PC wird immer langsamer + Viren

TheDarkWolf · 09.01.2014, 17:17

Guten Tag...

Ich habe in letzter Zeit immer mehr Trojaner auf meinem PC gefunden und mein PC wird auch immer langsamer...

Ich bräuchte etwas Hilfe..
Da ich viele Überweisungen und Käufe mit meinem PC unternehme ist mir die Sicherheit sehr wichtig.

aharonov · 09.01.2014, 17:35

Hallo,

Zitat:

Ich habe in letzter Zeit immer mehr Trojaner auf meinem PC gefunden

Kannst du das bitte konkretisieren? Am besten durch Posten der relevanten Logs, welche die Funde dokumentieren: http://www.trojaner-board.de/125889-...en-posten.html

Zusätzlich:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

TheDarkWolf · 09.01.2014, 18:31

Hier die Funde:

Zitat:

Emsisoft Anti-Malware v. 8.1.0.33
(C) 2003-2013 Emsisoft - www.emsisoft.com

ID Object
0 Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\APPID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Application.Win32.WSearch (A)
1 Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASMANCS Application.Win32.InstallExt (A)
2 C:\Users\Sessel\AppData\Local\Temp\D98KqIgh.com.part EICAR-Test-File (not a virus) (B)
3 Key: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\AU__RASAPI32 Application.Win32.InstallExt (A)
4 C:\Users\Sessel\Desktop\eicar.com EICAR-Test-File (not a virus) (B)

Addition.txt:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-01-2014 01
Ran by Sessel at 2014-01-09 18:14:25
Running from C:\Users\Sessel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SA6U9G4Q
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

Ace of Spades (x32 Version:  - Jagex Limited)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Alan Wake (x32 Version:  - Remedy Entertainment)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AntiLogger Free version 1.7.2.322 (x32 Version: 1.7.2.322 - Zemana Ltd.)
Application Profiles (x32 Version: 2.0.4719.35969 - Advanced Micro Devices, Inc.)
Assassin’s Creed® III (x32 Version:  - Ubisoft Montreal)
ATI AVIVO64 Codecs (Version: 10.12.0.00113 - ATI Technologies Inc.) Hidden
Audiosurf (x32 Version:  - Dylan Fitterer)
BioShock (x32 Version:  - 2K Boston)
BioShock 2 (x32 Version: 1.0.0005.131 - Take-Two Interactive Software) Hidden
Borderlands 2 (x32 Version:  - Gearbox Software)
Burnout Paradise: The Ultimate Box (x32 Version:  - Criterion Games)
Call of Duty: Black Ops II - Multiplayer (x32 Version:  - )
Call of Duty: Black Ops II (x32 Version:  - Treyarch)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.)
Counter-Strike: Global Offensive (x32 Version:  - Valve)
Creative Systeminformationen (x32 Version: 1.10 - Creative Technology Limited)
Crysis® 2 (x32 Version: 1.9.0.0 - Electronic Arts)
Cube World version 0.0.1 (x32 Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (x32 Version: 1.63.5 - Electronic Arts)
Die Sims™ 3 Late Night (x32 Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38 - Electronic Arts)
Dishonored (x32 Version: 1.0 - Bethesda Softworks)
Don't Starve (x32 Version:  - Klei Entertainment)
Emsisoft Anti-Malware (x32 Version: 8.1 - Emsisoft GmbH)
Eusing Free Registry Cleaner (x32 Version:  - Eusing Software)
Fable III (x32 Version:  - Lionhead Studios)
Far Cry 3 (x32 Version: 1.05 - Ubisoft)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.19.1219 (x32 Version: 3.2.19.1219 - DVDVideoSoft Ltd.)
Grand Theft Auto IV (x32 Version:  - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (x32 Version: 1.00.00001 - Rockstar Games)
Hama Wireless LAN Adapter (x32 Version: 1.00.0159 - Hama GmbH & Co KG)
Hitman: Absolution (x32 Version:  - IO Interactive)
Hitman: Sniper Challenge (x32 Version:  - IO Interactive)
IObit Uninstaller (x32 Version: 3.0.4.922 - IObit)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky Security Scan (x32 Version: 12.0.1.340 - Kaspersky Lab) Hidden
Left 4 Dead 2 (x32 Version:  - Valve)
Max Payne 3 (x32 Version:  - Rockstar Studios)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (x32 Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 29.0a1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MTA:SA v1.3.4 (x32 Version: v1.3.4 - Multi Theft Auto)
Notepad++ (x32 Version: 6.5.2 - Notepad++ Team)
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation)
Origin (x32 Version: 9.0.13.2142 - Electronic Arts, Inc.)
PAYDAY 2 (x32 Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (x32 Version:  - OVERKILL Software)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.17.304.2010 - Realtek)
Rockstar Games Social Club (x32 Version: 1.1.0.6 - Rockstar Games)
Saints Row IV (x32 Version:  - Deep Silver Volition)
Scribblenauts Unlimited (x32 Version:  - 5th Cell Media)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sniper Elite: Zombie Army (x32 Version:  - Rebellion)
Sound Blaster Tactic(3D) (x32 Version: 1.0 - Creative Technology Limited)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Starbound (x32 Version:  - )
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (x32 Version: 6.0.8.0 - Husdawg, LLC)
TeamSpeak 3 Client (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Tom Clancy's Splinter Cell: Conviction (x32 Version:  - Ubisoft Montreal)
Unlocker 1.9.1-x64 (Version: 1.9.1 - Cedrick Collomb)
Uplay (x32 Version: 2.0 - Ubisoft)
VLC media player 2.0.8 (Version: 2.0.8 - VideoLAN)
VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN)
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinRAR 5.00 (64-bit) (Version: 5.00.0 - win.rar GmbH)
XCOM: Enemy Unknown (x32 Version:  - Firaxis Games)

==================== Restore Points  =========================

02-01-2014 13:39:10 Removed COMODO Antivirus
02-01-2014 13:43:12 Removed NetSpeedMonitor 2.5.4.0 x64
02-01-2014 20:15:10 ESET Smart Security wurde entfernt
03-01-2014 21:49:36 Installed LogMeIn Hamachi
04-01-2014 17:40:07 Removed LogMeIn Hamachi
04-01-2014 21:21:29 Installed WiFi USB adapter N600
07-01-2014 15:51:19 Removed WiFi USB adapter N600
07-01-2014 15:52:34 Installiert Hama Wireless LAN Adapter
07-01-2014 16:05:34 Installed WiFi USB adapter N600
07-01-2014 16:39:28 Removed WiFi USB adapter N600
08-01-2014 11:16:46 Installiert Hama Wireless LAN Adapter
08-01-2014 17:05:10 Gerätetreiber-Paketinstallation: COMODO Netzwerkdienst
09-01-2014 15:42:39 Removed COMODO Firewall
09-01-2014 15:45:38 Microsoft Visual Basic PowerPacks 10.0 wird entfernt

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-12-19 16:23 - 01195948 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1	gumblar.cn
127.0.0.1	addthiss.net
127.0.0.1	agasi-story.info
127.0.0.1	alexblane.com
127.0.0.1	busderaskon.com
127.0.0.1	cattww.com
127.0.0.1	cutheatergroup.cn
127.0.0.1	damisystem.com
127.0.0.1	delzzerro.cn
127.0.0.1	description2011.ru
127.0.0.1	elantrasantrope.ru
127.0.0.1	1speed.info
127.0.0.1	2112111.com
127.0.0.1	318x.com
127.0.0.1	abbcp.cn
127.0.0.1	acrossuniverseitbenet.com
127.0.0.1	afonya123.com
127.0.0.1	b9g.at
127.0.0.1	bbsr.co.in
127.0.0.1	bigsophieblog.com
127.0.0.1	combinebet.cn
127.0.0.1	delhicakesngifts.com
127.0.0.1	domain454002.com
127.0.0.1	easychurch.ru
127.0.0.1	jaquemet-zehnder.ch
127.0.0.1	aimauto.org
127.0.0.1	unb0rn.biz
127.0.0.1	zoid.in
127.0.0.1	depenam.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {B7ACB9BD-6CE4-42B8-9FB7-39BAC80FDBE3} - System32\Tasks\FRAPS => D:\Fraps\fraps.exe
Task: {E796F3D8-75FA-488D-BE07-0A1DD315DE14} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-13] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-01-08 12:17 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\EnumDevLib.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00113664 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 02342912 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00246784 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00047616 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00050688 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00079360 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 02029568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00100352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00258560 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00076288 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00061440 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00465920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00719872 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00114688 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00136704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01449472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00300032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01283584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00056320 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00192512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00091136 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00069120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 11747840 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00077824 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00048128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00094720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00045568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00043520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00911360 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00118272 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00141312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01170944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdirac_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00638976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00042496 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libau_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00117248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_http_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00350720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00144896 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01723904 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00044032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00044032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00049152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00043008 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00066048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00057856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00042496 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00049664 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00047104 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00085504 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00292864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01297920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00359424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00209408 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00049152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 01384960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00034816 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00130560 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00183808 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00073728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01518592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00035328 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00046080 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00047104 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_out\libstream_out_record_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00045056 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_out\libstream_out_standard_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038400 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access_output\libaccess_output_file_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\mux\libmux_dummy_plugin.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\Users\Sessel\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\Sessel\Downloads\TeamViewer_Setup_de.exe:BDU
AlternateDataStreams: C:\Users\Sessel\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-05 20:21:05.970
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-04 22:59:38.464
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-04 15:12:56.220
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-03 18:27:51.451
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-06 21:30:07.681
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-26 15:44:53.894
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-26 15:09:56.875
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-25 22:08:34.173
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-25 21:51:22.464
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-25 21:39:17.509
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 34%
Total physical RAM: 6135.11 MB
Available physical RAM: 3991.54 MB
Total Pagefile: 12268.41 MB
Available Pagefile: 9171.72 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:454.95 GB) (Free:250.52 GB) NTFS
Drive d: (DATA) (Fixed) (Total:455.46 GB) (Free:232.72 GB) NTFS
Drive e: (00053131) (CDROM) (Total:0.15 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 54214E02)
Partition 1: (Not Active) - (Size=21 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=455 GB) - (Type=07 NTFS)

==================== End Of Log ============================

FRST.txt:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-01-2014 01
Ran by Sessel (administrator) on SESSEL-PC on 09-01-2014 18:13:27
Running from C:\Users\Sessel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SA6U9G4Q
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
() C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe
(Realtek Semiconductor.) C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
() C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Zemana Ltd.) C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] - C:\ProgramData\cisB933.exe [4900568 2013-11-11] (COMODO)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ZALFree] - C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe [13007712 2013-11-06] (Zemana Ltd.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] - C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4329408 2013-12-04] (Emsisoft GmbH)
MountPoints2: {8800ddb2-1a0a-11e3-883a-4487fcc541a4} - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {f9c2c4d4-175e-11e2-89b3-806e6f6e6963} - E:\autorun.exe
AppInit_DLLs: C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(7).dll [90448 2013-11-06] (Zemana Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL [83208 2013-11-06] (Zemana Ltd.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} -  No File
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1379517905806
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler: cardisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  No File
Handler-x32: cardisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default
FF Homepage: about:blank
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: German Dictionary - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\de-DE@dictionaries.addons.mozilla.org
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\donottrackplus@abine.com
FF Extension: ColorZilla - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
FF Extension: Magic Actions for YouTube™ - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi
FF Extension: Adblock Plus - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==================== Services (Whitelisted) =================

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4161512 2013-12-04] (Emsisoft GmbH)
S2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [58345832 2011-09-22] (Microsoft Corporation)
R2 Realtek11nSU; C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe [36864 2010-04-16] (Realtek)
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2013-07-17] (Realtek Semiconductor.)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [431464 2011-09-22] (Microsoft Corporation)
U2 楗敳潂瑯獁楳瑳湡tɉ"; 㩃停潲牧浡䘠汩獥⠠㡸⤶坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數Ȁ" [x]

==================== Drivers (Whitelisted) ====================

R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [128448 2013-12-18] (Baidu, Inc.)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2013-10-02] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [30112 2013-05-13] (REALiX(tm))
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [25568 2013-11-06] (Zemana Ltd.)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-08-12] (Realtek Semiconductor Corporation                           )
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-07-19] (Creative Technology Ltd.)
U5 Bfilter; C:\Windows\System32\Drivers\Bfilter.sys [52032 2013-12-17] (Baidu, Inc.)
U5 Bfmon; C:\Windows\System32\Drivers\Bfmon.sys [34624 2013-12-17] (Baidu, Inc.)
R4 cmdGuard; system32\DRIVERS\cmdguard.sys [x]
R4 cmdHlp; System32\DRIVERS\cmdhlp.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [x]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [x]
U4 vsserv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-09 18:13 - 2014-01-09 18:13 - 00000000 ____D C:\FRST
2014-01-09 16:43 - 2013-11-11 15:58 - 04900568 _____ (COMODO) C:\ProgramData\cisB933.exe
2014-01-08 15:22 - 2014-01-08 15:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-08 12:24 - 2014-01-08 12:25 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-08 12:24 - 2014-01-08 12:24 - 00002069 _____ C:\Users\Public\Desktop\Hama Wireless LAN Utility.lnk
2014-01-08 12:17 - 2014-01-08 12:17 - 00000000 ____D C:\Program Files (x86)\Hama
2014-01-08 12:17 - 2009-04-02 10:27 - 00188416 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\RTLExtUI.dll
2014-01-08 12:17 - 2009-03-31 14:31 - 00380928 _____ (Realtek) C:\Windows\RtlUI2.exe
2014-01-08 12:17 - 2009-01-05 20:31 - 00000901 _____ C:\Windows\RtlUI2.exe.manifest
2014-01-08 12:17 - 2008-07-01 12:31 - 00614400 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\Rtlihvs.dll
2014-01-08 12:10 - 2014-01-09 16:57 - 00058839 ____N C:\Windows\WindowsUpdate.log
2014-01-07 18:46 - 2014-01-07 18:46 - 00001107 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-01-07 18:45 - 2014-01-09 17:42 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2014-01-07 18:26 - 2014-01-07 18:26 - 00023245 _____ C:\Users\Sessel\Desktop\player.rar
2014-01-06 18:52 - 2014-01-06 18:57 - 00000000 ____D C:\Users\Sessel\Desktop\RPG
2014-01-05 16:49 - 2014-01-05 16:49 - 00000000 ____D C:\Program Files\Reason
2014-01-04 22:25 - 2014-01-07 17:07 - 00003296 _____ C:\Windows\system32\RaCoInst.log
2014-01-03 20:33 - 2014-01-03 22:23 - 00000000 ____D C:\Users\Sessel\workspace
2014-01-03 20:32 - 2014-01-03 20:32 - 00000000 ____D C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32
2014-01-03 20:30 - 2014-01-03 20:31 - 36133394 _____ C:\Users\Sessel\Desktop\release.zip
2014-01-03 20:17 - 2014-01-03 20:23 - 208687239 _____ C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32.zip
2014-01-02 23:32 - 2014-01-02 23:32 - 00259785 _____ C:\Users\Sessel\Downloads\EaZy DayZ Injector_mpgh.net.zip
2014-01-02 22:17 - 2014-01-02 22:17 - 00000222 _____ C:\Users\Sessel\Desktop\Starbound.url
2014-01-02 18:28 - 2014-01-02 18:28 - 00000000 ____D C:\Users\Sessel\AppData\Local\ESET
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Malwarebytes
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 17:58 - 2014-01-02 17:58 - 00921863 _____ C:\Users\Sessel\Downloads\stylish-portfolio.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00149673 _____ C:\Users\Sessel\Downloads\simple-sidebar.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00148858 _____ C:\Users\Sessel\Downloads\full.zip
2014-01-02 16:06 - 2014-01-02 16:06 - 00000222 _____ C:\Users\Sessel\Desktop\Ace of Spades.url
2014-01-01 16:24 - 2014-01-01 16:24 - 00026752 _____ C:\Users\Sessel\Downloads\Buttons-with-Built-in-Loading-Indicators-For-Bootsrap-3-Ladda-Bootstrap.zip
2014-01-01 16:14 - 2014-01-01 16:14 - 00006721 _____ C:\Users\Sessel\Downloads\niklausgerber-PreLoadMe-bdea81d.zip
2014-01-01 15:45 - 2014-01-01 15:45 - 00002770 _____ C:\Users\Sessel\Downloads\Youtube_Browser_Uploader.zip
2014-01-01 13:14 - 2013-11-02 13:14 - 00000032 ____R C:\ProgramData\hash.dat
2013-12-31 15:27 - 2014-01-01 12:56 - 00003142 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-31 14:59 - 2013-12-31 14:59 - 00000000 ____D C:\Users\Sessel\Downloads\SuperMario
2013-12-30 15:25 - 2013-12-30 15:39 - 211388240 _____ (COMODO) C:\Users\Sessel\Downloads\cav_installer.exe
2013-12-29 21:54 - 2013-12-29 21:54 - 00026804 _____ C:\Users\Sessel\Downloads\bootstrap-modal-master.zip
2013-12-29 20:14 - 2013-12-29 20:14 - 02058668 _____ C:\Users\Sessel\Downloads\sarp.zip
2013-12-29 12:45 - 2013-12-29 12:46 - 02396786 _____ C:\Users\Sessel\Downloads\Miami-Island.rar
2013-12-29 12:45 - 2013-12-29 12:46 - 00730343 _____ C:\Users\Sessel\Downloads\samp--2-.sql
2013-12-28 21:38 - 2013-12-28 21:38 - 00150129 _____ C:\Users\Sessel\Downloads\SuperMario.rar
2013-12-28 18:25 - 2013-12-28 18:25 - 00000000 ____D C:\Users\Sessel\Desktop\555
2013-12-28 18:24 - 2013-12-28 18:24 - 01158652 _____ C:\Users\Sessel\Downloads\Portscanner-u-de.zip
2013-12-28 16:08 - 2013-12-28 16:08 - 00001962 _____ C:\Users\Sessel\Downloads\queryLoader.zip
2013-12-28 15:30 - 2013-12-28 15:30 - 00000222 _____ C:\Users\Sessel\Desktop\Hitman Absolution.url
2013-12-27 22:46 - 2014-01-07 18:45 - 00000000 ____D C:\Users\Sessel\Documents\Anti-Malware
2013-12-27 21:36 - 2013-12-27 21:36 - 00383336 _____ (Bkav Corporation) C:\Users\Sessel\Downloads\BkavFE.exe
2013-12-27 14:50 - 2013-12-27 14:50 - 00001452 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-27 14:50 - 2013-12-27 14:50 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-27 14:16 - 2013-12-27 15:44 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-12-27 14:16 - 2013-12-27 14:16 - 00000000 ____D C:\Users\Sessel\AppData\Local\DVDVideoSoft_Ltd
2013-12-27 14:13 - 2013-12-27 14:50 - 00001255 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-12-27 14:01 - 2013-12-27 14:01 - 00000000 ____D C:\Users\Sessel\Documents\StreamTransport
2013-12-27 13:57 - 2013-12-27 13:57 - 00004536 _____ C:\Users\Sessel\AppData\Roaming\CamStudio.cfg
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamShapes.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamLayout.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000076 _____ C:\Users\Sessel\AppData\Roaming\Camdata.ini
2013-12-27 13:48 - 2014-01-02 21:28 - 00000000 ____D C:\Users\Sessel\Documents\My CamStudio Temp Files
2013-12-27 13:44 - 2013-12-27 13:44 - 00000096 _____ C:\Users\Sessel\AppData\Roaming\version2.xml
2013-12-26 21:58 - 2014-01-02 17:57 - 00412600 _____ C:\Users\Sessel\Downloads\sb-admin.zip
2013-12-26 20:44 - 2013-12-26 21:02 - 00000304 _____ C:\Users\Sessel\AppData\Roaming\FileShred.log
2013-12-26 16:25 - 2013-12-29 12:43 - 00000000 ____D C:\Users\Sessel\Desktop\neue scheisse
2013-12-26 16:12 - 2013-12-26 16:12 - 00678998 _____ C:\Users\Sessel\Desktop\bundle.zip
2013-12-26 16:09 - 2013-12-26 16:09 - 00268931 _____ C:\Users\Sessel\Downloads\jquery-slideshow.zip
2013-12-26 16:08 - 2013-12-26 16:08 - 00091395 _____ C:\Users\Sessel\Downloads\jquery.facedetection-master.zip
2013-12-26 13:52 - 2013-12-26 13:52 - 00062168 _____ C:\Users\Sessel\Desktop\1314.zip
2013-12-25 23:49 - 2013-12-25 23:50 - 02971252 _____ C:\Users\Sessel\Downloads\LsR.txt
2013-12-25 23:49 - 2013-12-25 23:49 - 02612753 _____ C:\Users\Sessel\Downloads\RGR.txt
2013-12-24 22:34 - 2013-12-24 22:34 - 00000000 ____D C:\Users\Sessel\Documents\Virtual Machines
2013-12-24 22:33 - 2013-12-24 23:34 - 00000000 ____D C:\Users\Sessel\AppData\Local\VMware
2013-12-24 22:30 - 2013-12-24 22:30 - 00161594 _____ C:\Users\Sessel\Downloads\autoit_key-stealer.txt
2013-12-24 22:13 - 2013-12-18 10:11 - 00128448 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2013-12-24 13:52 - 2013-12-24 13:52 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-22 22:51 - 2013-12-22 22:53 - 00118788 ____H C:\ProgramData\381927810399103401923
2013-12-22 22:33 - 2013-12-25 17:10 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner (2)
2013-12-22 19:42 - 2013-12-22 19:42 - 00000000 ____D C:\ProgramData\baidu
2013-12-22 19:42 - 2013-12-17 10:59 - 00052032 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-12-22 19:42 - 2013-12-17 10:59 - 00034624 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-12-22 14:17 - 2013-12-22 14:17 - 01617205 _____ C:\Users\Sessel\Downloads\ScrEnc.zip
2013-12-21 20:42 - 2013-12-21 20:42 - 00055445 _____ C:\Windows\SysWOW64\CCCInstall_201312212042092904.log
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\ProgramData\ATI
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-12-21 20:40 - 2013-12-21 20:40 - 00000000 ____D C:\Program Files\AMD
2013-12-21 19:52 - 2013-12-21 19:53 - 00791552 _____ (AMD) C:\Users\Sessel\Downloads\amddriverdownloader.exe
2013-12-21 17:15 - 2013-08-15 16:11 - 00002413 _____ C:\Users\Sessel\Desktop\Sound Blaster Tactic(3D) Systemsteuerung.lnk
2013-12-21 16:28 - 2013-12-21 16:28 - 00000000 _____ C:\Users\Sessel\Desktop\Neues Textdokument (2).txt
2013-12-20 21:44 - 2013-12-20 21:44 - 00000000 ____D C:\Users\Sessel\.nbi
2013-12-19 19:21 - 2013-12-19 19:21 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\stetic
2013-12-19 17:22 - 2013-12-19 19:26 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Unity
2013-12-19 17:18 - 2013-12-19 19:20 - 00000000 ____D C:\ProgramData\Unity
2013-12-19 16:57 - 2014-01-09 16:47 - 00000000 ____D C:\Users\Sessel\AppData\Local\Unity
2013-12-19 16:56 - 2013-12-19 16:56 - 00000000 ____D C:\Users\Public\Documents\Unity Projects
2013-12-19 16:51 - 2013-12-19 16:57 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-18 16:50 - 2013-12-18 17:06 - 100600973 _____ (The Code::Blocks Team) C:\Users\Sessel\Downloads\codeblocks-12.11mingw-setup.exe
2013-12-18 16:09 - 2013-12-18 16:09 - 00000000 ___HD C:\VTRoot
2013-12-18 16:08 - 2013-12-18 22:19 - 00156044 _____ C:\Windows\system32\Drivers\fvstore.dat
2013-12-17 15:16 - 2013-12-18 15:47 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner
2013-12-16 19:49 - 2013-12-16 19:49 - 00004607 _____ C:\Users\Sessel\Desktop\vlc-record-2013-12-06-20h29m09s-#MUSIK.HOUSE (FUNKY) - WWW.RAUTEMUSIK.FM - 24H MIXED HOUSE DANCE ELECTRO FUNK MINIMAL AND MORE!-#Musik.House - Track Update on www.RauteMusik.FM_house.mp3 - Verknüpfung.lnk
2013-12-16 12:18 - 2013-12-13 14:48 - 00000000 ____D C:\Users\Sessel\AppData\Local\Adobe
2013-12-15 15:23 - 2013-12-15 15:23 - 00004614 _____ C:\Users\Sessel\Desktop\vlc-record-2013-11-26-16h38m51s-#MUSIK.CLUB - WWW.RAUTEMUSIK.FM - 24H MIXED HANDS UP TRANCE DANCE TECHNO HARDSTYLE HOUSE AND MORE!-#Musik.Club - Track Update on www.RauteMusik.FM_club.mp3 - Verknüpfung.lnk
2013-12-14 18:50 - 2013-12-14 18:51 - 26177576 _____ (PortableApps.com) C:\Users\Sessel\Downloads\FirefoxPortableTest_26.0_Beta_1_German.paf.exe
2013-12-14 18:47 - 2013-12-14 18:47 - 00688536 _____ (Mozilla) C:\Users\Sessel\Downloads\firefox-29.0a1.en-US.win32.installer-stub.exe
2013-12-14 17:11 - 2013-12-14 17:11 - 05514762 _____ C:\Users\Sessel\Downloads\Reupload-.rar
2013-12-13 14:09 - 2013-12-13 14:09 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-12 22:09 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-12 22:09 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-12 22:09 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-12 22:09 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-12 22:08 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 22:08 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 22:08 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 22:08 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 22:08 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 22:08 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 22:08 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 22:08 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 22:08 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 22:08 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 22:08 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 22:08 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 22:08 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 22:08 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 22:08 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 22:08 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 22:08 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 22:08 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 22:08 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 22:08 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 22:08 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 22:08 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 22:08 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 22:08 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 22:08 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 22:08 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 22:08 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 22:08 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 22:08 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 22:08 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 22:08 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 16:35 - 2013-12-12 16:35 - 00002136 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
2013-12-12 16:25 - 2013-12-12 16:25 - 05115912 _____ C:\Users\Sessel\Downloads\DMInfrav2.zip
2013-12-11 16:11 - 2014-01-02 21:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 15:36 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 15:36 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 15:36 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 15:36 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-11 15:36 - 2013-10-30 02:50 - 03159040 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 15:36 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 15:36 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 15:31 - 2013-11-12 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 15:31 - 2013-11-12 03:06 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-11 15:31 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 15:31 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 15:31 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-11 15:31 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-11 15:31 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 15:31 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 15:31 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-11 15:31 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 15:31 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 15:31 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-10 14:52 - 2014-01-02 14:45 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2013-12-10 14:51 - 2013-12-10 14:51 - 00000000 ____D C:\ProgramData\Comodo Downloader

==================== One Month Modified Files and Folders =======

2014-01-09 18:13 - 2014-01-09 18:13 - 00000000 ____D C:\FRST
2014-01-09 17:47 - 2012-10-16 11:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-09 17:42 - 2014-01-07 18:45 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2014-01-09 17:27 - 2012-11-16 19:34 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\TS3Client
2014-01-09 17:23 - 2013-08-20 14:01 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\vlc
2014-01-09 17:10 - 2013-09-02 17:15 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adbuck
2014-01-09 17:10 - 2013-06-17 18:25 - 00000000 ____D C:\Users\Sessel\AppData\Local\CrashDumps
2014-01-09 17:10 - 2013-04-23 18:16 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Notepad++
2014-01-09 17:10 - 2013-03-04 16:55 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-09 16:57 - 2014-01-08 12:10 - 00058839 ____N C:\Windows\WindowsUpdate.log
2014-01-09 16:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-09 16:48 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\ShellNew
2014-01-09 16:47 - 2013-12-19 16:57 - 00000000 ____D C:\Users\Sessel\AppData\Local\Unity
2014-01-09 16:44 - 2013-03-22 13:01 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2014-01-09 16:43 - 2009-07-14 05:45 - 00023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-09 16:43 - 2009-07-14 05:45 - 00023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-09 16:36 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-08 15:22 - 2014-01-08 15:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-08 12:25 - 2014-01-08 12:24 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-08 12:24 - 2014-01-08 12:24 - 00002069 _____ C:\Users\Public\Desktop\Hama Wireless LAN Utility.lnk
2014-01-08 12:17 - 2014-01-08 12:17 - 00000000 ____D C:\Program Files (x86)\Hama
2014-01-08 12:13 - 2009-07-14 18:58 - 00778308 _____ C:\Windows\system32\perfh007.dat
2014-01-08 12:13 - 2009-07-14 18:58 - 00181642 _____ C:\Windows\system32\perfc007.dat
2014-01-08 12:13 - 2009-07-14 06:13 - 01846590 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-07 18:46 - 2014-01-07 18:46 - 00001107 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-01-07 18:45 - 2013-12-27 22:46 - 00000000 ____D C:\Users\Sessel\Documents\Anti-Malware
2014-01-07 18:26 - 2014-01-07 18:26 - 00023245 _____ C:\Users\Sessel\Desktop\player.rar
2014-01-07 17:42 - 2012-10-16 10:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-07 17:07 - 2014-01-04 22:25 - 00003296 _____ C:\Windows\system32\RaCoInst.log
2014-01-07 17:01 - 2013-12-06 14:18 - 00000000 ____D C:\Windows\CryptoGuard
2014-01-06 18:57 - 2014-01-06 18:52 - 00000000 ____D C:\Users\Sessel\Desktop\RPG
2014-01-05 20:39 - 2013-06-30 13:35 - 00000000 ____D C:\ProgramData\VMware
2014-01-05 16:49 - 2014-01-05 16:49 - 00000000 ____D C:\Program Files\Reason
2014-01-04 18:41 - 2013-08-06 17:35 - 00000000 ____D C:\Users\Sessel\AppData\Local\LogMeIn Hamachi
2014-01-04 18:41 - 2013-06-25 20:10 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Skype
2014-01-03 22:23 - 2014-01-03 20:33 - 00000000 ____D C:\Users\Sessel\workspace
2014-01-03 21:41 - 2012-10-16 08:12 - 00000000 ____D C:\Users\Sessel\AppData\Local\VirtualStore
2014-01-03 20:44 - 2013-09-01 12:53 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\CodeBlocks
2014-01-03 20:33 - 2012-10-16 08:12 - 00000000 ____D C:\Users\Sessel
2014-01-03 20:32 - 2014-01-03 20:32 - 00000000 ____D C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32
2014-01-03 20:31 - 2014-01-03 20:30 - 36133394 _____ C:\Users\Sessel\Desktop\release.zip
2014-01-03 20:23 - 2014-01-03 20:17 - 208687239 _____ C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32.zip
2014-01-02 23:32 - 2014-01-02 23:32 - 00259785 _____ C:\Users\Sessel\Downloads\EaZy DayZ Injector_mpgh.net.zip
2014-01-02 22:17 - 2014-01-02 22:17 - 00000222 _____ C:\Users\Sessel\Desktop\Starbound.url
2014-01-02 22:16 - 2013-05-01 15:08 - 00000000 ____D C:\Users\Sessel\Desktop\Käufe
2014-01-02 21:28 - 2013-12-27 13:48 - 00000000 ____D C:\Users\Sessel\Documents\My CamStudio Temp Files
2014-01-02 21:28 - 2013-12-11 16:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 18:28 - 2014-01-02 18:28 - 00000000 ____D C:\Users\Sessel\AppData\Local\ESET
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Malwarebytes
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 17:58 - 2014-01-02 17:58 - 00921863 _____ C:\Users\Sessel\Downloads\stylish-portfolio.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00149673 _____ C:\Users\Sessel\Downloads\simple-sidebar.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00148858 _____ C:\Users\Sessel\Downloads\full.zip
2014-01-02 17:57 - 2013-12-26 21:58 - 00412600 _____ C:\Users\Sessel\Downloads\sb-admin.zip
2014-01-02 17:37 - 2013-08-06 13:18 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-02 17:37 - 2012-10-16 08:12 - 00001437 _____ C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 16:06 - 2014-01-02 16:06 - 00000222 _____ C:\Users\Sessel\Desktop\Ace of Spades.url
2014-01-02 14:45 - 2013-12-10 14:52 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2014-01-01 16:24 - 2014-01-01 16:24 - 00026752 _____ C:\Users\Sessel\Downloads\Buttons-with-Built-in-Loading-Indicators-For-Bootsrap-3-Ladda-Bootstrap.zip
2014-01-01 16:14 - 2014-01-01 16:14 - 00006721 _____ C:\Users\Sessel\Downloads\niklausgerber-PreLoadMe-bdea81d.zip
2014-01-01 15:45 - 2014-01-01 15:45 - 00002770 _____ C:\Users\Sessel\Downloads\Youtube_Browser_Uploader.zip
2014-01-01 12:56 - 2013-12-31 15:27 - 00003142 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-31 17:05 - 2013-11-03 17:19 - 00000000 ____D C:\Users\Sessel\Desktop\IronPortable
2013-12-31 14:59 - 2013-12-31 14:59 - 00000000 ____D C:\Users\Sessel\Downloads\SuperMario
2013-12-30 15:39 - 2013-12-30 15:25 - 211388240 _____ (COMODO) C:\Users\Sessel\Downloads\cav_installer.exe
2013-12-30 14:13 - 2013-04-23 18:16 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-12-29 21:54 - 2013-12-29 21:54 - 00026804 _____ C:\Users\Sessel\Downloads\bootstrap-modal-master.zip
2013-12-29 20:14 - 2013-12-29 20:14 - 02058668 _____ C:\Users\Sessel\Downloads\sarp.zip
2013-12-29 12:46 - 2013-12-29 12:45 - 02396786 _____ C:\Users\Sessel\Downloads\Miami-Island.rar
2013-12-29 12:46 - 2013-12-29 12:45 - 00730343 _____ C:\Users\Sessel\Downloads\samp--2-.sql
2013-12-29 12:43 - 2013-12-26 16:25 - 00000000 ____D C:\Users\Sessel\Desktop\neue scheisse
2013-12-28 21:38 - 2013-12-28 21:38 - 00150129 _____ C:\Users\Sessel\Downloads\SuperMario.rar
2013-12-28 18:36 - 2013-02-09 20:58 - 00007622 _____ C:\Users\Sessel\AppData\Local\Resmon.ResmonCfg
2013-12-28 18:25 - 2013-12-28 18:25 - 00000000 ____D C:\Users\Sessel\Desktop\555
2013-12-28 18:24 - 2013-12-28 18:24 - 01158652 _____ C:\Users\Sessel\Downloads\Portscanner-u-de.zip
2013-12-28 16:08 - 2013-12-28 16:08 - 00001962 _____ C:\Users\Sessel\Downloads\queryLoader.zip
2013-12-28 15:30 - 2013-12-28 15:30 - 00000222 _____ C:\Users\Sessel\Desktop\Hitman Absolution.url
2013-12-27 21:36 - 2013-12-27 21:36 - 00383336 _____ (Bkav Corporation) C:\Users\Sessel\Downloads\BkavFE.exe
2013-12-27 15:44 - 2013-12-27 14:16 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-12-27 15:44 - 2013-10-28 16:24 - 00000919 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.txt
2013-12-27 15:44 - 2013-10-28 16:24 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\NCH Software
2013-12-27 15:44 - 2013-10-28 16:24 - 00000000 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2013-12-27 14:50 - 2013-12-27 14:50 - 00001452 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-27 14:50 - 2013-12-27 14:50 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-27 14:50 - 2013-12-27 14:13 - 00001255 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-12-27 14:50 - 2013-09-06 14:54 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\DVDVideoSoft
2013-12-27 14:29 - 2013-05-11 21:17 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-12-27 14:21 - 2013-10-28 16:24 - 00001181 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.1.txt
2013-12-27 14:16 - 2013-12-27 14:16 - 00000000 ____D C:\Users\Sessel\AppData\Local\DVDVideoSoft_Ltd
2013-12-27 14:16 - 2013-05-11 21:17 - 00000000 ____D C:\ProgramData\NCH Software
2013-12-27 14:01 - 2013-12-27 14:01 - 00000000 ____D C:\Users\Sessel\Documents\StreamTransport
2013-12-27 13:57 - 2013-12-27 13:57 - 00004536 _____ C:\Users\Sessel\AppData\Roaming\CamStudio.cfg
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamShapes.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamLayout.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000076 _____ C:\Users\Sessel\AppData\Roaming\Camdata.ini
2013-12-27 13:44 - 2013-12-27 13:44 - 00000096 _____ C:\Users\Sessel\AppData\Roaming\version2.xml
2013-12-26 21:02 - 2013-12-26 20:44 - 00000304 _____ C:\Users\Sessel\AppData\Roaming\FileShred.log
2013-12-26 16:12 - 2013-12-26 16:12 - 00678998 _____ C:\Users\Sessel\Desktop\bundle.zip
2013-12-26 16:09 - 2013-12-26 16:09 - 00268931 _____ C:\Users\Sessel\Downloads\jquery-slideshow.zip
2013-12-26 16:08 - 2013-12-26 16:08 - 00091395 _____ C:\Users\Sessel\Downloads\jquery.facedetection-master.zip
2013-12-26 13:52 - 2013-12-26 13:52 - 00062168 _____ C:\Users\Sessel\Desktop\1314.zip
2013-12-25 23:50 - 2013-12-25 23:49 - 02971252 _____ C:\Users\Sessel\Downloads\LsR.txt
2013-12-25 23:49 - 2013-12-25 23:49 - 02612753 _____ C:\Users\Sessel\Downloads\RGR.txt
2013-12-25 23:25 - 2013-03-24 11:40 - 00001132 _____ C:\Users\Sessel\SciTE.session
2013-12-25 19:59 - 2013-08-07 16:31 - 00000000 ____D C:\Users\Sessel\Desktop\CLT
2013-12-25 19:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system
2013-12-25 17:10 - 2013-12-22 22:33 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner (2)
2013-12-24 23:34 - 2013-12-24 22:33 - 00000000 ____D C:\Users\Sessel\AppData\Local\VMware
2013-12-24 22:34 - 2013-12-24 22:34 - 00000000 ____D C:\Users\Sessel\Documents\Virtual Machines
2013-12-24 22:30 - 2013-12-24 22:30 - 00161594 _____ C:\Users\Sessel\Downloads\autoit_key-stealer.txt
2013-12-24 14:23 - 2013-01-23 21:33 - 01875504 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-24 13:54 - 2013-06-25 20:10 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 13:54 - 2013-06-25 20:10 - 00000000 ____D C:\ProgramData\Skype
2013-12-24 13:52 - 2013-12-24 13:52 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-23 15:29 - 2013-05-25 11:23 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-23 13:48 - 2013-09-01 14:16 - 00000000 ____D C:\Users\Sessel\Desktop\keylogger
2013-12-22 22:53 - 2013-12-22 22:51 - 00118788 ____H C:\ProgramData\381927810399103401923
2013-12-22 19:42 - 2013-12-22 19:42 - 00000000 ____D C:\ProgramData\baidu
2013-12-22 14:17 - 2013-12-22 14:17 - 01617205 _____ C:\Users\Sessel\Downloads\ScrEnc.zip
2013-12-21 20:42 - 2013-12-21 20:42 - 00055445 _____ C:\Windows\SysWOW64\CCCInstall_201312212042092904.log
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\ProgramData\ATI
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-12-21 20:42 - 2012-10-31 19:44 - 00000000 ____D C:\ProgramData\AMD
2013-12-21 20:41 - 2012-10-16 11:13 - 00000000 ____D C:\Program Files\ATI Technologies
2013-12-21 20:40 - 2013-12-21 20:40 - 00000000 ____D C:\Program Files\AMD
2013-12-21 19:53 - 2013-12-21 19:52 - 00791552 _____ (AMD) C:\Users\Sessel\Downloads\amddriverdownloader.exe
2013-12-21 16:28 - 2013-12-21 16:28 - 00000000 _____ C:\Users\Sessel\Desktop\Neues Textdokument (2).txt
2013-12-20 21:59 - 2013-07-08 12:28 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-20 21:44 - 2013-12-20 21:44 - 00000000 ____D C:\Users\Sessel\.nbi
2013-12-19 19:26 - 2013-12-19 17:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Unity
2013-12-19 19:21 - 2013-12-19 19:21 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\stetic
2013-12-19 19:20 - 2013-12-19 17:18 - 00000000 ____D C:\ProgramData\Unity
2013-12-19 16:57 - 2013-12-19 16:51 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-19 16:56 - 2013-12-19 16:56 - 00000000 ____D C:\Users\Public\Documents\Unity Projects
2013-12-18 22:19 - 2013-12-18 16:08 - 00156044 _____ C:\Windows\system32\Drivers\fvstore.dat
2013-12-18 17:06 - 2013-12-18 16:50 - 100600973 _____ (The Code::Blocks Team) C:\Users\Sessel\Downloads\codeblocks-12.11mingw-setup.exe
2013-12-18 16:09 - 2013-12-18 16:09 - 00000000 ___HD C:\VTRoot
2013-12-18 15:47 - 2013-12-17 15:16 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner
2013-12-18 10:11 - 2013-12-24 22:13 - 00128448 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2013-12-17 10:59 - 2013-12-22 19:42 - 00052032 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-12-17 10:59 - 2013-12-22 19:42 - 00034624 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-12-16 19:49 - 2013-12-16 19:49 - 00004607 _____ C:\Users\Sessel\Desktop\vlc-record-2013-12-06-20h29m09s-#MUSIK.HOUSE (FUNKY) - WWW.RAUTEMUSIK.FM - 24H MIXED HOUSE DANCE ELECTRO FUNK MINIMAL AND MORE!-#Musik.House - Track Update on www.RauteMusik.FM_house.mp3 - Verknüpfung.lnk
2013-12-16 15:31 - 2013-12-03 14:52 - 00000000 ____D C:\Users\Public\Documents\Reallusion
2013-12-15 21:19 - 2013-06-22 21:16 - 00000000 ____D C:\Users\Sessel\Desktop\streamwriter  & Leader
2013-12-15 20:58 - 2013-07-17 11:38 - 00000000 ____D C:\Windows\system32\MRT
2013-12-15 20:56 - 2012-10-16 15:06 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 15:23 - 2013-12-15 15:23 - 00004614 _____ C:\Users\Sessel\Desktop\vlc-record-2013-11-26-16h38m51s-#MUSIK.CLUB - WWW.RAUTEMUSIK.FM - 24H MIXED HANDS UP TRANCE DANCE TECHNO HARDSTYLE HOUSE AND MORE!-#Musik.Club - Track Update on www.RauteMusik.FM_club.mp3 - Verknüpfung.lnk
2013-12-15 15:04 - 2013-10-09 15:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-14 20:04 - 2013-03-04 19:23 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Mozilla
2013-12-14 18:51 - 2013-12-14 18:50 - 26177576 _____ (PortableApps.com) C:\Users\Sessel\Downloads\FirefoxPortableTest_26.0_Beta_1_German.paf.exe
2013-12-14 18:47 - 2013-12-14 18:47 - 00688536 _____ (Mozilla) C:\Users\Sessel\Downloads\firefox-29.0a1.en-US.win32.installer-stub.exe
2013-12-14 18:43 - 2009-07-14 03:34 - 00000820 _____ C:\Windows\system32\Drivers\etc\hosts2
2013-12-14 17:11 - 2013-12-14 17:11 - 05514762 _____ C:\Users\Sessel\Downloads\Reupload-.rar
2013-12-13 15:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-13 14:48 - 2013-12-16 12:18 - 00000000 ____D C:\Users\Sessel\AppData\Local\Adobe
2013-12-13 14:48 - 2012-10-16 11:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-13 14:48 - 2012-10-16 11:17 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-13 14:48 - 2012-10-16 11:17 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-13 14:45 - 2013-06-23 21:28 - 00001082 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-13 14:09 - 2013-12-13 14:09 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-12 16:36 - 2013-07-04 17:00 - 00000000 ____D C:\Program Files (x86)\MTA San Andreas 1.3
2013-12-12 16:35 - 2013-12-12 16:35 - 00002136 _____ C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
2013-12-12 16:35 - 2013-07-04 17:00 - 00000000 ____D C:\ProgramData\MTA San Andreas All
2013-12-12 16:25 - 2013-12-12 16:25 - 05115912 _____ C:\Users\Sessel\Downloads\DMInfrav2.zip
2013-12-12 15:24 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-10 15:36 - 2013-03-17 12:34 - 00000000 ____D C:\Users\Sessel\Desktop\xampp-portable
2013-12-10 14:54 - 2013-06-10 14:15 - 00000000 ____D C:\ProgramData\Comodo
2013-12-10 14:51 - 2013-12-10 14:51 - 00000000 ____D C:\ProgramData\Comodo Downloader
2013-12-10 12:47 - 2013-09-25 19:37 - 00000000 ____D C:\Users\Sessel\Downloads\Spiel + Editor exe

Files to move or delete:
====================
C:\Users\Sessel\AppData\Roaming\CamLayout.ini
C:\Users\Sessel\AppData\Roaming\CamShapes.ini
C:\ProgramData\cisB933.exe
C:\ProgramData\FileSplitUpLoad.dll
C:\ProgramData\hash.dat


Some content of TEMP:
====================
C:\Users\Sessel\AppData\Local\Temp\InternalAHK.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe
[2013-05-29 14:33] - [2012-10-18 19:02] - 0027136 ____A (Microsoft Corporation) DFDE777FAF31DC25E3624E8071073146

C:\Windows\SysWOW64\svchost.exe
[2013-05-29 14:33] - [2012-10-18 18:40] - 0021504 ____A (Microsoft Corporation) FFB38D8AFD6F4FCA1D46D64F1EDE0B9F

C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2013-05-29 14:33] - [2012-10-18 21:33] - 0512000 ____A (Microsoft Corporation) F3EF088F45BE326B4EDAC8C1C5A35105

C:\Windows\System32\Drivers\volsnap.sys
[2013-05-29 14:33] - [2012-10-18 23:00] - 0296808 ____A (Microsoft Corporation) DF83AA1C4278E2C0E36C0479C1555A9C



LastRegBack: 2014-01-09 17:45

==================== End Of Log ============================

--- --- ---

--- --- ---

aharonov · 09.01.2014, 19:22

ok.

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

TheDarkWolf · 09.01.2014, 22:31

Hier ist die Log, ich kann die nicht reinschreiben, dann steht das:

Zitat:

Der Text, den Sie eingegeben haben, besteht aus 137801 Zeichen und ist damit zu lang. Bitte kürzen Sie den Text auf die maximale Länge von 120000 Zeichen.

Anhängen kann ich die Datei auch nicht, da die zu groß ist...

Ich hab sie auf meinen DropBox gepackt:

https://dl.dropboxusercontent.com/u/96779182/ComboFix.txt

aharonov · 09.01.2014, 23:18

Zitat:

Der Text, den Sie eingegeben haben, besteht aus 137801 Zeichen und ist damit zu lang. Bitte kürzen Sie den Text auf die maximale Länge von 120000 Zeichen.

Dann füge den Inhalt des Logs bitte auf zwei Posts verteilt hier ein.

TheDarkWolf · 10.01.2014, 12:57

Zitat:

Zitat von aharonov

Dann füge den Inhalt des Logs bitte auf zwei Posts verteilt hier ein.

Geht leider nicht, dann ist es bei beiden zu viel...

Kann das nicht abzählen...

Hab's ihnen auf DropBox geladen, sollte dort gehen..

aharonov · 10.01.2014, 13:11

Schritt 1

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

TheDarkWolf · 10.01.2014, 16:18

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.10.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Sessel :: SESSEL-PC [Administrator]

10.01.2014 13:26:49
mbam-log-2014-01-10 (13-26-49).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 220452
Laufzeit: 6 Minute(n), 59 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Code:

ATTFilter

# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=3cadcb6c54e1504dac5898ed6227ccac
# engine=16601
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-10 03:08:32
# local_time=2014-01-10 04:08:32 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 8488565 140996362 0 0
# scanned=437025
# found=0
# cleaned=0
# scan_time=8957

Könnten Sie mir aber diesen Plunder entfernen:

U2 楗敳潂瑯獁楳瑳湡tɉ"; 㩃停潲牧浡䘠汩獥⠠㡸⤶坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數Ȁ" [x]

was ist das überhaupt?

aharonov · 13.01.2014, 19:52

Versuchen wir es mal:

Schritt 1

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

U2 楗敳潂瑯獁楳瑳湡tɉ"; 㩃停潲牧浡䘠汩獥⠠㡸⤶坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數Ȁ" [x]

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

TheDarkWolf · 14.01.2014, 13:58

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-01-2014 02
Ran by Sessel at 2014-01-14 13:27:31 Run:1
Running from C:\Users\Sessel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
U2 ????????t?"; ????????????????????????????" [x]
*****************

????????t?" => Service not found.

==== End of Fixlog ====

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-01-2014 02
Ran by Sessel (administrator) on SESSEL-PC on 14-01-2014 13:30:12
Running from C:\Users\Sessel\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe
(Realtek Semiconductor.) C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Zemana Ltd.) C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] - "C:\ProgramData\cisB933.exe" --PostUninstall {81EFDD93-DBBE-415B-BE6E-49B9664E3E82}
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ZALFree] - C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe [13007712 2013-11-06] (Zemana Ltd.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] - c:\program files (x86)\emsisoft anti-malware\a2guard.exe [4329408 2013-12-04] (Emsisoft GmbH)
AppInit_DLLs: C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(7).dll [90448 2013-11-06] (Zemana Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KeyCrypt32(7).dll [83208 2013-11-06] (Zemana Ltd.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} -  No File
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1379517905806
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler: cardisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  No File
Handler-x32: cardisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default
FF Homepage: about:blank
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: German Dictionary - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\de-DE@dictionaries.addons.mozilla.org [2013-12-15]
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\donottrackplus@abine.com [2014-01-03]
FF Extension: ColorZilla - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2014-01-04]
FF Extension: Magic Actions for YouTube™ - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2013-12-14]
FF Extension: Adblock Plus - C:\Users\Sessel\AppData\Roaming\Mozilla\Firefox\Profiles\noyr234j.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-14]

==================== Services (Whitelisted) =================

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4161512 2013-12-04] (Emsisoft GmbH)
S2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [58345832 2011-09-22] (Microsoft Corporation)
R2 Realtek11nSU; C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe [36864 2010-04-16] (Realtek)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2013-07-17] (Realtek Semiconductor.)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [431464 2011-09-22] (Microsoft Corporation)
U2 楗敳潂瑯獁楳瑳湡tɉ"; 㩃停潲牧浡䘠汩獥⠠㡸⤶坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數Ȁ" [x]

==================== Drivers (Whitelisted) ====================

R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2013-10-02] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [30112 2013-05-13] (REALiX(tm))
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [25568 2013-11-06] (Zemana Ltd.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-08-12] (Realtek Semiconductor Corporation                           )
R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-07-19] (Creative Technology Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2012-10-18] (Microsoft Corporation)
U5 Bfilter; C:\Windows\System32\Drivers\Bfilter.sys [52032 2013-12-17] (Baidu, Inc.)
U5 Bfmon; C:\Windows\System32\Drivers\Bfmon.sys [34624 2013-12-17] (Baidu, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 netr28ux; system32\DRIVERS\netr28ux.sys [x]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [x]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [x]
U4 vsserv; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-14 13:30 - 2014-01-14 13:30 - 00010846 _____ C:\Users\Sessel\Desktop\FRST.txt
2014-01-14 13:27 - 2014-01-14 13:27 - 00000000 ____D C:\FRST
2014-01-14 13:26 - 2014-01-14 13:27 - 02075648 _____ (Farbar) C:\Users\Sessel\Desktop\FRST64.exe
2014-01-13 16:49 - 2014-01-13 16:51 - 07241860 _____ C:\Users\Sessel\Desktop\FileZilla_3.7.3_win32.zip
2014-01-13 16:39 - 2014-01-13 16:39 - 00495616 _____ (Simon Tatham) C:\Users\Sessel\Desktop\putty_0.63.exe
2014-01-13 16:35 - 2014-01-13 17:00 - 431644660 _____ C:\Users\Sessel\Desktop\viscera_alpha_v0.15.exe
2014-01-13 15:14 - 2014-01-13 15:14 - 00001107 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-01-12 14:46 - 2014-01-12 14:46 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-12 14:46 - 2014-01-12 14:46 - 00000000 ____D C:\Users\Sessel\Documents\streumon
2014-01-12 14:34 - 2014-01-12 14:34 - 00000000 ____D C:\Program Files (x86)\WinPcap
2014-01-11 14:28 - 2014-01-11 14:28 - 00017551 _____ C:\Windows\DirectX.log
2014-01-11 14:25 - 2014-01-11 14:25 - 00000221 _____ C:\Users\Sessel\Desktop\E.Y.E Divine Cybermancy.url
2014-01-10 20:59 - 2014-01-10 20:59 - 00000855 _____ C:\Users\Public\Desktop\Construct 2.lnk
2014-01-10 20:59 - 2014-01-10 20:59 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Construct2
2014-01-10 20:58 - 2014-01-10 20:59 - 00000000 ____D C:\Program Files\Construct 2
2014-01-10 17:09 - 2014-01-10 17:11 - 80619046 _____ C:\Users\Sessel\Downloads\Good & Unknown Ton Don.rar
2014-01-10 13:53 - 2014-01-10 13:53 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-10 13:53 - 2014-01-10 13:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-10 13:53 - 2014-01-10 13:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-10 12:51 - 2014-01-10 12:51 - 00000222 _____ C:\Users\Sessel\Desktop\Torchlight II.url
2014-01-10 12:27 - 2014-01-10 12:27 - 00058424 _____ C:\Users\Sessel\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-09 22:21 - 2014-01-09 22:21 - 00137788 _____ C:\ComboFix.txt
2014-01-09 22:12 - 2014-01-14 13:15 - 00001145 _____ C:\Windows\setupact.log
2014-01-09 22:12 - 2014-01-09 22:12 - 00000000 _____ C:\Windows\setuperr.log
2014-01-09 22:11 - 2014-01-13 15:10 - 00017036 _____ C:\Windows\PFRO.log
2014-01-09 22:11 - 2014-01-09 22:11 - 00276600 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-09 21:57 - 2014-01-09 22:21 - 00000000 ____D C:\Qoobox
2014-01-09 21:57 - 2014-01-09 22:19 - 00000000 ____D C:\Windows\erdnt
2014-01-09 21:57 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-09 21:57 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-09 21:57 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-09 21:57 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-09 21:57 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-09 21:57 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-09 21:57 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-09 21:57 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-09 19:43 - 2014-01-09 19:54 - 00000000 ____D C:\Users\Sessel\Desktop\hh
2014-01-08 18:30 - 2014-01-08 22:41 - 00000070 _____ C:\Users\Sessel\Desktop\pwk.txt
2014-01-08 15:22 - 2014-01-08 15:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-08 12:24 - 2014-01-08 12:25 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-08 12:24 - 2014-01-08 12:24 - 00002069 _____ C:\Users\Public\Desktop\Hama Wireless LAN Utility.lnk
2014-01-08 12:17 - 2014-01-08 12:17 - 00000000 ____D C:\Program Files (x86)\Hama
2014-01-08 12:17 - 2009-04-02 10:27 - 00188416 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\RTLExtUI.dll
2014-01-08 12:17 - 2009-03-31 14:31 - 00380928 _____ (Realtek) C:\Windows\RtlUI2.exe
2014-01-08 12:17 - 2009-01-05 20:31 - 00000901 _____ C:\Windows\RtlUI2.exe.manifest
2014-01-08 12:17 - 2008-07-01 12:31 - 00614400 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\Rtlihvs.dll
2014-01-08 12:10 - 2014-01-14 13:20 - 00141941 _____ C:\Windows\WindowsUpdate.log
2014-01-07 18:45 - 2014-01-14 13:29 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2014-01-07 18:26 - 2014-01-07 18:26 - 00023245 _____ C:\Users\Sessel\Desktop\player.rar
2014-01-06 18:52 - 2014-01-06 18:57 - 00000000 ____D C:\Users\Sessel\Desktop\RPG
2014-01-04 22:25 - 2014-01-07 17:07 - 00003296 _____ C:\Windows\system32\RaCoInst.log
2014-01-03 20:33 - 2014-01-03 22:23 - 00000000 ____D C:\Users\Sessel\workspace
2014-01-03 20:32 - 2014-01-03 20:32 - 00000000 ____D C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32
2014-01-03 20:17 - 2014-01-03 20:23 - 208687239 _____ C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32.zip
2014-01-02 23:32 - 2014-01-02 23:32 - 00259785 _____ C:\Users\Sessel\Downloads\EaZy DayZ Injector_mpgh.net.zip
2014-01-02 22:17 - 2014-01-02 22:17 - 00000222 _____ C:\Users\Sessel\Desktop\Starbound.url
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Malwarebytes
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 17:58 - 2014-01-02 17:58 - 00921863 _____ C:\Users\Sessel\Downloads\stylish-portfolio.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00149673 _____ C:\Users\Sessel\Downloads\simple-sidebar.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00148858 _____ C:\Users\Sessel\Downloads\full.zip
2014-01-02 16:06 - 2014-01-02 16:06 - 00000222 _____ C:\Users\Sessel\Desktop\Ace of Spades.url
2014-01-01 16:24 - 2014-01-01 16:24 - 00026752 _____ C:\Users\Sessel\Downloads\Buttons-with-Built-in-Loading-Indicators-For-Bootsrap-3-Ladda-Bootstrap.zip
2014-01-01 16:14 - 2014-01-01 16:14 - 00006721 _____ C:\Users\Sessel\Downloads\niklausgerber-PreLoadMe-bdea81d.zip
2014-01-01 15:45 - 2014-01-01 15:45 - 00002770 _____ C:\Users\Sessel\Downloads\Youtube_Browser_Uploader.zip
2014-01-01 13:14 - 2013-11-02 13:14 - 00000032 ____R C:\ProgramData\hash.dat
2013-12-31 15:27 - 2014-01-01 12:56 - 00003142 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-31 14:59 - 2013-12-31 14:59 - 00000000 ____D C:\Users\Sessel\Downloads\SuperMario
2013-12-29 21:54 - 2013-12-29 21:54 - 00026804 _____ C:\Users\Sessel\Downloads\bootstrap-modal-master.zip
2013-12-29 20:14 - 2013-12-29 20:14 - 02058668 _____ C:\Users\Sessel\Downloads\sarp.zip
2013-12-29 12:45 - 2013-12-29 12:46 - 02396786 _____ C:\Users\Sessel\Downloads\Miami-Island.rar
2013-12-29 12:45 - 2013-12-29 12:46 - 00730343 _____ C:\Users\Sessel\Downloads\samp--2-.sql
2013-12-28 21:38 - 2013-12-28 21:38 - 00150129 _____ C:\Users\Sessel\Downloads\SuperMario.rar
2013-12-28 18:24 - 2013-12-28 18:24 - 01158652 _____ C:\Users\Sessel\Downloads\Portscanner-u-de.zip
2013-12-28 16:08 - 2013-12-28 16:08 - 00001962 _____ C:\Users\Sessel\Downloads\queryLoader.zip
2013-12-28 15:30 - 2013-12-28 15:30 - 00000222 _____ C:\Users\Sessel\Desktop\Hitman Absolution.url
2013-12-27 22:46 - 2014-01-13 15:14 - 00000000 ____D C:\Users\Sessel\Documents\Anti-Malware
2013-12-27 21:36 - 2013-12-27 21:36 - 00383336 _____ (Bkav Corporation) C:\Users\Sessel\Downloads\BkavFE.exe
2013-12-27 14:50 - 2013-12-27 14:50 - 00001452 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-27 14:50 - 2013-12-27 14:50 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-27 14:16 - 2013-12-27 15:44 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-12-27 14:16 - 2013-12-27 14:16 - 00000000 ____D C:\Users\Sessel\AppData\Local\DVDVideoSoft_Ltd
2013-12-27 14:13 - 2013-12-27 14:50 - 00001255 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-12-27 14:01 - 2013-12-27 14:01 - 00000000 ____D C:\Users\Sessel\Documents\StreamTransport
2013-12-27 13:57 - 2013-12-27 13:57 - 00004536 _____ C:\Users\Sessel\AppData\Roaming\CamStudio.cfg
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamShapes.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamLayout.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000076 _____ C:\Users\Sessel\AppData\Roaming\Camdata.ini
2013-12-27 13:48 - 2014-01-02 21:28 - 00000000 ____D C:\Users\Sessel\Documents\My CamStudio Temp Files
2013-12-27 13:44 - 2013-12-27 13:44 - 00000096 _____ C:\Users\Sessel\AppData\Roaming\version2.xml
2013-12-26 21:58 - 2014-01-02 17:57 - 00412600 _____ C:\Users\Sessel\Downloads\sb-admin.zip
2013-12-26 20:44 - 2013-12-26 21:02 - 00000304 _____ C:\Users\Sessel\AppData\Roaming\FileShred.log
2013-12-26 16:25 - 2013-12-29 12:43 - 00000000 ____D C:\Users\Sessel\Desktop\neue scheisse
2013-12-26 16:12 - 2013-12-26 16:12 - 00678998 _____ C:\Users\Sessel\Desktop\bundle.zip
2013-12-26 16:09 - 2013-12-26 16:09 - 00268931 _____ C:\Users\Sessel\Downloads\jquery-slideshow.zip
2013-12-26 16:08 - 2013-12-26 16:08 - 00091395 _____ C:\Users\Sessel\Downloads\jquery.facedetection-master.zip
2013-12-26 13:52 - 2013-12-26 13:52 - 00062168 _____ C:\Users\Sessel\Desktop\1314.zip
2013-12-25 23:49 - 2013-12-25 23:50 - 02971252 _____ C:\Users\Sessel\Downloads\LsR.txt
2013-12-25 23:49 - 2013-12-25 23:49 - 02612753 _____ C:\Users\Sessel\Downloads\RGR.txt
2013-12-24 22:34 - 2013-12-24 22:34 - 00000000 ____D C:\Users\Sessel\Documents\Virtual Machines
2013-12-24 22:33 - 2013-12-24 23:34 - 00000000 ____D C:\Users\Sessel\AppData\Local\VMware
2013-12-24 22:30 - 2013-12-24 22:30 - 00161594 _____ C:\Users\Sessel\Downloads\autoit_key-stealer.txt
2013-12-24 13:52 - 2013-12-24 13:52 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-22 22:33 - 2013-12-25 17:10 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner (2)
2013-12-22 19:42 - 2013-12-22 19:42 - 00000000 ____D C:\ProgramData\baidu
2013-12-22 19:42 - 2013-12-17 10:59 - 00052032 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-12-22 19:42 - 2013-12-17 10:59 - 00034624 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-12-22 14:17 - 2013-12-22 14:17 - 01617205 _____ C:\Users\Sessel\Downloads\ScrEnc.zip
2013-12-21 20:42 - 2013-12-21 20:42 - 00055445 _____ C:\Windows\SysWOW64\CCCInstall_201312212042092904.log
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\ProgramData\ATI
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-12-21 20:40 - 2013-12-21 20:40 - 00000000 ____D C:\Program Files\AMD
2013-12-21 19:52 - 2013-12-21 19:53 - 00791552 _____ (AMD) C:\Users\Sessel\Downloads\amddriverdownloader.exe
2013-12-21 16:28 - 2013-12-21 16:28 - 00000000 _____ C:\Users\Sessel\Desktop\Neues Textdokument (2).txt
2013-12-20 21:44 - 2013-12-20 21:44 - 00000000 ____D C:\Users\Sessel\.nbi
2013-12-19 19:21 - 2013-12-19 19:21 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\stetic
2013-12-19 17:22 - 2013-12-19 19:26 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Unity
2013-12-19 17:18 - 2013-12-19 19:20 - 00000000 ____D C:\ProgramData\Unity
2013-12-19 16:57 - 2014-01-09 16:47 - 00000000 ____D C:\Users\Sessel\AppData\Local\Unity
2013-12-19 16:56 - 2013-12-19 16:56 - 00000000 ____D C:\Users\Public\Documents\Unity Projects
2013-12-19 16:51 - 2014-01-09 22:11 - 00000000 ____D C:\Program Files (x86)\Unity
2013-12-18 16:50 - 2013-12-18 17:06 - 100600973 _____ (The Code::Blocks Team) C:\Users\Sessel\Downloads\codeblocks-12.11mingw-setup.exe
2013-12-18 16:09 - 2013-12-18 16:09 - 00000000 ____D C:\VTRoot
2013-12-18 16:08 - 2013-12-18 22:19 - 00156044 _____ C:\Windows\system32\Drivers\fvstore.dat
2013-12-17 15:16 - 2013-12-18 15:47 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner
2013-12-16 19:49 - 2013-12-16 19:49 - 00004607 _____ C:\Users\Sessel\Desktop\vlc-record-2013-12-06-20h29m09s-#MUSIK.HOUSE (FUNKY) - WWW.RAUTEMUSIK.FM - 24H MIXED HOUSE DANCE ELECTRO FUNK MINIMAL AND MORE!-#Musik.House - Track Update on www.RauteMusik.FM_house.mp3 - Verknüpfung.lnk
2013-12-16 12:18 - 2013-12-13 14:48 - 00000000 ____D C:\Users\Sessel\AppData\Local\Adobe
2013-12-15 15:23 - 2013-12-15 15:23 - 00004614 _____ C:\Users\Sessel\Desktop\vlc-record-2013-11-26-16h38m51s-#MUSIK.CLUB - WWW.RAUTEMUSIK.FM - 24H MIXED HANDS UP TRANCE DANCE TECHNO HARDSTYLE HOUSE AND MORE!-#Musik.Club - Track Update on www.RauteMusik.FM_club.mp3 - Verknüpfung.lnk

==================== One Month Modified Files and Folders =======

2014-01-14 13:30 - 2014-01-14 13:30 - 00010846 _____ C:\Users\Sessel\Desktop\FRST.txt
2014-01-14 13:29 - 2014-01-07 18:45 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2014-01-14 13:27 - 2014-01-14 13:27 - 00000000 ____D C:\FRST
2014-01-14 13:27 - 2014-01-14 13:26 - 02075648 _____ (Farbar) C:\Users\Sessel\Desktop\FRST64.exe
2014-01-14 13:23 - 2009-07-14 05:45 - 00023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-14 13:23 - 2009-07-14 05:45 - 00023152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-14 13:20 - 2014-01-08 12:10 - 00141941 _____ C:\Windows\WindowsUpdate.log
2014-01-14 13:15 - 2014-01-09 22:12 - 00001145 _____ C:\Windows\setupact.log
2014-01-14 13:15 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-13 22:21 - 2013-08-20 14:01 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\vlc
2014-01-13 22:21 - 2013-08-03 14:23 - 00000600 _____ C:\Users\Sessel\AppData\Local\PUTTY.RND
2014-01-13 21:47 - 2012-10-16 11:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-13 17:00 - 2014-01-13 16:35 - 431644660 _____ C:\Users\Sessel\Desktop\viscera_alpha_v0.15.exe
2014-01-13 16:56 - 2009-07-14 18:58 - 00778308 _____ C:\Windows\system32\perfh007.dat
2014-01-13 16:56 - 2009-07-14 18:58 - 00181642 _____ C:\Windows\system32\perfc007.dat
2014-01-13 16:56 - 2009-07-14 06:13 - 01846590 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-13 16:51 - 2014-01-13 16:49 - 07241860 _____ C:\Users\Sessel\Desktop\FileZilla_3.7.3_win32.zip
2014-01-13 16:39 - 2014-01-13 16:39 - 00495616 _____ (Simon Tatham) C:\Users\Sessel\Desktop\putty_0.63.exe
2014-01-13 16:16 - 2013-05-01 15:08 - 00000000 ____D C:\Users\Sessel\Desktop\Käufe
2014-01-13 15:14 - 2014-01-13 15:14 - 00001107 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-01-13 15:14 - 2013-12-27 22:46 - 00000000 ____D C:\Users\Sessel\Documents\Anti-Malware
2014-01-13 15:10 - 2014-01-09 22:11 - 00017036 _____ C:\Windows\PFRO.log
2014-01-12 21:21 - 2012-11-16 19:34 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\TS3Client
2014-01-12 20:39 - 2013-06-17 18:25 - 00000000 ____D C:\Users\Sessel\AppData\Local\CrashDumps
2014-01-12 20:39 - 2013-03-04 16:55 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-12 20:32 - 2013-06-22 23:03 - 00000000 ____D C:\Users\Sessel\Desktop\Laufscript
2014-01-12 14:46 - 2014-01-12 14:46 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-12 14:46 - 2014-01-12 14:46 - 00000000 ____D C:\Users\Sessel\Documents\streumon
2014-01-12 14:34 - 2014-01-12 14:34 - 00000000 ____D C:\Program Files (x86)\WinPcap
2014-01-11 14:39 - 2012-10-16 12:09 - 00000000 ____D C:\Users\Sessel\Documents\my games
2014-01-11 14:28 - 2014-01-11 14:28 - 00017551 _____ C:\Windows\DirectX.log
2014-01-11 14:25 - 2014-01-11 14:25 - 00000221 _____ C:\Users\Sessel\Desktop\E.Y.E Divine Cybermancy.url
2014-01-10 20:59 - 2014-01-10 20:59 - 00000855 _____ C:\Users\Public\Desktop\Construct 2.lnk
2014-01-10 20:59 - 2014-01-10 20:59 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Construct2
2014-01-10 20:59 - 2014-01-10 20:58 - 00000000 ____D C:\Program Files\Construct 2
2014-01-10 17:11 - 2014-01-10 17:09 - 80619046 _____ C:\Users\Sessel\Downloads\Good & Unknown Ton Don.rar
2014-01-10 13:53 - 2014-01-10 13:53 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-10 13:53 - 2014-01-10 13:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-10 13:53 - 2014-01-10 13:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-10 12:53 - 2013-03-17 12:34 - 00000000 ____D C:\Users\Sessel\Desktop\xampp-portable
2014-01-10 12:51 - 2014-01-10 12:51 - 00000222 _____ C:\Users\Sessel\Desktop\Torchlight II.url
2014-01-10 12:27 - 2014-01-10 12:27 - 00058424 _____ C:\Users\Sessel\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-09 23:23 - 2013-04-23 18:16 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Notepad++
2014-01-09 22:21 - 2014-01-09 22:21 - 00137788 _____ C:\ComboFix.txt
2014-01-09 22:21 - 2014-01-09 21:57 - 00000000 ____D C:\Qoobox
2014-01-09 22:19 - 2014-01-09 21:57 - 00000000 ____D C:\Windows\erdnt
2014-01-09 22:12 - 2014-01-09 22:12 - 00000000 _____ C:\Windows\setuperr.log
2014-01-09 22:12 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-09 22:12 - 2009-07-14 03:34 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts2 (2)
2014-01-09 22:11 - 2014-01-09 22:11 - 00276600 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-09 22:11 - 2013-12-19 16:51 - 00000000 ____D C:\Program Files (x86)\Unity
2014-01-09 22:11 - 2009-07-14 03:34 - 71565312 _____ C:\Windows\system32\config\software.bak
2014-01-09 22:11 - 2009-07-14 03:34 - 26738688 _____ C:\Windows\system32\config\system.bak
2014-01-09 22:11 - 2009-07-14 03:34 - 01310720 _____ C:\Windows\system32\config\default.bak
2014-01-09 22:11 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\security.bak
2014-01-09 22:11 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\sam.bak
2014-01-09 19:54 - 2014-01-09 19:43 - 00000000 ____D C:\Users\Sessel\Desktop\hh
2014-01-09 19:46 - 2013-11-03 20:03 - 00000845 _____ C:\Users\Sessel\Desktop\angreifersqlinjection.txt
2014-01-09 17:10 - 2013-09-02 17:15 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adbuck
2014-01-09 16:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-09 16:48 - 2009-07-14 19:18 - 00000000 ____D C:\Windows\ShellNew
2014-01-09 16:47 - 2013-12-19 16:57 - 00000000 ____D C:\Users\Sessel\AppData\Local\Unity
2014-01-09 16:44 - 2013-03-22 13:01 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2014-01-08 22:41 - 2014-01-08 18:30 - 00000070 _____ C:\Users\Sessel\Desktop\pwk.txt
2014-01-08 15:22 - 2014-01-08 15:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-08 12:25 - 2014-01-08 12:24 - 00000000 ____D C:\Program Files (x86)\Cisco
2014-01-08 12:24 - 2014-01-08 12:24 - 00002069 _____ C:\Users\Public\Desktop\Hama Wireless LAN Utility.lnk
2014-01-08 12:17 - 2014-01-08 12:17 - 00000000 ____D C:\Program Files (x86)\Hama
2014-01-07 18:26 - 2014-01-07 18:26 - 00023245 _____ C:\Users\Sessel\Desktop\player.rar
2014-01-07 17:42 - 2012-10-16 10:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-07 17:07 - 2014-01-04 22:25 - 00003296 _____ C:\Windows\system32\RaCoInst.log
2014-01-07 17:01 - 2013-12-06 14:18 - 00000000 ____D C:\Windows\CryptoGuard
2014-01-06 18:57 - 2014-01-06 18:52 - 00000000 ____D C:\Users\Sessel\Desktop\RPG
2014-01-05 20:39 - 2013-06-30 13:35 - 00000000 ____D C:\ProgramData\VMware
2014-01-04 18:41 - 2013-08-06 17:35 - 00000000 ____D C:\Users\Sessel\AppData\Local\LogMeIn Hamachi
2014-01-04 18:41 - 2013-06-25 20:10 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Skype
2014-01-03 22:23 - 2014-01-03 20:33 - 00000000 ____D C:\Users\Sessel\workspace
2014-01-03 21:41 - 2012-10-16 08:12 - 00000000 ____D C:\Users\Sessel\AppData\Local\VirtualStore
2014-01-03 20:44 - 2013-09-01 12:53 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\CodeBlocks
2014-01-03 20:33 - 2012-10-16 08:12 - 00000000 ____D C:\Users\Sessel
2014-01-03 20:32 - 2014-01-03 20:32 - 00000000 ____D C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32
2014-01-03 20:23 - 2014-01-03 20:17 - 208687239 _____ C:\Users\Sessel\Desktop\eclipse-standard-kepler-SR1-win32.zip
2014-01-02 23:32 - 2014-01-02 23:32 - 00259785 _____ C:\Users\Sessel\Downloads\EaZy DayZ Injector_mpgh.net.zip
2014-01-02 22:17 - 2014-01-02 22:17 - 00000222 _____ C:\Users\Sessel\Desktop\Starbound.url
2014-01-02 21:28 - 2013-12-27 13:48 - 00000000 ____D C:\Users\Sessel\Documents\My CamStudio Temp Files
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Malwarebytes
2014-01-02 18:22 - 2014-01-02 18:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-02 17:58 - 2014-01-02 17:58 - 00921863 _____ C:\Users\Sessel\Downloads\stylish-portfolio.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00149673 _____ C:\Users\Sessel\Downloads\simple-sidebar.zip
2014-01-02 17:58 - 2014-01-02 17:58 - 00148858 _____ C:\Users\Sessel\Downloads\full.zip
2014-01-02 17:57 - 2013-12-26 21:58 - 00412600 _____ C:\Users\Sessel\Downloads\sb-admin.zip
2014-01-02 17:37 - 2012-10-16 08:12 - 00001437 _____ C:\Users\Sessel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 16:06 - 2014-01-02 16:06 - 00000222 _____ C:\Users\Sessel\Desktop\Ace of Spades.url
2014-01-02 14:45 - 2013-12-10 14:52 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2014-01-01 16:24 - 2014-01-01 16:24 - 00026752 _____ C:\Users\Sessel\Downloads\Buttons-with-Built-in-Loading-Indicators-For-Bootsrap-3-Ladda-Bootstrap.zip
2014-01-01 16:14 - 2014-01-01 16:14 - 00006721 _____ C:\Users\Sessel\Downloads\niklausgerber-PreLoadMe-bdea81d.zip
2014-01-01 15:45 - 2014-01-01 15:45 - 00002770 _____ C:\Users\Sessel\Downloads\Youtube_Browser_Uploader.zip
2014-01-01 12:56 - 2013-12-31 15:27 - 00003142 _____ C:\Windows\System32\Tasks\FRAPS
2013-12-31 17:05 - 2013-11-03 17:19 - 00000000 ____D C:\Users\Sessel\Desktop\IronPortable
2013-12-31 14:59 - 2013-12-31 14:59 - 00000000 ____D C:\Users\Sessel\Downloads\SuperMario
2013-12-30 14:13 - 2013-04-23 18:16 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-12-29 21:54 - 2013-12-29 21:54 - 00026804 _____ C:\Users\Sessel\Downloads\bootstrap-modal-master.zip
2013-12-29 20:14 - 2013-12-29 20:14 - 02058668 _____ C:\Users\Sessel\Downloads\sarp.zip
2013-12-29 12:46 - 2013-12-29 12:45 - 02396786 _____ C:\Users\Sessel\Downloads\Miami-Island.rar
2013-12-29 12:46 - 2013-12-29 12:45 - 00730343 _____ C:\Users\Sessel\Downloads\samp--2-.sql
2013-12-29 12:43 - 2013-12-26 16:25 - 00000000 ____D C:\Users\Sessel\Desktop\neue scheisse
2013-12-28 21:38 - 2013-12-28 21:38 - 00150129 _____ C:\Users\Sessel\Downloads\SuperMario.rar
2013-12-28 18:36 - 2013-02-09 20:58 - 00007622 _____ C:\Users\Sessel\AppData\Local\Resmon.ResmonCfg
2013-12-28 18:24 - 2013-12-28 18:24 - 01158652 _____ C:\Users\Sessel\Downloads\Portscanner-u-de.zip
2013-12-28 16:08 - 2013-12-28 16:08 - 00001962 _____ C:\Users\Sessel\Downloads\queryLoader.zip
2013-12-28 15:30 - 2013-12-28 15:30 - 00000222 _____ C:\Users\Sessel\Desktop\Hitman Absolution.url
2013-12-27 21:36 - 2013-12-27 21:36 - 00383336 _____ (Bkav Corporation) C:\Users\Sessel\Downloads\BkavFE.exe
2013-12-27 15:44 - 2013-12-27 14:16 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-12-27 15:44 - 2013-10-28 16:24 - 00000919 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.txt
2013-12-27 15:44 - 2013-10-28 16:24 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\NCH Software
2013-12-27 15:44 - 2013-10-28 16:24 - 00000000 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2013-12-27 14:50 - 2013-12-27 14:50 - 00001452 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-27 14:50 - 2013-12-27 14:50 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-27 14:50 - 2013-12-27 14:13 - 00001255 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-12-27 14:50 - 2013-09-06 14:54 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\DVDVideoSoft
2013-12-27 14:29 - 2013-05-11 21:17 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-12-27 14:21 - 2013-10-28 16:24 - 00001181 _____ C:\Users\Sessel\AppData\Roaming\trace_FilterInstaller.1.txt
2013-12-27 14:16 - 2013-12-27 14:16 - 00000000 ____D C:\Users\Sessel\AppData\Local\DVDVideoSoft_Ltd
2013-12-27 14:16 - 2013-05-11 21:17 - 00000000 ____D C:\ProgramData\NCH Software
2013-12-27 14:01 - 2013-12-27 14:01 - 00000000 ____D C:\Users\Sessel\Documents\StreamTransport
2013-12-27 13:57 - 2013-12-27 13:57 - 00004536 _____ C:\Users\Sessel\AppData\Roaming\CamStudio.cfg
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamShapes.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000408 _____ C:\Users\Sessel\AppData\Roaming\CamLayout.ini
2013-12-27 13:57 - 2013-12-27 13:57 - 00000076 _____ C:\Users\Sessel\AppData\Roaming\Camdata.ini
2013-12-27 13:44 - 2013-12-27 13:44 - 00000096 _____ C:\Users\Sessel\AppData\Roaming\version2.xml
2013-12-26 21:02 - 2013-12-26 20:44 - 00000304 _____ C:\Users\Sessel\AppData\Roaming\FileShred.log
2013-12-26 16:12 - 2013-12-26 16:12 - 00678998 _____ C:\Users\Sessel\Desktop\bundle.zip
2013-12-26 16:09 - 2013-12-26 16:09 - 00268931 _____ C:\Users\Sessel\Downloads\jquery-slideshow.zip
2013-12-26 16:08 - 2013-12-26 16:08 - 00091395 _____ C:\Users\Sessel\Downloads\jquery.facedetection-master.zip
2013-12-26 13:52 - 2013-12-26 13:52 - 00062168 _____ C:\Users\Sessel\Desktop\1314.zip
2013-12-25 23:50 - 2013-12-25 23:49 - 02971252 _____ C:\Users\Sessel\Downloads\LsR.txt
2013-12-25 23:49 - 2013-12-25 23:49 - 02612753 _____ C:\Users\Sessel\Downloads\RGR.txt
2013-12-25 23:25 - 2013-03-24 11:40 - 00001132 _____ C:\Users\Sessel\SciTE.session
2013-12-25 19:59 - 2013-08-07 16:31 - 00000000 ____D C:\Users\Sessel\Desktop\CLT
2013-12-25 19:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system
2013-12-25 17:10 - 2013-12-22 22:33 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner (2)
2013-12-24 23:34 - 2013-12-24 22:33 - 00000000 ____D C:\Users\Sessel\AppData\Local\VMware
2013-12-24 22:34 - 2013-12-24 22:34 - 00000000 ____D C:\Users\Sessel\Documents\Virtual Machines
2013-12-24 22:30 - 2013-12-24 22:30 - 00161594 _____ C:\Users\Sessel\Downloads\autoit_key-stealer.txt
2013-12-24 14:23 - 2013-01-23 21:33 - 01875504 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-24 13:54 - 2013-06-25 20:10 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-12-24 13:54 - 2013-06-25 20:10 - 00000000 ____D C:\ProgramData\Skype
2013-12-24 13:52 - 2013-12-24 13:52 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-23 15:29 - 2013-05-25 11:23 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-23 13:48 - 2013-09-01 14:16 - 00000000 ____D C:\Users\Sessel\Desktop\keylogger
2013-12-22 19:42 - 2013-12-22 19:42 - 00000000 ____D C:\ProgramData\baidu
2013-12-22 14:17 - 2013-12-22 14:17 - 01617205 _____ C:\Users\Sessel\Downloads\ScrEnc.zip
2013-12-21 20:42 - 2013-12-21 20:42 - 00055445 _____ C:\Windows\SysWOW64\CCCInstall_201312212042092904.log
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\ProgramData\ATI
2013-12-21 20:42 - 2013-12-21 20:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-12-21 20:42 - 2012-10-31 19:44 - 00000000 ____D C:\ProgramData\AMD
2013-12-21 20:41 - 2012-10-16 11:13 - 00000000 ____D C:\Program Files\ATI Technologies
2013-12-21 20:40 - 2013-12-21 20:40 - 00000000 ____D C:\Program Files\AMD
2013-12-21 19:53 - 2013-12-21 19:52 - 00791552 _____ (AMD) C:\Users\Sessel\Downloads\amddriverdownloader.exe
2013-12-21 16:28 - 2013-12-21 16:28 - 00000000 _____ C:\Users\Sessel\Desktop\Neues Textdokument (2).txt
2013-12-20 21:59 - 2013-07-08 12:28 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-12-20 21:44 - 2013-12-20 21:44 - 00000000 ____D C:\Users\Sessel\.nbi
2013-12-19 19:26 - 2013-12-19 17:22 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\Unity
2013-12-19 19:21 - 2013-12-19 19:21 - 00000000 ____D C:\Users\Sessel\AppData\Roaming\stetic
2013-12-19 19:20 - 2013-12-19 17:18 - 00000000 ____D C:\ProgramData\Unity
2013-12-19 16:56 - 2013-12-19 16:56 - 00000000 ____D C:\Users\Public\Documents\Unity Projects
2013-12-18 22:19 - 2013-12-18 16:08 - 00156044 _____ C:\Windows\system32\Drivers\fvstore.dat
2013-12-18 17:06 - 2013-12-18 16:50 - 100600973 _____ (The Code::Blocks Team) C:\Users\Sessel\Downloads\codeblocks-12.11mingw-setup.exe
2013-12-18 16:09 - 2013-12-18 16:09 - 00000000 ____D C:\VTRoot
2013-12-18 15:47 - 2013-12-17 15:16 - 00000000 ____D C:\Users\Sessel\Desktop\Neuer Ordner
2013-12-17 10:59 - 2013-12-22 19:42 - 00052032 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-12-17 10:59 - 2013-12-22 19:42 - 00034624 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-12-16 19:49 - 2013-12-16 19:49 - 00004607 _____ C:\Users\Sessel\Desktop\vlc-record-2013-12-06-20h29m09s-#MUSIK.HOUSE (FUNKY) - WWW.RAUTEMUSIK.FM - 24H MIXED HOUSE DANCE ELECTRO FUNK MINIMAL AND MORE!-#Musik.House - Track Update on www.RauteMusik.FM_house.mp3 - Verknüpfung.lnk
2013-12-16 15:31 - 2013-12-03 14:52 - 00000000 ____D C:\Users\Public\Documents\Reallusion
2013-12-15 21:19 - 2013-06-22 21:16 - 00000000 ____D C:\Users\Sessel\Desktop\streamwriter  & Leader
2013-12-15 20:58 - 2013-07-17 11:38 - 00000000 ____D C:\Windows\system32\MRT
2013-12-15 20:56 - 2012-10-16 15:06 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 15:23 - 2013-12-15 15:23 - 00004614 _____ C:\Users\Sessel\Desktop\vlc-record-2013-11-26-16h38m51s-#MUSIK.CLUB - WWW.RAUTEMUSIK.FM - 24H MIXED HANDS UP TRANCE DANCE TECHNO HARDSTYLE HOUSE AND MORE!-#Musik.Club - Track Update on www.RauteMusik.FM_club.mp3 - Verknüpfung.lnk

Files to move or delete:
====================
C:\Users\Sessel\AppData\Roaming\CamLayout.ini
C:\Users\Sessel\AppData\Roaming\CamShapes.ini
C:\ProgramData\FileSplitUpLoad.dll
C:\ProgramData\hash.dat


Some content of TEMP:
====================
C:\Users\Sessel\AppData\Local\Temp\SRLDetectionLibrary3117359577871647605.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe
[2013-05-29 14:33] - [2012-10-18 19:02] - 0027136 ____A (Microsoft Corporation) DFDE777FAF31DC25E3624E8071073146

C:\Windows\SysWOW64\svchost.exe
[2013-05-29 14:33] - [2012-10-18 18:40] - 0021504 ____A (Microsoft Corporation) FFB38D8AFD6F4FCA1D46D64F1EDE0B9F

C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2013-05-29 14:33] - [2012-10-18 21:33] - 0512000 ____A (Microsoft Corporation) F3EF088F45BE326B4EDAC8C1C5A35105

C:\Windows\System32\Drivers\volsnap.sys
[2013-05-29 14:33] - [2012-10-18 23:00] - 0296808 ____A (Microsoft Corporation) DF83AA1C4278E2C0E36C0479C1555A9C



LastRegBack: 2014-01-09 17:45

==================== End Of Log ============================

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-01-2014 02
Ran by Sessel at 2014-01-14 13:31:09
Running from C:\Users\Sessel\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}

==================== Installed Programs ======================

Ace of Spades (x32 Version:  - Jagex Limited)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Alan Wake (x32 Version:  - Remedy Entertainment)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AntiLogger Free version 1.7.2.322 (x32 Version: 1.7.2.322 - Zemana Ltd.)
Application Profiles (x32 Version: 2.0.4719.35969 - Advanced Micro Devices, Inc.)
Assassin’s Creed® III (x32 Version:  - Ubisoft Montreal)
ATI AVIVO64 Codecs (Version: 10.12.0.00113 - ATI Technologies Inc.) Hidden
Audiosurf (x32 Version:  - Dylan Fitterer)
BioShock (x32 Version:  - 2K Boston)
BioShock 2 (x32 Version: 1.0.0005.131 - Take-Two Interactive Software) Hidden
Borderlands 2 (x32 Version:  - Gearbox Software)
Burnout Paradise: The Ultimate Box (x32 Version:  - Criterion Games)
Call of Duty: Black Ops II - Multiplayer (x32 Version:  - )
Call of Duty: Black Ops II (x32 Version:  - Treyarch)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.)
Construct 2 r152 (Version: 1.0.152.0 - Scirra)
Counter-Strike: Global Offensive (x32 Version:  - Valve)
Creative Systeminformationen (x32 Version: 1.10 - Creative Technology Limited)
Crysis® 2 (x32 Version: 1.9.0.0 - Electronic Arts)
Cube World version 0.0.1 (x32 Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Sims™ 3 (x32 Version: 1.63.5 - Electronic Arts)
Die Sims™ 3 Late Night (x32 Version: 6.5.1 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38 - Electronic Arts)
Dishonored (x32 Version: 1.0 - Bethesda Softworks)
Don't Starve (x32 Version:  - Klei Entertainment)
E.Y.E: Divine Cybermancy (x32 Version:  - Streum On Studio)
Emsisoft Anti-Malware (x32 Version: 8.1 - Emsisoft GmbH)
Eusing Free Registry Cleaner (x32 Version:  - Eusing Software)
Fable III (x32 Version:  - Lionhead Studios)
Far Cry 3 (x32 Version: 1.05 - Ubisoft)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free YouTube Download version 3.2.19.1219 (x32 Version: 3.2.19.1219 - DVDVideoSoft Ltd.)
Grand Theft Auto IV (x32 Version:  - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (x32 Version: 1.00.00001 - Rockstar Games)
Hama Wireless LAN Adapter (x32 Version: 1.00.0159 - Hama GmbH & Co KG)
Hitman: Absolution (x32 Version:  - IO Interactive)
Hitman: Sniper Challenge (x32 Version:  - IO Interactive)
IObit Uninstaller (x32 Version: 3.0.4.922 - IObit)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky Security Scan (x32 Version: 12.0.1.340 - Kaspersky Lab) Hidden
Left 4 Dead 2 (x32 Version:  - Valve)
Max Payne 3 (x32 Version:  - Rockstar Studios)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (x32 Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.1.99.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MTA:SA v1.3.4 (x32 Version: v1.3.4 - Multi Theft Auto)
Notepad++ (x32 Version: 6.5.2 - Notepad++ Team)
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation)
Origin (x32 Version: 9.0.13.2142 - Electronic Arts, Inc.)
PAYDAY 2 (x32 Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (x32 Version:  - OVERKILL Software)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.17.304.2010 - Realtek)
Rockstar Games Social Club (x32 Version: 1.1.0.6 - Rockstar Games)
Saints Row IV (x32 Version:  - Deep Silver Volition)
Scribblenauts Unlimited (x32 Version:  - 5th Cell Media)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sniper Elite: Zombie Army (x32 Version:  - Rebellion)
Sound Blaster Tactic(3D) (x32 Version: 1.0 - Creative Technology Limited)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Starbound (x32 Version:  - )
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (x32 Version: 6.0.8.0 - Husdawg, LLC)
TeamSpeak 3 Client (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
Tom Clancy's Splinter Cell: Conviction (x32 Version:  - Ubisoft Montreal)
Torchlight II (x32 Version:  - Runic Games)
Unlocker 1.9.1-x64 (Version: 1.9.1 - Cedrick Collomb)
Uplay (x32 Version: 2.0 - Ubisoft)
VLC media player 2.0.8 (Version: 2.0.8 - VideoLAN)
VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN)
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinPcap 4.1.3 (x32 Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.00 (64-bit) (Version: 5.00.0 - win.rar GmbH)
XCOM: Enemy Unknown (x32 Version:  - Firaxis Games)

==================== Restore Points  =========================

04-01-2014 17:40:07 Removed LogMeIn Hamachi
04-01-2014 21:21:29 Installed WiFi USB adapter N600
07-01-2014 15:51:19 Removed WiFi USB adapter N600
07-01-2014 15:52:34 Installiert Hama Wireless LAN Adapter
07-01-2014 16:05:34 Installed WiFi USB adapter N600
07-01-2014 16:39:28 Removed WiFi USB adapter N600
08-01-2014 11:16:46 Installiert Hama Wireless LAN Adapter
08-01-2014 17:05:10 Gerätetreiber-Paketinstallation: COMODO Netzwerkdienst
09-01-2014 15:42:39 Removed COMODO Firewall
09-01-2014 15:45:38 Microsoft Visual Basic PowerPacks 10.0 wird entfernt
11-01-2014 13:27:26 DirectX wurde installiert

==================== Hosts content: ==========================

2009-07-14 03:34 - 2013-12-14 18:43 - 00000820 ____A C:\Windows\system32\Drivers\etc\hosts
	127.0.0.1       localhost
	::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {B7ACB9BD-6CE4-42B8-9FB7-39BAC80FDBE3} - System32\Tasks\FRAPS => D:\Fraps\fraps.exe
Task: {E796F3D8-75FA-488D-BE07-0A1DD315DE14} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-13] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-01-08 12:17 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\EnumDevLib.dll
2014-01-10 13:53 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00113664 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 02342912 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00246784 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00047616 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00050688 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00079360 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 02029568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00100352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00258560 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00076288 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00061440 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00465920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00719872 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00114688 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00136704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01449472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00300032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01283584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00056320 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00192512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00091136 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00069120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00077824 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 11747840 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00048128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00094720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00045568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00043520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00911360 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00118272 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00141312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01170944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdirac_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00638976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00042496 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libau_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00117248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_http_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00350720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00144896 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01723904 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00044032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00044032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00049152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00043008 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00066048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00057856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00042496 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00049664 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00047104 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00085504 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00292864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01297920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00359424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00209408 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00049152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2013-12-09 01:19 - 2013-12-09 01:19 - 01384960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00034816 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00130560 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00183808 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00073728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 01518592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00040960 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00035328 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00037376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2013-12-09 01:18 - 2013-12-09 01:18 - 00046080 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:C31F31E6
AlternateDataStreams: C:\Users\Sessel\Anwendungsdaten:NT
AlternateDataStreams: C:\Users\Sessel\Downloads\TeamViewer_Setup_de.exe:BDU
AlternateDataStreams: C:\Users\Sessel\AppData\Roaming:NT

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/14/2014 01:15:36 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"1".
Die abhängige Assemblierung "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/13/2014 03:11:09 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"1".
Die abhängige Assemblierung "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/12/2014 08:39:44 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc000041d
Fehleroffset: 0x0000000004b90fd8
ID des fehlerhaften Prozesses: 0xa00
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (01/12/2014 08:39:34 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000004b90fd8
ID des fehlerhaften Prozesses: 0xa00
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (01/12/2014 05:13:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: gta_sa.exe, Version: 0.0.0.0, Zeitstempel: 0x437101ca
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x526d6270
ID des fehlerhaften Prozesses: 0xd20
Startzeit der fehlerhaften Anwendung: 0xgta_sa.exe0
Pfad der fehlerhaften Anwendung: gta_sa.exe1
Pfad des fehlerhaften Moduls: gta_sa.exe2
Berichtskennung: gta_sa.exe3

Error: (01/12/2014 01:43:02 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"1".
Die abhängige Assemblierung "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/11/2014 01:54:07 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: A2CONTMENU64.DLL, Version: 8.0.0.1, Zeitstempel: 0x51de8ef2
Ausnahmecode: 0xc000041d
Fehleroffset: 0x0000000000015026
ID des fehlerhaften Prozesses: 0xa80
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (01/11/2014 01:54:02 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: A2CONTMENU64.DLL, Version: 8.0.0.1, Zeitstempel: 0x51de8ef2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000015026
ID des fehlerhaften Prozesses: 0xa80
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (01/11/2014 00:34:50 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"1".
Die abhängige Assemblierung "Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/10/2014 05:40:34 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (01/14/2014 01:15:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "楗敳䈠潯⁴獁楳瑳湡t&" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (01/14/2014 01:15:36 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SQL Server (SQLEXPRESS)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%14001

Error: (01/13/2014 03:11:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "楗敳䈠潯⁴獁楳瑳湡t&" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (01/13/2014 03:11:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SQL Server (SQLEXPRESS)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%14001

Error: (01/12/2014 02:59:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/12/2014 02:59:32 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (01/12/2014 02:55:38 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/12/2014 02:55:38 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (01/12/2014 01:43:03 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "楗敳䈠潯⁴獁楳瑳湡t&" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (01/12/2014 01:43:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "SQL Server (SQLEXPRESS)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%14001


Microsoft Office Sessions:
=========================
Error: (01/14/2014 01:15:36 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

Error: (01/13/2014 03:11:09 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

Error: (01/12/2014 08:39:44 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4unknown0.0.0.000000000c000041d0000000004b90fd8a0001cf0fafb59e3a6eC:\Windows\Explorer.EXEunknown491cb416-7bc1-11e3-85f4-4487fcc541a4

Error: (01/12/2014 08:39:34 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4unknown0.0.0.000000000c00000050000000004b90fd8a0001cf0fafb59e3a6eC:\Windows\Explorer.EXEunknown42dbf705-7bc1-11e3-85f4-4487fcc541a4

Error: (01/12/2014 05:13:04 PM) (Source: Application Error)(User: )
Description: gta_sa.exe0.0.0.0437101caunknown0.0.0.000000000c0000005526d6270d2001cf0fb0ae987b28C:\Program Files (x86)\Rockstar Games\Grand Theft Auto San Andreas\gta_sa.exeunknown69f07fb8-7ba4-11e3-85f4-4487fcc541a4

Error: (01/12/2014 01:43:02 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

Error: (01/11/2014 01:54:07 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4A2CONTMENU64.DLL8.0.0.151de8ef2c000041d0000000000015026a8001cf0ec12bd37ea4C:\Windows\Explorer.EXEC:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL74b4dc07-7abf-11e3-a7b7-4487fcc541a4

Error: (01/11/2014 01:54:02 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4A2CONTMENU64.DLL8.0.0.151de8ef2c00000050000000000015026a8001cf0ec12bd37ea4C:\Windows\Explorer.EXEC:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL717e360b-7abf-11e3-a7b7-4487fcc541a4

Error: (01/11/2014 00:34:50 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.ATL,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.1833"C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe

Error: (01/10/2014 05:40:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Sessel\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\6OPCV73G\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
  Date: 2014-01-09 22:06:46.972
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-09 22:06:46.847
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-05 20:21:05.970
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-04 22:59:38.464
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-04 15:12:56.220
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-01-03 18:27:51.451
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-06 21:30:07.681
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-26 15:44:53.894
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-26 15:09:56.875
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-25 22:08:34.173
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\hmpalert.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 35%
Total physical RAM: 6135.11 MB
Available physical RAM: 3967.02 MB
Total Pagefile: 12268.41 MB
Available Pagefile: 9602.4 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:454.95 GB) (Free:244.55 GB) NTFS
Drive d: (DATA) (Fixed) (Total:455.46 GB) (Free:225.46 GB) NTFS
Drive e: (00053131) (CDROM) (Total:0.15 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 54214E02)
Partition 1: (Not Active) - (Size=21 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=455 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=455 GB) - (Type=07 NTFS)

==================== End Of Log ============================

PC wird immer langsamer + Viren

Plagegeister aller Art und deren Bekämpfung: PC wird immer langsamer + Viren