchdial.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.mysearchdial.dnsErr", true);
Zeile gelöscht : user_pref("extensions.mysearchdial.excTlbr", false);
Zeile gelöscht : user_pref("extensions.mysearchdial.hmpg", true);
Zeile gelöscht : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1[...]
Zeile gelöscht : user_pref("extensions.mysearchdial.id", "F80F41164D7D4BA6");
Zeile gelöscht : user_pref("extensions.mysearchdial.instlDay", "15846");
Zeile gelöscht : user_pref("extensions.mysearchdial.instlRef", "");
Zeile gelöscht : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1[...]
Zeile gelöscht : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Zeile gelöscht : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Zeile gelöscht : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Zeile gelöscht : user_pref("extensions.mysearchdial.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1[...]
Zeile gelöscht : user_pref("extensions.mysearchdial.vrsn", "");
Zeile gelöscht : user_pref("extensions.mysearchdial.vrsni", "");
Zeile gelöscht : user_pref("extensions.mysearchdial_i.hmpg", true);
Zeile gelöscht : user_pref("extensions.mysearchdial_i.newTab", false);
Zeile gelöscht : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.mysearchdial_i.vrsnTs", "7:37:28");
Zeile gelöscht : user_pref("iminent.ShowThankyouPixel", "0");
Zeile gelöscht : user_pref("iminent.displayFavLinks", "1");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent102", "1376695791054");
Zeile gelöscht : user_pref("iminent.registerToolbarEvent140", "1376690941660");
Zeile gelöscht : user_pref("iminent.version", "7.33.3.1");
Zeile gelöscht : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.33.3.1\",\"InstallEventCTime\":1376582639274,\"InstallEvent\":\"True\"}");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.LayoutId", "1");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.SOFTONICREFRESHRATE", "140000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.BHPCode", "01");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultEvent", "000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultWebSite", "000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.IminentClientCode", "11");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.SmartFavCode", "02");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ShowThankyouPixel", "0");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.displayFavLinks", "1");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.enabledAds", "false");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent102", "1376480716580");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent134", "1376480718415");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent136", "1376503106907");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent140", "1370689037940");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.LayoutId", "1");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.SOFTONICREFRESHRATE", "140000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.BHPCode", "01");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultEvent", "000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultWebSite", "000");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.IminentClientCode", "11");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.SmartFavCode", "02");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ShowThankyouPixel", "0");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.displayFavLinks", "1");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.enabledAds", "false");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent102", "1372872694397");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent109", "1375809312657");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent111", "1375809312662");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent112", "1375809313397");
Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent122", "1375809312667");

-\\ Google Chrome v

[ Datei : C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [46523 octets] - [29/12/2013 19:05:39]
AdwCleaner[S0].txt - [43703 octets] - [29/12/2013 19:06:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [43764 octets] ##########
--- --- ---

Malwarebytes ergebnisse:
Code:
ATTFilter
# Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.29.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Dome :: DOME-PC [Administrator]

Schutz: Deaktiviert

29.12.2013 15:00:18
mbam-log-2013-12-29 (15-00-18).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM | P2P
Deaktivierte Suchlaufeinstellungen: 
Durchsuchte Objekte: 479517
Laufzeit: 1 Stunde(n), 2 Minute(n), 41 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
--- --- ---
JRT ergebnisse:
Code:
ATTFilter
#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Dome on 29.12.2013 at 19:11:15,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-962208086-2550042306-4176666752-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-962208086-2550042306-4176666752-1000\Software\video downloader
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{07F6B409-A840-4E8C-BECC-6B2358B9EE69}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted: [Folder] C:\Users\Dome\AppData\Roaming\mozilla\firefox\profiles\mpjf4wj2.default\extensions\staged
Emptied folder: C:\Users\Dome\AppData\Roaming\mozilla\firefox\profiles\mpjf4wj2.default\minidumps [41 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.12.2013 at 19:16:13,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- --- ---

Alt 29.12.2013, 19:43   #11
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


#
FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Dome (administrator) on DOME-PC on 29-12-2013 19:27:14
Running from C:\Users\Dome\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x79DABEB8024CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {89544C87-842E-4726-BB09-192DC970DE84} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=407956&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
DPF: HKLM-x32 {24896211-7A6C-4C7A-A4D9-686B5490B8DC} hxxp://wk2.gameheart.jp/GameheartWebStart.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @ogplanet.com/npOGPPlugin - C:\Windows\system32\npOGPPlugin.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Better Battlelog (BBLog) - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Black Google Theme - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{e9876d64-8bac-4287-bdc4-0f0c56804b4f}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP250D3F6B-40B5-4948-94D0-7C0957F511BD&SSPV=", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=24b74ba60000000000009444529b4209", "hxxp://www.google.com"
CHR Extension: (Forge of Empires) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaphblkfplenhkephgneolhnmjminjg\1.2_0
CHR Extension: (Battlefield 4 Theme) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckppbgmmmlkhblbcdkjohbklfecclock\1_0
CHR Extension: (Tampermonkey) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.5.3630.77_0
CHR Extension: (AdBlock) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (avast! Online Security) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0
CHR Extension: (Grepolis) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog\2.11.14_0
CHR Extension: (Google Wallet) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-19] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2013-12-19] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-14] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-30] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 npggsvc; C:\Windows\system32\GameMon.des -service [x]
S2 SecureUpdateSvc; C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [x]

==================== Drivers (Whitelisted) ====================

S1 acedrv05; C:\Windows\system32\drivers\acedrv05.sys [136192 2013-03-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-18] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [439648 2013-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-18] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-12-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-18] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-07-12] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-30] (DT Soft Ltd)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-07-12] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0073.sys [28768 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 wod0205; C:\Windows\System32\DRIVERS\wod0205.sys [33160 2011-04-23] (WeOnlyDo Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S1 aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
U3 DfSdkS; 
S3 dump_wmimmc; \??\C:\AeriaGames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP5\WNt500x64\Sandra.sys [x]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [x]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-29 19:26 - 2013-12-29 19:26 - 01931302 _____ (Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe
2013-12-29 19:16 - 2013-12-29 19:17 - 00001720 _____ C:\Users\Dome\Desktop\JRT.txt
2013-12-29 19:11 - 2013-12-29 19:11 - 00000000 ____D C:\Windows\ERUNT
2013-12-29 19:09 - 2013-12-29 19:09 - 00043917 _____ C:\Users\Dome\Desktop\AdwCleaner[S0].txt
2013-12-29 19:06 - 2013-12-29 19:06 - 00046523 _____ C:\Users\Dome\Desktop\AdwCleaner[R0].txt
2013-12-29 19:05 - 2013-12-29 19:06 - 00000000 ____D C:\AdwCleaner
2013-12-29 14:56 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Desktop\JRT.exe
2013-12-29 14:56 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Desktop\adwcleaner.exe
2013-12-29 14:53 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Downloads\JRT.exe
2013-12-29 14:51 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Downloads\adwcleaner.exe
2013-12-29 14:48 - 2013-12-29 14:49 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-12-29 02:01 - 2013-12-29 02:01 - 00001978 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-28 12:22 - 2013-12-28 12:22 - 00037677 _____ C:\ComboFix.txt
2013-12-28 12:11 - 2013-12-28 12:22 - 00000000 ____D C:\Qoobox
2013-12-28 12:11 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-28 12:11 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-28 12:11 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-28 12:10 - 2013-12-28 12:21 - 00000000 ____D C:\Windows\erdnt
2013-12-28 12:09 - 2013-12-28 12:09 - 05158590 _____ (Swearware) C:\Users\Dome\Downloads\ComboFix.exe
2013-12-27 16:08 - 2013-12-27 16:08 - 00033754 _____ C:\Users\Dome\Downloads\Log Files.zip
2013-12-26 21:32 - 2013-12-26 21:32 - 00001319 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-12-26 21:27 - 2013-11-14 12:57 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-12-26 21:27 - 2013-11-14 12:57 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-12-26 21:27 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-12-26 21:26 - 2013-12-26 21:26 - 00000000 ____D C:\NVIDIA
2013-12-26 21:08 - 2013-12-26 21:26 - 255488144 _____ (NVIDIA Corporation) C:\Users\Dome\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-12-26 17:15 - 2013-12-26 17:15 - 03821064 _____ C:\Users\Dome\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-12-26 13:59 - 2013-12-26 13:59 - 00037336 _____ C:\Users\Dome\Downloads\Addition (1).txt
2013-12-26 13:58 - 2013-12-26 13:58 - 00090004 _____ C:\Users\Dome\Downloads\FRST (1).txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00090004 _____ C:\Users\Dome\Desktop\FRST.txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00037336 _____ C:\Users\Dome\Desktop\Addition.txt
2013-12-26 13:04 - 2013-12-29 19:27 - 00015732 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-26 13:04 - 2013-12-26 13:04 - 00037336 _____ C:\Users\Dome\Downloads\Addition.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:44 - 2013-12-26 03:16 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 02:26 - 2013-12-26 02:27 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu.exe
2013-12-26 01:40 - 2013-12-26 14:03 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:47 - 2013-12-26 00:48 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:20 - 2013-12-25 21:21 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 15:16 - 2013-10-12 02:28 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-12-25 15:16 - 2013-10-12 02:28 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-12-25 15:16 - 2013-10-12 02:28 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2013-12-25 15:11 - 2013-12-25 15:13 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 01:59 - 2013-12-25 14:14 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 01:57 - 2013-12-25 01:58 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:13 - 2013-12-25 01:15 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-23 21:25 - 2013-12-26 01:54 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:22 - 2013-12-23 15:25 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:42 - 2013-11-14 12:56 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-23 14:42 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00067176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00057960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-22 16:13 - 2013-12-29 14:57 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-22 16:13 - 2013-12-29 14:57 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 16:13 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-22 15:15 - 2013-12-22 15:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-22 14:32 - 2013-12-29 14:45 - 00068890 _____ C:\Windows\PFRO.log
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-29 19:12 - 00013408 _____ C:\Windows\setupact.log
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:34 - 2013-12-24 01:48 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:16 - 2013-12-26 03:14 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-18 19:26 - 2013-12-20 16:55 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:23 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 20:16 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 13:39 - 2013-12-14 13:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-12 20:54 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 20:54 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 20:54 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 20:54 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 20:54 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 20:54 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 20:54 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 20:54 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 20:54 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 20:54 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 20:54 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 20:54 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 20:54 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 20:54 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 20:50 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-12 20:50 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-12 20:50 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 20:50 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 20:50 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 20:50 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 20:50 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 20:50 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-12 20:50 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 20:50 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-09 21:54 - 2013-12-26 00:59 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-09 19:32 - 2013-12-25 17:22 - 00000000 ____D C:\AeriaGames
2013-12-08 16:57 - 2013-12-19 13:37 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-08 16:56 - 2013-12-18 19:25 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-08 14:08 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-12-08 14:08 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-12-08 14:08 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-12-08 14:08 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-08 14:08 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-08 14:08 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-08 14:08 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-12-08 14:08 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-12-08 14:08 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-12-08 14:08 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-12-08 14:08 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-12-08 14:08 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-12-08 14:08 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-08 14:08 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:04 - 2013-12-07 23:05 - 00000000 ___HD C:\Windows\Icons
2013-12-07 23:00 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-07 23:00 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-07 23:00 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-07 23:00 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-12-07 23:00 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-12-07 23:00 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-07 23:00 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-12-07 23:00 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-12-07 23:00 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-12-07 22:59 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-07 22:59 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-12-07 22:59 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-07 22:59 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-07 22:59 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-07 22:59 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-12-07 22:59 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-07 22:59 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-12-07 22:59 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-12-07 20:26 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-07 20:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-07 20:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-07 20:26 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-07 20:26 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-12-07 20:26 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-07 20:26 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-07 20:26 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-07 20:26 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-07 20:26 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-07 20:25 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-07 20:25 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-07 20:25 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-07 20:25 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-07 20:25 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-07 20:25 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-12-07 20:25 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-07 20:25 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-07 20:25 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-07 20:25 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-07 20:25 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-07 20:25 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-07 20:25 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-07 10:58 - 2013-12-24 01:22 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-06 20:14 - 2013-12-25 15:15 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 20:09 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2013-12-06 20:09 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2013-12-06 20:09 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2013-12-06 20:09 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2013-12-06 20:09 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2013-12-06 20:09 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2013-12-06 20:09 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll

==================== One Month Modified Files and Folders =======

2013-12-29 19:27 - 2013-12-26 13:04 - 00015732 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-29 19:26 - 2013-12-29 19:26 - 01931302 _____ (Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe
2013-12-29 19:20 - 2013-03-28 19:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-29 19:17 - 2013-12-29 19:16 - 00001720 _____ C:\Users\Dome\Desktop\JRT.txt
2013-12-29 19:16 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-29 19:16 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-29 19:12 - 2013-12-21 23:34 - 00013408 _____ C:\Windows\setupact.log
2013-12-29 19:11 - 2013-12-29 19:11 - 00000000 ____D C:\Windows\ERUNT
2013-12-29 19:10 - 2013-11-08 22:49 - 00003018 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-12-29 19:09 - 2013-12-29 19:09 - 00043917 _____ C:\Users\Dome\Desktop\AdwCleaner[S0].txt
2013-12-29 19:08 - 2012-09-24 07:25 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-29 19:08 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-29 19:06 - 2013-12-29 19:06 - 00046523 _____ C:\Users\Dome\Desktop\AdwCleaner[R0].txt
2013-12-29 19:06 - 2013-12-29 19:05 - 00000000 ____D C:\AdwCleaner
2013-12-29 19:06 - 2013-11-18 18:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-29 19:06 - 2013-07-29 17:35 - 00001051 _____ C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2013-12-29 19:06 - 2013-06-23 00:04 - 01533073 _____ C:\Windows\WindowsUpdate.log
2013-12-29 19:06 - 2013-05-08 16:39 - 00001005 _____ C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-29 19:06 - 2013-04-19 16:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-12-29 19:06 - 2013-04-16 19:27 - 00001021 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-29 19:05 - 2012-09-27 17:21 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TS3Client
2013-12-29 16:27 - 2012-09-27 18:26 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-29 16:25 - 2013-02-10 18:47 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Skype
2013-12-29 16:14 - 2013-11-13 06:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-29 14:57 - 2013-12-22 16:13 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-29 14:57 - 2013-12-22 16:13 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-29 14:53 - 2013-12-29 14:56 - 01034531 _____ (Thisisu) C:\Users\Dome\Desktop\JRT.exe
2013-12-29 14:53 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Downloads\JRT.exe
2013-12-29 14:51 - 2013-12-29 14:56 - 01233962 _____ C:\Users\Dome\Desktop\adwcleaner.exe
2013-12-29 14:51 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Downloads\adwcleaner.exe
2013-12-29 14:49 - 2013-12-29 14:48 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-12-29 14:45 - 2013-12-22 14:32 - 00068890 _____ C:\Windows\PFRO.log
2013-12-29 03:44 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Local\CrashDumps
2013-12-29 02:01 - 2013-12-29 02:01 - 00001978 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-29 02:01 - 2013-03-01 07:41 - 00003922 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{783438CF-2A8A-471F-B0B7-D902999259E6}
2013-12-28 14:17 - 2013-10-30 14:48 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-28 14:01 - 2012-10-16 10:20 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-28 13:23 - 2013-08-10 12:59 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-28 12:22 - 2013-12-28 12:22 - 00037677 _____ C:\ComboFix.txt
2013-12-28 12:22 - 2013-12-28 12:11 - 00000000 ____D C:\Qoobox
2013-12-28 12:22 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-12-28 12:21 - 2013-12-28 12:10 - 00000000 ____D C:\Windows\erdnt
2013-12-28 12:20 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-12-28 12:09 - 2013-12-28 12:09 - 05158590 _____ (Swearware) C:\Users\Dome\Downloads\ComboFix.exe
2013-12-27 18:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-12-27 18:42 - 2013-02-20 18:52 - 00000000 ____D C:\Users\Dome\AppData\Local\ArmA 2 OA
2013-12-27 16:08 - 2013-12-27 16:08 - 00033754 _____ C:\Users\Dome\Downloads\Log Files.zip
2013-12-26 21:32 - 2013-12-26 21:32 - 00001319 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-12-26 21:30 - 2012-09-24 07:23 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-26 21:28 - 2012-09-24 07:22 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-26 21:26 - 2013-12-26 21:26 - 00000000 ____D C:\NVIDIA
2013-12-26 21:26 - 2013-12-26 21:08 - 255488144 _____ (NVIDIA Corporation) C:\Users\Dome\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-12-26 21:00 - 2013-04-29 17:24 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2013-12-26 17:15 - 2013-12-26 17:15 - 03821064 _____ C:\Users\Dome\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-12-26 17:15 - 2012-11-02 12:58 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-12-26 14:03 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 13:59 - 2013-12-26 13:59 - 00037336 _____ C:\Users\Dome\Downloads\Addition (1).txt
2013-12-26 13:58 - 2013-12-26 13:58 - 00090004 _____ C:\Users\Dome\Downloads\FRST (1).txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00090004 _____ C:\Users\Dome\Desktop\FRST.txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00037336 _____ C:\Users\Dome\Desktop\Addition.txt
2013-12-26 13:04 - 2013-12-26 13:04 - 00037336 _____ C:\Users\Dome\Downloads\Addition.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 03:16 - 2013-12-26 02:44 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 03:14 - 2013-12-21 18:16 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:27 - 2013-12-26 02:26 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu.exe
2013-12-26 01:54 - 2013-12-23 21:25 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-26 01:54 - 2013-11-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\uTorrent
2013-12-26 01:54 - 2013-05-11 16:18 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2
2013-12-26 01:41 - 2010-11-04 08:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 01:38 - 2010-11-04 07:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-26 01:35 - 2012-10-16 10:41 - 00000000 ____D C:\Users\Dome\AppData\Local\ESN Sonar
2013-12-26 01:32 - 2010-11-04 08:08 - 00000000 ____D C:\Program Files (x86)\Packard Bell
2013-12-26 01:06 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 01:03 - 2013-10-25 19:33 - 00000000 ____D C:\Users\Dome\AppData\Local\Unity
2013-12-26 01:00 - 2013-08-12 23:17 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CDG
2013-12-26 00:59 - 2013-12-09 21:54 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:48 - 2013-12-26 00:47 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:21 - 2013-12-25 21:20 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 17:26 - 2013-10-25 19:30 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-25 17:22 - 2013-12-09 19:32 - 00000000 ____D C:\AeriaGames
2013-12-25 17:22 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2013-12-25 15:15 - 2013-12-06 20:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-25 15:13 - 2013-12-25 15:11 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 14:14 - 2013-12-25 01:59 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 01:58 - 2013-12-25 01:57 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:15 - 2013-12-25 01:13 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 11:17 - 2013-04-19 16:50 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA.job
2013-12-24 11:17 - 2013-04-19 16:50 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core.job
2013-12-24 01:48 - 2013-12-21 19:34 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-24 01:23 - 2013-05-18 16:43 - 00003116 _____ C:\Windows\System32\Tasks\{372228DF-0B7D-4A55-82FE-613FF172BD78}
2013-12-24 01:23 - 2013-04-10 18:08 - 00003372 _____ C:\Windows\System32\Tasks\{28E06FD2-71B1-47A9-B7BF-CCD743A4F569}
2013-12-24 01:22 - 2013-12-07 10:58 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-24 01:22 - 2013-04-19 16:50 - 00004096 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA
2013-12-24 01:22 - 2013-04-19 16:50 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core
2013-12-24 01:21 - 2013-10-28 09:29 - 00003096 _____ C:\Windows\System32\Tasks\ASC6_PerformanceMonitor
2013-12-24 01:21 - 2012-12-16 14:37 - 00003160 _____ C:\Windows\System32\Tasks\Game_Booster_AutoUpdate
2013-12-24 01:20 - 2012-09-29 09:49 - 00003706 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-12-24 01:19 - 2013-10-28 09:50 - 00003168 _____ C:\Windows\System32\Tasks\SmartDefrag_Startup
2013-12-24 01:19 - 2013-10-28 09:50 - 00003166 _____ C:\Windows\System32\Tasks\SmartDefragUpdate
2013-12-24 01:19 - 2013-10-05 17:10 - 00003174 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate
2013-12-24 01:17 - 2013-05-28 23:33 - 00000000 ____D C:\Windows\pss
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 19:44 - 2012-09-27 18:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:32 - 2010-11-04 07:57 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:25 - 2013-12-23 15:22 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:25 - 2012-09-27 16:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Packard Bell
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:18 - 2010-11-04 08:33 - 00000000 ____D C:\OEM
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-23 14:23 - 2012-09-24 17:15 - 00765588 _____ C:\Windows\system32\perfh007.dat
2013-12-23 14:23 - 2012-09-24 17:15 - 00174818 _____ C:\Windows\system32\perfc007.dat
2013-12-23 14:23 - 2009-07-14 06:13 - 01807338 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 15:16 - 2013-12-22 15:15 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:14 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome\AppData\Local\VirtualStore
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-20 16:55 - 2013-12-18 19:26 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-20 16:43 - 2012-10-25 18:18 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-19 13:37 - 2013-12-08 16:57 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-19 13:33 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome
2013-12-19 13:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-12-19 13:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-18 19:26 - 2013-11-08 12:54 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-18 19:26 - 2013-11-08 12:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-18 19:26 - 2012-11-27 17:48 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-18 19:25 - 2013-12-08 16:56 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-18 16:53 - 2007-07-12 02:49 - 00000000 ____D C:\Windows\Panther
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:24 - 2013-12-16 14:23 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 20:16 - 2013-12-14 13:40 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 20:16 - 2009-07-14 03:34 - 76283904 _____ C:\Windows\system32\config\software.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 24903680 _____ C:\Windows\system32\config\system.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 00032768 _____ C:\Windows\system32\config\security.bak
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 13:39 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-14 11:09 - 2009-07-14 03:34 - 00065536 _____ C:\Windows\system32\config\sam.bak
2013-12-13 22:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-12 20:54 - 2013-08-14 12:07 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 19:21 - 2013-03-28 19:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 19:20 - 2012-10-27 16:29 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 19:20 - 2012-10-27 16:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-08 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-08 16:56 - 2013-11-08 12:54 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-12-08 14:18 - 2013-02-24 12:41 - 01780682 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-07 23:39 - 2009-07-14 03:34 - 75759616 _____ C:\Windows\system32\config\SOFTWARE_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 24641536 _____ C:\Windows\system32\config\SYSTEM_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 45875200 _____ C:\Windows\system32\config\COMPONENTS_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 01835008 _____ C:\Windows\system32\config\DEFAULT_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM_tureg_old
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:05 - 2013-12-07 23:04 - 00000000 ___HD C:\Windows\Icons
2013-12-07 10:58 - 2013-02-20 19:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Downloaded Installations
2013-12-07 10:58 - 2012-09-29 09:49 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-07 10:50 - 2012-09-29 09:45 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-12-06 20:14 - 2012-09-29 09:45 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TuneUp Software
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 15:49 - 2012-09-27 16:22 - 00000000 ___RD C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 15:47 - 2013-11-10 19:21 - 00007953 _____ C:\Users\Dome\daemonprocess.txt
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU(4).TXT
2013-12-01 14:42 - 2012-09-27 18:18 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-29 19:38 - 2012-10-08 21:02 - 00000000 ____D C:\Users\Dome\Documents\My Games

Some content of TEMP:
====================
C:\Users\Dome\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-22 00:45

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 30.12.2013, 11:20   #12
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam



ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 31.12.2013, 11:46   #13
Schwerle
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Hallo schrauber Danke für deine klasse Hilfe das Problem wurde behoben
Hier sind die Logs und einen Guten Rutsch:


Eset:

#
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1e2fcf7085bcd34abb594819e3439e86
# engine=16448
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-30 03:04:34
# local_time=2013-12-30 04:04:34 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 71 79 91123 1028310 0 0
# compatibility_mode=5893 16776573 100 94 44211 140045724 0 0
# scanned=125033
# found=2
# cleaned=0
# scan_time=4286
sh=8A620B7A579394FE83AF20FE530E1A4D4000872B ft=1 fh=20a79096be6b5744 vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Program Files (x86)\R.G. Mechanics\Sid Meier's Civilization 5\3DM_CEG.dll"
sh=F869901CF4636BAF0ED386CDC8F70CCAF9BD132A ft=1 fh=465258c676f7c6ff vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Program Files (x86)\R.G. Mechanics\Sid Meier's Civilization 5\steam_api.dll"
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1e2fcf7085bcd34abb594819e3439e86
# engine=16457
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-12-31 02:55:30
# local_time=2013-12-31 03:55:30 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 71 79 133779 1070966 0 0
# compatibility_mode=5893 16776573 100 94 86867 140088380 0 0
# scanned=255496
# found=2
# cleaned=0
# scan_time=7387
sh=8A620B7A579394FE83AF20FE530E1A4D4000872B ft=1 fh=20a79096be6b5744 vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Program Files (x86)\R.G. Mechanics\Sid Meier's Civilization 5\3DM_CEG.dll"
sh=F869901CF4636BAF0ED386CDC8F70CCAF9BD132A ft=1 fh=465258c676f7c6ff vn="a variant of Win32/Packed.VMProtect.ABD trojan" ac=I fn="C:\Program Files (x86)\R.G. Mechanics\Sid Meier's Civilization 5\steam_api.dll"

SecrurityCheck:

#
Code:
ATTFilter
Results of screen317's Security Check version 0.99.77  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Adobe Flash Player 11.9.900.170  
 Adobe Reader 9 Adobe Reader out of Date! 
 Mozilla Firefox (25.0.1) 
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast afwServ.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
FRST:

#
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Dome (administrator) on DOME-PC on 31-12-2013 11:23:03
Running from C:\Users\Dome\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Acer Group) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dome\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-19] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Packard Bell\Screensaver\run_Packard Bell.exe [154144 2010-07-29] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x79DABEB8024CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=airmsd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtCyCyE0DyB0DyE0B0AyCtN0D0Tzu0CyDtDyCtN1L2XzutBtFtBtFtCtFyCtCzztN1L1Czu1T1L1C1H1B1Q&cr=318048556&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {89544C87-842E-4726-BB09-192DC970DE84} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=407956&p={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
DPF: HKLM-x32 {24896211-7A6C-4C7A-A4D9-686B5490B8DC} hxxp://wk2.gameheart.jp/GameheartWebStart.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @ogplanet.com/npOGPPlugin - C:\Windows\system32\npOGPPlugin.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Dome\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Better Battlelog (BBLog) - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\jid1-qQSMEVsYTOjgYA@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Black Google Theme - C:\Users\Dome\AppData\Roaming\Mozilla\Firefox\Profiles\mpjf4wj2.default\Extensions\{e9876d64-8bac-4287-bdc4-0f0c56804b4f}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HomePage: https://www.google.de/
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP250D3F6B-40B5-4948-94D0-7C0957F511BD&SSPV=", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=24b74ba60000000000009444529b4209", "hxxp://www.google.com"
CHR Extension: (Forge of Empires) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaphblkfplenhkephgneolhnmjminjg\1.2_0
CHR Extension: (Battlefield 4 Theme) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckppbgmmmlkhblbcdkjohbklfecclock\1_0
CHR Extension: (Tampermonkey) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.5.3630.77_0
CHR Extension: (AdBlock) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (avast! Online Security) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0
CHR Extension: (Grepolis) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog\2.11.14_0
CHR Extension: (Google Wallet) - C:\Users\Dome\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-19] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2013-12-19] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-14] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-10-30] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 npggsvc; C:\Windows\system32\GameMon.des -service [x]
S2 SecureUpdateSvc; C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [x]

==================== Drivers (Whitelisted) ====================

S1 acedrv05; C:\Windows\system32\drivers\acedrv05.sys [136192 2013-03-12] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-18] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [439648 2013-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-18] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-12-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-18] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-07-12] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-30] (DT Soft Ltd)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-07-12] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0073.sys [28768 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-01] (INCA Internet Co., Ltd.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 SEE; C:\Windows\System32\drivers\see.sys [38240 2013-08-07] (SoftEther Project at University of Tsukuba, Japan.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
S3 wod0205; C:\Windows\System32\DRIVERS\wod0205.sys [33160 2011-04-23] (WeOnlyDo Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S1 aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
U3 DfSdkS; 
S3 dump_wmimmc; \??\C:\AeriaGames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2013.SP5\WNt500x64\Sandra.sys [x]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [x]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-30 20:32 - 2013-12-30 20:32 - 00000975 _____ C:\Users\Dome\Desktop\checkup.txt
2013-12-30 14:48 - 2013-12-30 14:48 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-30 14:47 - 2013-12-30 14:48 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00891200 _____ C:\Users\Dome\Desktop\SecurityCheck (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00000000 _____ C:\Users\Dome\Desktop\Neues Textdokument (2).txt
2013-12-29 19:26 - 2013-12-29 19:26 - 01931302 _____ (Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe
2013-12-29 19:16 - 2013-12-29 19:17 - 00001720 _____ C:\Users\Dome\Desktop\JRT.txt
2013-12-29 19:11 - 2013-12-29 19:11 - 00000000 ____D C:\Windows\ERUNT
2013-12-29 19:09 - 2013-12-29 19:09 - 00043917 _____ C:\Users\Dome\Desktop\AdwCleaner[S0].txt
2013-12-29 19:06 - 2013-12-29 19:06 - 00046523 _____ C:\Users\Dome\Desktop\AdwCleaner[R0].txt
2013-12-29 19:05 - 2013-12-29 19:06 - 00000000 ____D C:\AdwCleaner
2013-12-29 14:56 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Desktop\JRT.exe
2013-12-29 14:56 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Desktop\adwcleaner.exe
2013-12-29 14:53 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Downloads\JRT.exe
2013-12-29 14:51 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Downloads\adwcleaner.exe
2013-12-29 14:48 - 2013-12-29 14:49 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-12-29 02:01 - 2013-12-29 02:01 - 00001978 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-28 12:22 - 2013-12-28 12:22 - 00037677 _____ C:\ComboFix.txt
2013-12-28 12:11 - 2013-12-28 12:22 - 00000000 ____D C:\Qoobox
2013-12-28 12:11 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-28 12:11 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-28 12:11 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-28 12:11 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-28 12:10 - 2013-12-28 12:21 - 00000000 ____D C:\Windows\erdnt
2013-12-28 12:09 - 2013-12-28 12:09 - 05158590 _____ (Swearware) C:\Users\Dome\Downloads\ComboFix.exe
2013-12-27 16:08 - 2013-12-27 16:08 - 00033754 _____ C:\Users\Dome\Downloads\Log Files.zip
2013-12-26 21:32 - 2013-12-26 21:32 - 00001319 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-12-26 21:27 - 2013-11-14 12:57 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2013-12-26 21:27 - 2013-11-14 12:57 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-12-26 21:27 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-12-26 21:27 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-12-26 21:26 - 2013-12-26 21:26 - 00000000 ____D C:\NVIDIA
2013-12-26 21:08 - 2013-12-26 21:26 - 255488144 _____ (NVIDIA Corporation) C:\Users\Dome\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-12-26 17:15 - 2013-12-26 17:15 - 03821064 _____ C:\Users\Dome\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-12-26 13:59 - 2013-12-26 13:59 - 00037336 _____ C:\Users\Dome\Downloads\Addition (1).txt
2013-12-26 13:58 - 2013-12-26 13:58 - 00090004 _____ C:\Users\Dome\Downloads\FRST (1).txt
2013-12-26 13:12 - 2013-12-29 19:33 - 00083949 _____ C:\Users\Dome\Desktop\FRST.txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00037336 _____ C:\Users\Dome\Desktop\Addition.txt
2013-12-26 13:04 - 2013-12-31 11:23 - 00016296 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-26 13:04 - 2013-12-26 13:04 - 00037336 _____ C:\Users\Dome\Downloads\Addition.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:44 - 2013-12-26 03:16 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 02:26 - 2013-12-26 02:27 - 02347384 _____ (ESET) C:\Users\Dome\Desktop\esetsmartinstaller_enu.exe
2013-12-26 01:40 - 2013-12-26 14:03 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:47 - 2013-12-26 00:48 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:20 - 2013-12-25 21:21 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 15:16 - 2013-10-12 02:28 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2013-12-25 15:16 - 2013-10-12 02:28 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2013-12-25 15:16 - 2013-10-12 02:28 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2013-12-25 15:11 - 2013-12-25 15:13 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 01:59 - 2013-12-25 14:14 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 01:57 - 2013-12-25 01:58 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:13 - 2013-12-25 01:15 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-23 21:25 - 2013-12-26 01:54 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:22 - 2013-12-23 15:25 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:42 - 2013-11-14 12:56 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-12-23 14:42 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00067176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-23 14:42 - 2011-01-27 03:05 - 00057960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-22 16:13 - 2013-12-29 14:57 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-22 16:13 - 2013-12-29 14:57 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 16:13 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-22 15:15 - 2013-12-22 15:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-22 14:32 - 2013-12-31 10:59 - 00069606 _____ C:\Windows\PFRO.log
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-31 11:00 - 00014080 _____ C:\Windows\setupact.log
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:34 - 2013-12-24 01:48 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:16 - 2013-12-26 03:14 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-18 19:26 - 2013-12-20 16:55 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:23 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 20:16 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 13:39 - 2013-12-14 13:40 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-12 20:54 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 20:54 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 20:54 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 20:54 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 20:54 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 20:54 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 20:54 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 20:54 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 20:54 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 20:54 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 20:54 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 20:54 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 20:54 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 20:54 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 20:54 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 20:54 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 20:54 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 20:54 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 20:54 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 20:54 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 20:54 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 20:54 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 20:50 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-12 20:50 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-12 20:50 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 20:50 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 20:50 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 20:50 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 20:50 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 20:50 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 20:50 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 20:50 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-12 20:50 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 20:50 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-09 21:54 - 2013-12-26 00:59 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-09 19:32 - 2013-12-25 17:22 - 00000000 ____D C:\AeriaGames
2013-12-08 16:57 - 2013-12-19 13:37 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-08 16:56 - 2013-12-18 19:25 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-08 14:08 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-12-08 14:08 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-12-08 14:08 - 2012-08-23 15:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-12-08 14:08 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-12-08 14:08 - 2012-08-23 14:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-12-08 14:08 - 2012-08-23 14:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-12-08 14:08 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 14:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-12-08 14:08 - 2012-08-23 14:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-12-08 14:08 - 2012-08-23 13:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-12-08 14:08 - 2012-08-23 12:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-12-08 14:08 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-12-08 14:08 - 2012-08-23 12:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-12-08 14:08 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-12-08 14:08 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-12-08 14:08 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-12-08 14:08 - 2012-08-23 11:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-12-08 14:08 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-12-08 14:08 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-12-08 14:08 - 2012-08-23 09:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:04 - 2013-12-07 23:05 - 00000000 ___HD C:\Windows\Icons
2013-12-07 23:00 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-07 23:00 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-07 23:00 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-07 23:00 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-12-07 23:00 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-07 23:00 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-12-07 23:00 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-07 23:00 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-12-07 23:00 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-12-07 23:00 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-12-07 23:00 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-12-07 23:00 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-12-07 23:00 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-12-07 23:00 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-12-07 22:59 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-07 22:59 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-12-07 22:59 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-12-07 22:59 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-07 22:59 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-07 22:59 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-07 22:59 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-07 22:59 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-12-07 22:59 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-12-07 22:59 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-07 22:59 - 2012-05-04 12:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-12-07 22:59 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-12-07 20:26 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-07 20:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-12-07 20:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-07 20:26 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-07 20:26 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-07 20:26 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-07 20:26 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-07 20:26 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-12-07 20:26 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-12-07 20:26 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-12-07 20:26 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-07 20:26 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-07 20:26 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-07 20:26 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-12-07 20:26 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-07 20:25 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-07 20:25 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-12-07 20:25 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-12-07 20:25 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-07 20:25 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-12-07 20:25 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-07 20:25 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-07 20:25 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-07 20:25 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2013-12-07 20:25 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-07 20:25 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-07 20:25 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-07 20:25 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-07 20:25 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-07 20:25 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-12-07 20:25 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-12-07 20:25 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-12-07 20:25 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-12-07 20:25 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-12-07 10:58 - 2013-12-24 01:22 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-06 20:14 - 2013-12-25 15:15 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:09 - 2013-12-06 20:10 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 20:09 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2013-12-06 20:09 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2013-12-06 20:09 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2013-12-06 20:09 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2013-12-06 20:09 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2013-12-06 20:09 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioVisualization2.dll
2013-12-06 20:09 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\Windows\SysWOW64\NCTAudioCDGrabber2.dll
2013-12-06 20:09 - 2002-01-05 16:37 - 00344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll

==================== One Month Modified Files and Folders =======

2013-12-31 11:23 - 2013-12-26 13:04 - 00016296 _____ C:\Users\Dome\Downloads\FRST.txt
2013-12-31 11:20 - 2013-03-28 19:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-31 11:09 - 2013-11-08 22:49 - 00003018 _____ C:\Windows\System32\Tasks\MSIAfterburner
2013-12-31 11:07 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-31 11:07 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-31 11:00 - 2013-12-21 23:34 - 00014080 _____ C:\Windows\setupact.log
2013-12-31 11:00 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-31 10:59 - 2013-12-22 14:32 - 00069606 _____ C:\Windows\PFRO.log
2013-12-31 10:59 - 2012-09-24 07:25 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-31 04:47 - 2013-06-23 00:04 - 01547958 _____ C:\Windows\WindowsUpdate.log
2013-12-31 00:51 - 2013-10-30 14:48 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-31 00:36 - 2012-10-16 10:20 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-30 21:31 - 2013-11-18 18:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-30 21:27 - 2013-08-10 12:59 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-30 20:32 - 2013-12-30 20:32 - 00000975 _____ C:\Users\Dome\Desktop\checkup.txt
2013-12-30 20:23 - 2013-04-29 17:24 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2013-12-30 20:22 - 2012-09-27 18:26 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-30 20:19 - 2012-09-27 17:21 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TS3Client
2013-12-30 17:57 - 2013-02-10 18:47 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Skype
2013-12-30 14:48 - 2013-12-30 14:48 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-30 14:48 - 2013-12-30 14:47 - 02347384 _____ (ESET) C:\Users\Dome\Downloads\esetsmartinstaller_enu (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00891200 _____ C:\Users\Dome\Desktop\SecurityCheck (1).exe
2013-12-30 14:47 - 2013-12-30 14:47 - 00000000 _____ C:\Users\Dome\Desktop\Neues Textdokument (2).txt
2013-12-30 02:42 - 2013-03-01 07:41 - 00003922 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{783438CF-2A8A-471F-B0B7-D902999259E6}
2013-12-29 19:33 - 2013-12-26 13:12 - 00083949 _____ C:\Users\Dome\Desktop\FRST.txt
2013-12-29 19:26 - 2013-12-29 19:26 - 01931302 _____ (Farbar) C:\Users\Dome\Downloads\FRST64 (1).exe
2013-12-29 19:17 - 2013-12-29 19:16 - 00001720 _____ C:\Users\Dome\Desktop\JRT.txt
2013-12-29 19:11 - 2013-12-29 19:11 - 00000000 ____D C:\Windows\ERUNT
2013-12-29 19:09 - 2013-12-29 19:09 - 00043917 _____ C:\Users\Dome\Desktop\AdwCleaner[S0].txt
2013-12-29 19:06 - 2013-12-29 19:06 - 00046523 _____ C:\Users\Dome\Desktop\AdwCleaner[R0].txt
2013-12-29 19:06 - 2013-12-29 19:05 - 00000000 ____D C:\AdwCleaner
2013-12-29 19:06 - 2013-07-29 17:35 - 00001051 _____ C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2013-12-29 19:06 - 2013-05-08 16:39 - 00001005 _____ C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-29 19:06 - 2013-04-19 16:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-12-29 19:06 - 2013-04-16 19:27 - 00001021 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-29 16:14 - 2013-11-13 06:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-29 14:57 - 2013-12-22 16:13 - 00001081 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-29 14:57 - 2013-12-22 16:13 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-29 14:53 - 2013-12-29 14:56 - 01034531 _____ (Thisisu) C:\Users\Dome\Desktop\JRT.exe
2013-12-29 14:53 - 2013-12-29 14:53 - 01034531 _____ (Thisisu) C:\Users\Dome\Downloads\JRT.exe
2013-12-29 14:51 - 2013-12-29 14:56 - 01233962 _____ C:\Users\Dome\Desktop\adwcleaner.exe
2013-12-29 14:51 - 2013-12-29 14:51 - 01233962 _____ C:\Users\Dome\Downloads\adwcleaner.exe
2013-12-29 14:49 - 2013-12-29 14:48 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-12-29 03:44 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Local\CrashDumps
2013-12-29 02:01 - 2013-12-29 02:01 - 00001978 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-28 12:22 - 2013-12-28 12:22 - 00037677 _____ C:\ComboFix.txt
2013-12-28 12:22 - 2013-12-28 12:11 - 00000000 ____D C:\Qoobox
2013-12-28 12:22 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-12-28 12:21 - 2013-12-28 12:10 - 00000000 ____D C:\Windows\erdnt
2013-12-28 12:20 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-12-28 12:09 - 2013-12-28 12:09 - 05158590 _____ (Swearware) C:\Users\Dome\Downloads\ComboFix.exe
2013-12-27 18:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-12-27 18:42 - 2013-02-20 18:52 - 00000000 ____D C:\Users\Dome\AppData\Local\ArmA 2 OA
2013-12-27 16:08 - 2013-12-27 16:08 - 00033754 _____ C:\Users\Dome\Downloads\Log Files.zip
2013-12-26 21:32 - 2013-12-26 21:32 - 00001319 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-12-26 21:30 - 2012-09-24 07:23 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-26 21:28 - 2012-09-24 07:22 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-26 21:26 - 2013-12-26 21:26 - 00000000 ____D C:\NVIDIA
2013-12-26 21:26 - 2013-12-26 21:08 - 255488144 _____ (NVIDIA Corporation) C:\Users\Dome\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-12-26 17:15 - 2013-12-26 17:15 - 03821064 _____ C:\Users\Dome\Downloads\battlelog-web-plugins_2.3.2_130.exe
2013-12-26 17:15 - 2012-11-02 12:58 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-12-26 14:03 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\AppData\Local\DayZ
2013-12-26 13:59 - 2013-12-26 13:59 - 00037336 _____ C:\Users\Dome\Downloads\Addition (1).txt
2013-12-26 13:58 - 2013-12-26 13:58 - 00090004 _____ C:\Users\Dome\Downloads\FRST (1).txt
2013-12-26 13:12 - 2013-12-26 13:12 - 00037336 _____ C:\Users\Dome\Desktop\Addition.txt
2013-12-26 13:04 - 2013-12-26 13:04 - 00037336 _____ C:\Users\Dome\Downloads\Addition.txt
2013-12-26 13:03 - 2013-12-26 13:03 - 00000000 ____D C:\FRST
2013-12-26 13:02 - 2013-12-26 13:02 - 01928716 _____ (Farbar) C:\Users\Dome\Downloads\FRST64.exe
2013-12-26 03:16 - 2013-12-26 02:44 - 00000203 _____ C:\Users\Dome\Desktop\Neues Textdokument.txt
2013-12-26 03:14 - 2013-12-21 18:16 - 00176432 _____ C:\Users\Dome\Downloads\OTL.Txt
2013-12-26 03:07 - 2013-12-26 03:07 - 00891200 _____ C:\Users\Dome\Downloads\SecurityCheck.exe
2013-12-26 03:07 - 2013-12-26 03:07 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL (1).exe
2013-12-26 02:27 - 2013-12-26 02:26 - 02347384 _____ (ESET) C:\Users\Dome\Desktop\esetsmartinstaller_enu.exe
2013-12-26 01:54 - 2013-12-23 21:25 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-12-26 01:54 - 2013-11-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\uTorrent
2013-12-26 01:54 - 2013-05-11 16:18 - 00000000 ____D C:\Program Files (x86)\Guild Wars 2
2013-12-26 01:41 - 2010-11-04 08:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-26 01:40 - 2013-12-26 01:40 - 00000000 ____D C:\Users\Dome\Documents\DayZ
2013-12-26 01:38 - 2010-11-04 07:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-26 01:35 - 2012-10-16 10:41 - 00000000 ____D C:\Users\Dome\AppData\Local\ESN Sonar
2013-12-26 01:32 - 2010-11-04 08:08 - 00000000 ____D C:\Program Files (x86)\Packard Bell
2013-12-26 01:06 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-12-26 01:03 - 2013-10-25 19:33 - 00000000 ____D C:\Users\Dome\AppData\Local\Unity
2013-12-26 01:00 - 2013-08-12 23:17 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CDG
2013-12-26 00:59 - 2013-12-09 21:54 - 00000000 ____D C:\Program Files (x86)\Aeria Games
2013-12-26 00:48 - 2013-12-26 00:48 - 00001236 _____ C:\Users\Dome\Desktop\Revo Uninstaller.lnk
2013-12-26 00:48 - 2013-12-26 00:48 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-26 00:48 - 2013-12-26 00:47 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Dome\Downloads\revosetup95.exe
2013-12-25 21:21 - 2013-12-25 21:20 - 04277073 _____ C:\Users\Dome\Downloads\p95v279.win32.zip
2013-12-25 17:26 - 2013-10-25 19:30 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-25 17:22 - 2013-12-09 19:32 - 00000000 ____D C:\AeriaGames
2013-12-25 17:22 - 2012-10-01 20:33 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2013-12-25 15:15 - 2013-12-06 20:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-12-25 15:13 - 2013-12-25 15:11 - 32522152 _____ (TuneUp Software) C:\Users\Dome\Downloads\TuneUpUtilities2014_de-DE_b1000.143.exe
2013-12-25 14:14 - 2013-12-25 01:59 - 00000000 ____D C:\Users\Dome\AppData\Roaming\SleepTimerUltimate
2013-12-25 01:58 - 2013-12-25 01:57 - 00863694 _____ (Christian Handorf                                           ) C:\Users\Dome\Downloads\setup_sleeptimer.exe
2013-12-25 01:15 - 2013-12-25 01:13 - 25647320 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\Windows-KB890830-x64-V5.7.exe
2013-12-25 00:40 - 2013-12-25 00:40 - 00347816 _____ (Microsoft Corporation) C:\Users\Dome\Downloads\MicrosoftFixit.IEAddon.RNP.63311355622187041.4.1.Run.exe
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195.msi
2013-12-25 00:35 - 2013-12-25 00:35 - 00659968 _____ C:\Users\Dome\Downloads\MicrosoftFixit50195 (1).msi
2013-12-24 11:17 - 2013-04-19 16:50 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA.job
2013-12-24 11:17 - 2013-04-19 16:50 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core.job
2013-12-24 01:48 - 2013-12-21 19:34 - 00000000 ____D C:\Users\Dome\Downloads\backups
2013-12-24 01:37 - 2013-12-24 01:37 - 00000222 _____ C:\Users\Dome\Desktop\DayZ.url
2013-12-24 01:23 - 2013-05-18 16:43 - 00003116 _____ C:\Windows\System32\Tasks\{372228DF-0B7D-4A55-82FE-613FF172BD78}
2013-12-24 01:23 - 2013-04-10 18:08 - 00003372 _____ C:\Windows\System32\Tasks\{28E06FD2-71B1-47A9-B7BF-CCD743A4F569}
2013-12-24 01:22 - 2013-12-07 10:58 - 00003676 _____ C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2013-12-24 01:22 - 2013-04-19 16:50 - 00004096 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000UA
2013-12-24 01:22 - 2013-04-19 16:50 - 00003700 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-962208086-2550042306-4176666752-1000Core
2013-12-24 01:21 - 2013-10-28 09:29 - 00003096 _____ C:\Windows\System32\Tasks\ASC6_PerformanceMonitor
2013-12-24 01:21 - 2012-12-16 14:37 - 00003160 _____ C:\Windows\System32\Tasks\Game_Booster_AutoUpdate
2013-12-24 01:20 - 2012-09-29 09:49 - 00003706 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-12-24 01:19 - 2013-10-28 09:50 - 00003168 _____ C:\Windows\System32\Tasks\SmartDefrag_Startup
2013-12-24 01:19 - 2013-10-28 09:50 - 00003166 _____ C:\Windows\System32\Tasks\SmartDefragUpdate
2013-12-24 01:19 - 2013-10-05 17:10 - 00003174 _____ C:\Windows\System32\Tasks\Razer_Game_Booster_AutoUpdate
2013-12-24 01:17 - 2013-05-28 23:33 - 00000000 ____D C:\Windows\pss
2013-12-23 21:25 - 2013-12-23 21:25 - 00000000 ____D C:\Program Files (x86)\Security Task Manager
2013-12-23 21:05 - 2013-12-23 21:05 - 02365840 _____ C:\Users\Dome\Downloads\SecurityTaskManager_Setup.exe
2013-12-23 19:44 - 2012-09-27 18:53 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-12-23 17:04 - 2013-12-23 17:04 - 00013507 _____ C:\Users\Dome\Downloads\MemTest4.zip
2013-12-23 15:32 - 2010-11-04 07:57 - 00000000 ____D C:\Program Files (x86)\Intel
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Roaming\CyberLink
2013-12-23 15:25 - 2013-12-23 15:25 - 00000000 ____D C:\Users\Dome\AppData\Local\Cyberlink
2013-12-23 15:25 - 2013-12-23 15:22 - 00002046 _____ C:\Users\Public\Desktop\Packard Bell Registrierung.lnk
2013-12-23 15:25 - 2012-09-27 16:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Packard Bell
2013-12-23 15:24 - 2013-12-23 15:24 - 00001880 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-23 15:21 - 2013-12-23 15:21 - 00000000 ____D C:\ProgramData\Symantec
2013-12-23 15:19 - 2013-12-23 15:19 - 00001986 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2013-12-23 15:18 - 2010-11-04 08:33 - 00000000 ____D C:\OEM
2013-12-23 15:16 - 2013-12-23 15:16 - 00000000 ____D C:\Users\Dome\AppData\Local\Software Updater
2013-12-23 14:46 - 2013-12-23 14:46 - 00000000 ____D C:\Users\Dome\AppData\Roaming\InstallShield
2013-12-23 14:43 - 2013-12-23 14:43 - 00000000 ____D C:\Windows\B9DB4C7601A446D58910F7AA6376DBAF.TMP
2013-12-23 14:40 - 2013-12-23 14:40 - 00000000 ____D C:\Program Files\ATI
2013-12-23 14:36 - 2013-12-23 14:36 - 00000000 ____D C:\Intel
2013-12-23 14:23 - 2012-09-24 17:15 - 00765588 _____ C:\Windows\system32\perfh007.dat
2013-12-23 14:23 - 2012-09-24 17:15 - 00174818 _____ C:\Windows\system32\perfc007.dat
2013-12-23 14:23 - 2009-07-14 06:13 - 01807338 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Malwarebytes
2013-12-22 16:13 - 2013-12-22 16:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-22 15:16 - 2013-12-22 15:15 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Dome\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-21 23:35 - 2013-12-21 23:35 - 00065352 _____ C:\Users\Dome\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00296192 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 23:34 - 2013-12-21 23:34 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 19:14 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome\AppData\Local\VirtualStore
2013-12-21 19:13 - 2013-12-21 19:13 - 00388608 _____ (Trend Micro Inc.) C:\Users\Dome\Downloads\HiJackThis204.exe
2013-12-21 18:17 - 2013-12-21 18:17 - 00110390 _____ C:\Users\Dome\Downloads\Extras.Txt
2013-12-21 18:10 - 2013-12-21 18:10 - 00602112 _____ (OldTimer Tools) C:\Users\Dome\Downloads\OTL.exe
2013-12-20 16:55 - 2013-12-18 19:26 - 00079672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2013-12-20 16:43 - 2012-10-25 18:18 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-12-19 13:37 - 2013-12-08 16:57 - 00002044 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-19 13:33 - 2012-09-27 16:21 - 00000000 ____D C:\Users\Dome
2013-12-19 13:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-12-19 13:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-18 19:26 - 2013-11-08 12:54 - 01034464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00422216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-18 19:26 - 2013-11-08 12:54 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-18 19:26 - 2013-11-08 12:53 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-18 19:26 - 2012-11-27 17:48 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-18 19:25 - 2013-12-08 16:56 - 00439648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2013-12-18 16:53 - 2007-07-12 02:49 - 00000000 ____D C:\Windows\Panther
2013-12-16 20:56 - 2013-12-16 20:56 - 00141892 _____ C:\Users\Dome\Downloads\128637.user.js
2013-12-16 14:24 - 2013-12-16 14:24 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot (1).user.js
2013-12-16 14:24 - 2013-12-16 14:23 - 00000695 _____ C:\Users\Dome\Downloads\autofarmbot.user.js
2013-12-14 20:16 - 2013-12-14 13:40 - 00002216 _____ C:\Windows\system32\ASOROSet.bin
2013-12-14 20:16 - 2009-07-14 03:34 - 76283904 _____ C:\Windows\system32\config\software.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 24903680 _____ C:\Windows\system32\config\system.bak
2013-12-14 20:16 - 2009-07-14 03:34 - 00032768 _____ C:\Windows\system32\config\security.bak
2013-12-14 15:40 - 2013-12-14 15:40 - 00429568 _____ C:\Users\Dome\Downloads\YouScreen.exe
2013-12-14 13:40 - 2013-12-14 13:39 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-12-14 11:09 - 2009-07-14 03:34 - 00065536 _____ C:\Windows\system32\config\sam.bak
2013-12-13 22:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-12 20:54 - 2013-08-14 12:07 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 19:21 - 2013-03-28 19:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 19:20 - 2012-10-27 16:29 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 19:20 - 2012-10-27 16:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-09 21:54 - 2013-12-09 21:54 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Aeria Games & Entertainment
2013-12-08 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-08 16:56 - 2013-11-08 12:54 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-12-08 14:18 - 2013-02-24 12:41 - 01780682 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-08 14:12 - 2013-12-08 14:12 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-08 14:12 - 2013-12-08 14:12 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-08 14:12 - 2013-12-08 14:12 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-08 14:12 - 2013-12-08 14:12 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-08 14:12 - 2013-12-08 14:12 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-08 14:12 - 2013-12-08 14:12 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-07 23:39 - 2009-07-14 03:34 - 75759616 _____ C:\Windows\system32\config\SOFTWARE_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 24641536 _____ C:\Windows\system32\config\SYSTEM_tureg_old
2013-12-07 23:39 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 45875200 _____ C:\Windows\system32\config\COMPONENTS_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 01835008 _____ C:\Windows\system32\config\DEFAULT_tureg_old
2013-12-07 23:35 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM_tureg_old
2013-12-07 23:05 - 2013-12-07 23:05 - 00000000 ____D C:\Users\Dome\AppData\Local\Avg2014
2013-12-07 23:05 - 2013-12-07 23:04 - 00000000 ___HD C:\Windows\Icons
2013-12-07 10:58 - 2013-02-20 19:41 - 00000000 ____D C:\Users\Dome\AppData\Local\Downloaded Installations
2013-12-07 10:58 - 2012-09-29 09:49 - 00003694 _____ C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2013-12-07 10:50 - 2012-09-29 09:45 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-12-06 20:14 - 2012-09-29 09:45 - 00000000 ____D C:\Users\Dome\AppData\Roaming\TuneUp Software
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\Documents\Free Sound Recorder
2013-12-06 20:10 - 2013-12-06 20:09 - 00000000 ____D C:\Users\Dome\AppData\Roaming\Free Sound Recorder
2013-12-06 15:49 - 2012-09-27 16:22 - 00000000 ___RD C:\Users\Dome\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 15:47 - 2013-11-10 19:21 - 00007953 _____ C:\Users\Dome\daemonprocess.txt
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-06 07:25 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU(4).TXT
2013-12-01 14:42 - 2012-09-27 18:18 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Dome\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-22 00:45

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

Alt 01.01.2014, 12:53   #14
schrauber
/// the machine
/// TB-Ausbilder
 
Nach Tuneup utilities Internet Browser sehr langsam - Standard

Nach Tuneup utilities Internet Browser sehr langsam


Adobe updaten.


Fertig

Falls Du Lob oder Kritik loswerden möchtest kannst Du das hier tun


Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.


Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Nach Tuneup utilities Internet Browser sehr langsam
antivir, betriebssystem, browser, explorer, firefox, gelöscht, google, hoffe, interne, internet, internet browser, internet browser langsam, internet explorer, langsam, malware, minute, minuten, mozilla, neustart, nicht mehr, testversion, tuneup utilities, utilities, verlieren, version, wiederherstellen, windows, windows 7


« Laptop stürzt ständig ab oder friert ein - wohl Virus :-( | Rechner Langsam - Viren - externe Festplatte »


Ähnliche Themen: Nach Tuneup utilities Internet Browser sehr langsam


  1. Nach Download läuft alles sehr sehr langsam, Internet funktioniert nicht, Programme lassen sich nicht deinstallieren
    Plagegeister aller Art und deren Bekämpfung - 02.09.2015 (3)
  2. Win7: Chrome Browser nach Malware Attacke sehr langsam.
    Plagegeister aller Art und deren Bekämpfung - 02.07.2015 (6)
  3. Internet langsam seit Änderung durch TuneUp Utilities
    Plagegeister aller Art und deren Bekämpfung - 04.10.2014 (19)
  4. Browser bauen Websites sehr langsam auf. Das Internet ist aber ohne Probleme!
    Plagegeister aller Art und deren Bekämpfung - 03.05.2014 (13)
  5. Internet -Browser sehr langsam
    Log-Analyse und Auswertung - 07.04.2014 (13)
  6. Windows XP: Trojan.Infect, kein W-Lan, TuneUp Utilities
    Plagegeister aller Art und deren Bekämpfung - 25.11.2013 (17)
  7. Internet läuft sehr langsam, nach Router reconnect wieder schnell
    Plagegeister aller Art und deren Bekämpfung - 07.09.2013 (1)
  8. TuneUp Utilities
    Diskussionsforum - 19.12.2012 (32)
  9. Nach Download von Tuneup Utilities durch ein Begleitprogramm "fakems" Fund
    Plagegeister aller Art und deren Bekämpfung - 06.12.2012 (1)
  10. TuneUp utilities von meinem Pc ganz entfernen?
    Alles rund um Windows - 08.07.2012 (2)
  11. Internet nach Standby sehr langsam und CPU hoch!
    Log-Analyse und Auswertung - 18.02.2011 (5)
  12. Internet sehr langsam ( auch nach Reinstall vom OS )
    Log-Analyse und Auswertung - 12.02.2011 (4)
  13. Browser nach PCstart sehr sehr langsam
    Log-Analyse und Auswertung - 10.04.2009 (0)
  14. Internet und Download sehr langsam nach Formation (davor auch)
    Log-Analyse und Auswertung - 18.01.2009 (5)
  15. Internet nach Virenbefall trotz Neuaufsetzung des System sehr langsam
    Plagegeister aller Art und deren Bekämpfung - 14.12.2008 (0)
  16. Internet browser sehr langsam, bitte helfen!!!
    Log-Analyse und Auswertung - 07.09.2008 (2)
  17. TuneUp Utilities?
    Diskussionsforum - 01.09.2008 (24)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Nach Tuneup utilities Internet Browser sehr langsam - Hi, Seid die Tuneup utilities 2014 Testversion abgelaufen ist sind meine Internet Browser (also Google Chrome, Mozilla Firefox und Internet Explorer) ca. 10 Minuten nach dem Pc neustart sehr langsam - Nach Tuneup utilities Internet Browser sehr langsam...
Archiv
Du betrachtest: Nach Tuneup utilities Internet Browser sehr langsam auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55