| |
| |||||||
Log-Analyse und Auswertung: Snap.do lässt sich nicht aus Systemsteuerung entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
05.02.2014, 21:44
| #1 |
| |  Snap.do lässt sich nicht aus Systemsteuerung entfernen Hallo und Guten Abend, ich habe mir irgendwie vor ca. 1 Woche Snap.do mit runtergeladen und über adw-cleaner entfernt und malwarbytes drüber laufen lassen. Leider ist aber nicht das entsprechende Ergebnis dabei herausgekommen. Snap.do wird mir in den Programmen immern och angezeigt und adw zeigt mir auf Chrome folgendes: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\preferences ich bekomms auch nicht gelöscht, keine Chance! Mittlerweile habe ich mich hier ein wenig durchgelesen, habe frst, jrt, spybot und eset laufen lassen... logs liegen auf meinem Desktop, zumindest von frst, jrt, adw und malwarbytes... Hat jemand eine Idee wie ich weiter vorgehen kann, damit ich dieses lästige Zeug endlich losbekomme? Chrome habe ich mittlerweile deinstalliert. Zuvor hatte ich dort auch sämtliche Einstellungen zurückgesetzt. Über Hilfe würde ich mich wirklich freuen! Grüsse Alex hier schon mal die logs:AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 05/02/2014 um 21:13:51
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : Alex - ALEX-IHRER
# Gestartet von : C:\Users\Alex\Downloads\adwcleaner-3.018.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16384
-\\ Google Chrome v
[ Datei : C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [5076 octets] - [05/01/2014 00:07:12]
AdwCleaner[R10].txt - [1954 octets] - [05/02/2014 18:14:43]
AdwCleaner[R11].txt - [2024 octets] - [05/02/2014 18:47:03]
AdwCleaner[R12].txt - [2146 octets] - [05/02/2014 20:57:52]
AdwCleaner[R13].txt - [865 octets] - [05/02/2014 21:13:51]
AdwCleaner[R1].txt - [4358 octets] - [29/01/2014 18:37:44]
AdwCleaner[R2].txt - [1017 octets] - [29/01/2014 19:18:47]
AdwCleaner[R3].txt - [1134 octets] - [29/01/2014 20:38:42]
AdwCleaner[R4].txt - [1254 octets] - [01/02/2014 12:34:34]
AdwCleaner[R5].txt - [1374 octets] - [01/02/2014 13:03:15]
AdwCleaner[R6].txt - [1494 octets] - [03/02/2014 21:04:33]
AdwCleaner[R7].txt - [1602 octets] - [03/02/2014 22:18:06]
AdwCleaner[R8].txt - [1722 octets] - [03/02/2014 22:23:40]
AdwCleaner[R9].txt - [1782 octets] - [04/02/2014 17:22:55]
AdwCleaner[S0].txt - [3970 octets] - [05/01/2014 00:08:51]
AdwCleaner[S10].txt - [2087 octets] - [05/02/2014 20:19:30]
AdwCleaner[S1].txt - [4137 octets] - [29/01/2014 18:44:31]
AdwCleaner[S2].txt - [1078 octets] - [29/01/2014 19:20:02]
AdwCleaner[S3].txt - [1196 octets] - [29/01/2014 20:39:49]
AdwCleaner[S4].txt - [1316 octets] - [01/02/2014 12:36:27]
AdwCleaner[S5].txt - [1436 octets] - [01/02/2014 13:04:21]
AdwCleaner[S6].txt - [1556 octets] - [03/02/2014 21:11:00]
AdwCleaner[S7].txt - [1663 octets] - [03/02/2014 22:20:22]
AdwCleaner[S8].txt - [1843 octets] - [04/02/2014 17:23:53]
AdwCleaner[S9].txt - [2017 octets] - [05/02/2014 18:15:38]
########## EOF - C:\AdwCleaner\AdwCleaner[R13].txt - [2126 octets] ##########
und frst: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014
Ran by Alex (administrator) on ALEX-IHRER on 05-02-2014 20:51:11
Running from C:\Users\Alex\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(TODO: <Company name>) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-09-06] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-09-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-04] (AVAST Software)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))
HKU\S-1-5-21-1107225930-2018077829-3078525047-1001\...\Run: [Spotify Web Helper] - C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-11-06] (Spotify Ltd)
==================== Internet (Whitelisted) ====================
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM - {E1FE7AD9-9D71-4CD0-99E2-308521747745} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ACJB
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {E1FE7AD9-9D71-4CD0-99E2-308521747745} URL =
BHO: Plus-HD-5.5 - {11111111-1111-1111-1111-110411901160} - C:\Program Files (x86)\Plus-HD-5.5\Plus-HD-5.5-bho64.dll No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: af0.Adblock.BHO - {90EFF544-3981-4d46-85C9-C0361D0931D6} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: No Name - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - No File
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-03]
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-03]
CHR Extension: (Google-Suche) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-03]
CHR Extension: (Google Wallet) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-03]
CHR Extension: (Google Mail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-04]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-04] (AVAST Software)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2797312 2013-12-06] (Acer Incorporated)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-09-06] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457768 2013-08-02] (Acer Incorporate)
S3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [448040 2013-08-02] (Acer Incorporate)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S2 70e6ca8c; "C:\Windows\system32\rundll32.exe" "c:\progra~2\optimi~1\OptProCrashSvc.dll",ServiceMain
S2 McAPExe; "C:\Program Files\McAfee\MSC\McAPExe.exe" [X]
S3 McAWFwk; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [X]
S4 McOobeSv2; "C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2014-01-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-04] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-23] (Advanced Micro Devices)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197264 2012-05-28] (McAfee, Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [377040 2013-07-09] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [95984 2013-07-09] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-05 20:51 - 2014-02-05 20:51 - 00000000 ____D () C:\Users\Alex\Downloads\FRST-OlderVersion
2014-02-05 20:41 - 2014-02-05 20:41 - 00001010 _____ () C:\Users\Alex\Desktop\JRT.txt
2014-02-05 20:31 - 2014-02-04 08:38 - 01037530 _____ (Thisisu) C:\Users\Alex\Desktop\JRT_NEW.exe
2014-02-05 20:23 - 2014-02-05 20:33 - 00004063 _____ () C:\Windows\WindowsUpdate.log
2014-02-05 20:20 - 2014-02-05 20:20 - 00335992 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\af0.net
2014-02-04 18:09 - 2014-02-04 18:09 - 02378752 _____ () C:\Users\Alex\Downloads\Adblock_Installer.msi
2014-02-04 16:24 - 2014-02-04 16:24 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-03 21:58 - 2014-02-03 21:58 - 00000000 ____D () C:\Users\Alex\AppData\Local\Deployment
2014-02-03 21:58 - 2014-02-03 21:58 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apps\2.0
2014-02-01 13:33 - 2014-02-01 13:33 - 00032796 _____ () C:\Users\Alex\Desktop\21c71ea9b985a944752a1afdb64f1d09.jpeg
2014-01-29 22:12 - 2014-01-29 22:12 - 01937466 _____ () C:\Users\Alex\Downloads\WGR614v9-V1.1.2.4.chk
2014-01-29 22:04 - 2014-01-29 22:04 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de-ckc (1).exe
2014-01-29 21:31 - 2014-01-29 21:41 - 780346318 _____ () C:\Users\Alex\Downloads\ubuntu-13.10-desktop-amd64.iso.crdownload
2014-01-29 21:22 - 2014-01-29 21:23 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de-ckc.exe
2014-01-29 20:30 - 2014-01-29 20:31 - 00019156 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-01-29 20:29 - 2014-02-05 20:51 - 02082304 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2014-01-29 20:29 - 2014-02-05 20:51 - 00012561 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-01-29 20:29 - 2014-02-05 20:51 - 00000000 ____D () C:\FRST
2014-01-29 20:17 - 2014-01-29 20:17 - 00000000 ____D () C:\Windows\ERUNT
2014-01-29 20:16 - 2014-01-29 20:16 - 01037068 _____ (Thisisu) C:\Users\Alex\Downloads\JRT.exe
2014-01-29 20:03 - 2014-01-29 20:03 - 00139264 _____ () C:\Users\Alex\Downloads\SystemLook.exe
2014-01-29 18:57 - 2014-01-29 18:57 - 00001399 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-29 18:57 - 2014-01-29 18:57 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-01-29 18:57 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-01-29 18:56 - 2014-02-03 22:44 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-29 18:56 - 2014-01-29 18:59 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-29 18:55 - 2014-01-29 18:55 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.2.25.exe
2014-01-29 18:32 - 2014-01-29 18:32 - 01166132 _____ () C:\Users\Alex\Downloads\adwcleaner-3.018.exe
2014-01-29 17:42 - 2014-01-29 18:48 - 00000000 ____D () C:\Program Files (x86)\LiveSupport
2014-01-18 12:33 - 2014-01-18 12:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-01-18 11:20 - 2014-01-18 11:20 - 00821760 _____ (Browser Opt-out) C:\Users\Alex\Downloads\uninstall (1).exe
2014-01-18 11:19 - 2014-01-18 11:19 - 00821760 _____ (Browser Opt-out) C:\Users\Alex\Downloads\uninstall.exe
2014-01-16 20:31 - 2014-02-03 21:19 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-01-16 19:49 - 2014-01-16 19:49 - 00001969 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-01-16 19:49 - 2014-01-16 19:49 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Canneverbe Limited
2014-01-16 19:49 - 2014-01-16 19:49 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-01-16 19:48 - 2014-01-16 19:49 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-01-16 19:45 - 2014-01-16 19:45 - 04986624 _____ (Canneverbe Limited ) C:\Users\Alex\Downloads\cdbxp_setup_4.5.2.4478_minimal.exe
2014-01-15 19:13 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-01-15 19:13 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2014-01-15 19:13 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\WSCollect.exe
2014-01-15 19:13 - 2013-11-27 11:34 - 00138240 _____ () C:\Windows\system32\OEMLicense.dll
2014-01-15 19:13 - 2013-11-27 10:54 - 00103936 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2014-01-15 19:13 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 19:13 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2014-01-15 19:13 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 19:13 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2014-01-15 19:13 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-01-15 19:13 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-01-11 09:47 - 2014-01-30 21:47 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-11 09:47 - 2014-01-30 21:47 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-10 23:56 - 2014-01-11 09:53 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-01-10 17:26 - 2014-02-02 13:07 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\XBMC
2014-01-10 17:25 - 2014-01-10 17:25 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-01-10 17:24 - 2014-01-10 17:25 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-01-10 17:23 - 2014-01-10 17:23 - 59604731 _____ () C:\Users\Alex\Downloads\xbmc-12.3.exe
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\ATI
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\Users\Alex\AppData\Local\ATI
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\ProgramData\ATI
2014-01-09 19:13 - 2014-01-09 19:13 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\TeamViewer
2014-01-09 19:12 - 2014-01-09 19:12 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de.exe
2014-01-09 18:59 - 2014-01-18 18:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-09 18:59 - 2014-01-18 18:09 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-07 23:10 - 2014-02-04 22:15 - 00340480 ___SH () C:\Users\Alex\Desktop\Thumbs.db
2014-01-06 19:31 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-06 19:31 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-06 19:31 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-01-06 19:31 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-01-06 19:31 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-01-06 19:31 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2014-01-06 19:31 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2014-01-06 19:31 - 2013-10-11 14:24 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-01-06 19:31 - 2013-10-11 14:03 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-01-06 17:52 - 2013-10-22 08:55 - 02328872 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-01-06 17:52 - 2013-10-22 07:03 - 02065448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-01-06 17:52 - 2013-10-22 02:53 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2014-01-06 17:52 - 2013-10-08 11:13 - 02551640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-06 17:52 - 2013-10-07 03:13 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-01-06 17:52 - 2013-10-05 08:39 - 06639616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-01-06 17:52 - 2013-10-04 09:10 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2014-01-06 17:52 - 2013-09-17 10:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2014-01-06 17:52 - 2013-09-17 07:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2014-01-06 17:51 - 2013-10-23 12:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2014-01-06 17:51 - 2013-10-23 12:21 - 00155480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-06 17:51 - 2013-10-23 12:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll
2014-01-06 17:51 - 2013-10-22 09:18 - 01287064 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-01-06 17:51 - 2013-10-22 06:15 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-01-06 17:51 - 2013-10-22 05:04 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2014-01-06 17:51 - 2013-10-22 05:02 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-01-06 17:51 - 2013-10-22 04:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2014-01-06 17:51 - 2013-10-22 04:44 - 00761856 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2014-01-06 17:51 - 2013-10-22 03:38 - 01362944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-01-06 17:51 - 2013-10-22 03:22 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-01-06 17:51 - 2013-10-22 03:13 - 01704448 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-01-06 17:51 - 2013-10-22 03:07 - 02617344 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-06 17:51 - 2013-10-22 02:47 - 02295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-06 17:51 - 2013-10-19 09:51 - 00481392 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2014-01-06 17:51 - 2013-10-19 08:12 - 00380656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2014-01-06 17:51 - 2013-10-19 05:48 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-01-06 17:51 - 2013-10-19 05:03 - 00531968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2014-01-06 17:51 - 2013-10-19 04:26 - 01231360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2014-01-06 17:51 - 2013-10-19 04:14 - 00888832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2014-01-06 17:51 - 2013-10-17 16:42 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2014-01-06 17:51 - 2013-10-17 16:42 - 01373872 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-01-06 17:51 - 2013-10-17 15:04 - 01204968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2014-01-06 17:51 - 2013-10-16 10:34 - 00518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2014-01-06 17:51 - 2013-10-16 10:33 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2014-01-06 17:51 - 2013-10-13 04:06 - 00258904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2014-01-06 17:51 - 2013-10-13 03:43 - 00708616 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2014-01-06 17:51 - 2013-10-10 17:44 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll
2014-01-06 17:51 - 2013-10-10 17:26 - 00317616 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-01-06 17:51 - 2013-10-10 17:26 - 00104320 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2014-01-06 17:51 - 2013-10-10 15:53 - 00235960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-01-06 17:51 - 2013-10-10 15:53 - 00088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2014-01-06 17:51 - 2013-10-10 12:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-01-06 17:51 - 2013-10-09 06:40 - 00385528 _____ () C:\Windows\system32\ApnDatabase.xml
2014-01-06 17:51 - 2013-10-08 11:28 - 00523096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-01-06 17:51 - 2013-10-08 07:46 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-01-06 17:51 - 2013-10-08 06:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2014-01-06 17:51 - 2013-10-08 06:50 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-01-06 17:51 - 2013-10-08 06:48 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-01-06 17:51 - 2013-10-08 06:15 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-01-06 17:51 - 2013-10-08 06:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2014-01-06 17:51 - 2013-10-08 05:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-01-06 17:51 - 2013-10-08 05:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2014-01-06 17:51 - 2013-10-07 08:21 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-01-06 17:51 - 2013-10-05 16:25 - 00057176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2014-01-06 17:51 - 2013-10-05 15:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-01-06 17:51 - 2013-10-05 13:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-01-06 17:51 - 2013-10-05 12:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-01-06 17:51 - 2013-10-05 12:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-01-06 17:51 - 2013-10-05 12:00 - 01200640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-01-06 17:51 - 2013-10-05 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-01-06 17:51 - 2013-10-05 10:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-01-06 17:51 - 2013-10-05 10:07 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-01-06 17:51 - 2013-10-05 09:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-01-06 17:51 - 2013-10-05 09:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2014-01-06 17:51 - 2013-10-05 09:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-01-06 17:51 - 2013-10-05 09:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2014-01-06 17:51 - 2013-10-05 09:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2014-01-06 17:51 - 2013-10-05 09:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll
2014-01-06 17:51 - 2013-10-05 08:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2014-01-06 17:51 - 2013-10-05 08:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-01-06 17:51 - 2013-10-05 08:32 - 05769728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-01-06 17:51 - 2013-09-19 06:04 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2014-01-06 17:51 - 2013-09-17 10:06 - 00465960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-01-06 17:51 - 2013-09-17 07:31 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-01-06 17:51 - 2013-09-17 05:37 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll
2014-01-06 17:51 - 2013-09-14 15:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-01-06 17:51 - 2013-09-14 15:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2014-01-06 17:51 - 2013-09-14 13:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2014-01-06 17:51 - 2013-09-14 13:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2014-01-06 17:51 - 2013-09-14 11:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2014-01-06 17:51 - 2013-09-14 10:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2014-01-06 17:51 - 2013-09-13 09:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-01-06 17:51 - 2013-09-13 08:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe
2014-01-06 17:51 - 2013-09-12 09:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-01-06 17:51 - 2013-09-12 09:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-01-06 17:51 - 2013-09-12 09:08 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2014-01-06 17:51 - 2013-09-12 09:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2014-01-06 17:51 - 2013-09-12 08:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-01-06 17:51 - 2013-09-12 08:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2014-01-06 17:51 - 2013-09-12 08:37 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll
2014-01-06 17:51 - 2013-09-12 08:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2014-01-06 17:51 - 2013-09-12 08:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-01-06 17:51 - 2013-09-12 08:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2014-01-06 17:51 - 2013-09-10 06:26 - 04599808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-01-06 17:51 - 2013-09-10 05:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll
2014-01-06 17:51 - 2013-09-10 05:34 - 03934208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-01-06 17:49 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2014-01-06 17:49 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-01-06 17:49 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-01-06 17:49 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2014-01-06 17:49 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2014-01-06 17:49 - 2013-11-05 21:21 - 21196664 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-01-06 17:49 - 2013-11-05 19:51 - 18642504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-01-06 17:49 - 2013-11-05 17:20 - 13925888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-01-06 17:49 - 2013-11-05 17:11 - 18577408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-01-06 17:49 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2014-01-06 17:49 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2014-01-06 17:49 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-06 17:49 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-01-06 17:49 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-01-06 17:49 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2014-01-06 17:49 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-01-06 17:49 - 2013-10-10 12:53 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-01-06 17:49 - 2013-10-10 12:26 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-01-06 17:49 - 2013-10-10 12:21 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-01-06 17:49 - 2013-10-10 12:05 - 01019392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-01-06 17:49 - 2013-10-10 11:34 - 01085952 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2014-01-06 17:49 - 2013-10-10 11:27 - 00869888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2014-01-06 17:49 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-01-06 17:49 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-01-06 17:49 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-01-06 17:49 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-01-06 17:48 - 2013-11-11 03:48 - 00039768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2014-01-06 17:48 - 2013-11-09 12:55 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2014-01-06 17:48 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2014-01-06 17:48 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2014-01-06 17:48 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2014-01-06 17:48 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2014-01-06 17:48 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll
2014-01-06 17:48 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2014-01-06 17:48 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2014-01-06 17:48 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2014-01-06 17:48 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2014-01-06 17:48 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-01-06 17:48 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2014-01-06 17:48 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2014-01-06 17:48 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-01-06 17:48 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2014-01-06 17:48 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2014-01-06 17:48 - 2013-10-31 01:58 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2014-01-06 17:48 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-01-06 17:48 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-01-06 17:48 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-01-06 17:48 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-01-06 17:48 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys
2014-01-06 17:48 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2014-01-06 17:48 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2014-01-06 17:48 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-01-06 17:48 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2014-01-06 17:47 - 2013-09-26 07:51 - 00669184 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-01-06 17:47 - 2013-09-26 07:34 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\MrmIndexer.dll
2014-01-06 17:47 - 2013-09-26 07:34 - 00515072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmIndexer.dll
2014-01-06 17:46 - 2013-09-25 11:25 - 00783504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2014-01-06 17:46 - 2013-09-24 06:05 - 01245696 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-01-06 17:46 - 2013-09-21 12:18 - 01109936 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-01-06 17:46 - 2013-09-21 11:53 - 02131120 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2014-01-06 17:46 - 2013-09-21 11:53 - 01928656 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2014-01-06 17:46 - 2013-09-21 10:12 - 01370800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2014-01-06 17:46 - 2013-09-21 10:09 - 02142424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2014-01-06 17:46 - 2013-09-21 10:09 - 00796928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2014-01-06 17:46 - 2013-09-21 07:33 - 11366912 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2014-01-06 17:46 - 2013-09-21 06:56 - 08712704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2014-01-06 17:46 - 2013-09-21 06:34 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2014-01-06 17:46 - 2013-09-21 06:10 - 12028416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2014-01-06 17:46 - 2013-09-21 05:49 - 04975104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2014-01-06 17:46 - 2013-09-21 05:48 - 07544320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2014-01-06 17:46 - 2013-09-21 05:45 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-01-06 17:46 - 2013-09-21 05:44 - 01662464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2014-01-06 17:45 - 2013-09-26 10:20 - 00556032 _____ (Microsoft Corporation) C:\Windows\system32\recimg.exe
2014-01-06 17:45 - 2013-09-26 08:32 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2014-01-06 17:45 - 2013-09-26 08:14 - 00528896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2014-01-06 17:45 - 2013-09-25 09:58 - 00648648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2014-01-06 17:45 - 2013-09-25 08:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2014-01-06 17:45 - 2013-09-25 06:40 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\windows.immersiveshell.serviceprovider.dll
2014-01-06 17:45 - 2013-09-24 06:54 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2014-01-06 17:45 - 2013-09-24 06:10 - 01741824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2014-01-06 17:45 - 2013-09-24 04:56 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2014-01-06 17:45 - 2013-09-21 13:10 - 00579416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-01-06 17:45 - 2013-09-21 13:10 - 00236376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-01-06 17:45 - 2013-09-21 13:10 - 00151384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-01-06 17:45 - 2013-09-21 12:50 - 00528048 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-01-06 17:45 - 2013-09-21 12:48 - 00534048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-01-06 17:45 - 2013-09-21 12:48 - 00123480 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-01-06 17:45 - 2013-09-21 12:04 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-01-06 17:45 - 2013-09-21 11:56 - 01119576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-01-06 17:45 - 2013-09-21 11:56 - 00101208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-01-06 17:45 - 2013-09-21 11:53 - 01534504 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-01-06 17:45 - 2013-09-21 11:53 - 00996320 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2014-01-06 17:45 - 2013-09-21 11:53 - 00934856 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2014-01-06 17:45 - 2013-09-21 11:53 - 00366688 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2014-01-06 17:45 - 2013-09-21 11:53 - 00233912 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-01-06 17:45 - 2013-09-21 11:51 - 01720552 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-01-06 17:45 - 2013-09-21 11:45 - 00171968 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-01-06 17:45 - 2013-09-21 10:23 - 00427096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-01-06 17:45 - 2013-09-21 10:23 - 00098104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2014-01-06 17:45 - 2013-09-21 10:12 - 01092896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2014-01-06 17:45 - 2013-09-21 10:09 - 01472048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-01-06 17:45 - 2013-09-21 10:09 - 00312936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2014-01-06 17:45 - 2013-09-21 08:58 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-01-06 17:45 - 2013-09-21 08:57 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-01-06 17:45 - 2013-09-21 08:56 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-01-06 17:45 - 2013-09-21 08:55 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2014-01-06 17:45 - 2013-09-21 08:50 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-01-06 17:45 - 2013-09-21 08:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\BulkOperationHost.exe
2014-01-06 17:45 - 2013-09-21 08:05 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-01-06 17:45 - 2013-09-21 07:55 - 00168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-01-06 17:45 - 2013-09-21 07:27 - 00911872 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-01-06 17:45 - 2013-09-21 07:06 - 01415168 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-01-06 17:45 - 2013-09-21 07:00 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2014-01-06 17:45 - 2013-09-21 06:59 - 00940544 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-01-06 17:45 - 2013-09-21 06:57 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\livessp.dll
2014-01-06 17:45 - 2013-09-21 06:50 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2014-01-06 17:45 - 2013-09-21 06:43 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-01-06 17:45 - 2013-09-21 06:38 - 00365568 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-01-06 17:45 - 2013-09-21 06:36 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2014-01-06 17:45 - 2013-09-21 06:31 - 00756224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-01-06 17:45 - 2013-09-21 06:26 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-01-06 17:45 - 2013-09-21 06:20 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-01-06 17:45 - 2013-09-21 06:16 - 01503232 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-01-06 17:45 - 2013-09-21 06:09 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2014-01-06 17:45 - 2013-09-21 06:08 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-01-06 17:45 - 2013-09-21 06:05 - 08875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2014-01-06 17:45 - 2013-09-21 06:02 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2014-01-06 17:45 - 2013-09-21 05:58 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-01-06 17:45 - 2013-09-21 05:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2014-01-06 17:45 - 2013-09-21 05:42 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2014-01-06 17:45 - 2013-09-21 05:39 - 01455616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2014-01-06 17:45 - 2013-09-21 05:38 - 01057792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll
2014-01-06 17:45 - 2013-09-21 05:37 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2014-01-06 17:45 - 2013-09-21 05:36 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-01-06 17:45 - 2013-09-19 08:19 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersRes.dll
2014-01-06 17:45 - 2013-09-19 07:39 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-01-06 17:45 - 2013-09-19 07:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2014-01-06 17:45 - 2013-09-19 07:23 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WorkFoldersRes.dll
2014-01-06 17:45 - 2013-09-19 07:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-01-06 17:45 - 2013-09-19 06:47 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.dll
2014-01-06 17:45 - 2013-09-19 06:29 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2014-01-06 17:45 - 2013-09-19 06:08 - 01150976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2014-01-06 17:45 - 2013-09-19 06:01 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2014-01-06 17:45 - 2013-09-19 05:37 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2014-01-06 17:45 - 2013-09-19 05:32 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2014-01-06 17:45 - 2013-09-19 05:27 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2014-01-06 17:45 - 2013-09-19 05:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2014-01-06 17:45 - 2013-09-19 05:25 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-01-06 17:45 - 2013-09-19 05:11 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2014-01-06 17:45 - 2013-09-19 05:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-01-06 17:45 - 2013-09-19 04:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2014-01-06 17:45 - 2013-09-19 04:55 - 00552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2014-01-06 17:45 - 2013-09-19 04:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2014-01-06 17:45 - 2013-09-19 04:32 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2014-01-06 17:45 - 2013-09-17 10:18 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-01-06 17:45 - 2013-09-17 07:58 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-01-06 17:45 - 2013-09-17 06:15 - 01225728 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-01-06 17:45 - 2013-09-17 06:00 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2014-01-06 17:45 - 2013-09-17 05:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-01-06 17:45 - 2013-09-17 05:08 - 00738304 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2014-01-06 17:45 - 2013-09-17 04:28 - 00695808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2014-01-06 17:45 - 2013-09-14 15:06 - 00175960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VerifierExt.sys
2014-01-06 17:45 - 2013-09-14 15:06 - 00066904 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-01-06 17:45 - 2013-09-14 12:39 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-01-06 17:45 - 2013-09-14 12:38 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys
2014-01-06 17:45 - 2013-09-13 10:52 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\SensorsClassExtension.dll
2014-01-06 17:45 - 2013-09-13 09:54 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2014-01-06 17:45 - 2013-09-13 09:10 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2014-01-06 17:45 - 2013-09-13 08:55 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-01-06 17:45 - 2013-09-13 08:30 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-01-06 17:45 - 2013-09-12 13:33 - 06353952 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2014-01-06 17:45 - 2013-09-12 08:37 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-01-06 17:45 - 2013-09-11 10:32 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-01-06 17:45 - 2013-09-11 10:31 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-01-06 17:45 - 2013-09-11 10:31 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-01-06 17:45 - 2013-09-11 08:41 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2014-01-06 17:45 - 2013-09-11 08:09 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2014-01-06 17:45 - 2013-09-07 17:12 - 00458616 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-01-06 17:45 - 2013-09-07 17:12 - 00407016 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-01-06 17:45 - 2013-09-07 15:45 - 00408480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2014-01-06 17:45 - 2013-09-07 15:45 - 00368736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2014-01-06 17:45 - 2013-09-07 13:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\fdprint.dll
2014-01-06 17:45 - 2013-09-07 13:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll
2014-01-06 17:45 - 2013-09-07 13:00 - 00256000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdprint.dll
2014-01-06 17:45 - 2013-09-07 12:50 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll
2014-01-06 17:45 - 2013-09-07 12:45 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2014-01-06 17:45 - 2013-09-07 12:30 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2014-01-06 17:45 - 2013-09-07 12:22 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2014-01-06 17:45 - 2013-09-07 12:13 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2014-01-06 17:45 - 2013-09-07 12:07 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2014-01-06 17:45 - 2013-09-07 11:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveShell.dll
2014-01-06 17:45 - 2013-09-07 11:51 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SkyDriveShell.dll
2014-01-06 17:45 - 2013-09-05 08:39 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-01-06 17:45 - 2013-09-05 07:42 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-01-06 17:45 - 2013-09-04 08:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2014-01-06 17:45 - 2013-09-04 07:16 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2014-01-06 17:45 - 2013-09-04 06:47 - 00492032 _____ (Microsoft Corporation) C:\Windows\system32\tpmvsc.dll
2014-01-06 17:45 - 2013-09-04 06:12 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\DscCoreConfProv.dll
2014-01-06 17:45 - 2013-09-04 05:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2014-01-06 17:45 - 2013-09-04 05:48 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-01-06 17:45 - 2013-09-04 05:35 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2014-01-06 17:45 - 2013-08-31 15:18 - 00205024 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2014-01-06 17:45 - 2013-08-31 13:15 - 00180232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2014-01-06 17:45 - 2013-08-30 08:31 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2014-01-06 17:45 - 2013-08-28 08:55 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2014-01-06 17:45 - 2013-08-28 08:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2014-01-06 17:45 - 2013-08-28 08:09 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2014-01-06 17:45 - 2013-08-27 08:44 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2014-01-06 17:45 - 2013-08-27 07:09 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2014-01-06 17:45 - 2013-08-27 06:24 - 00813568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2014-01-06 17:44 - 2013-09-26 09:24 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-06 17:44 - 2013-09-24 07:55 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2014-01-06 17:44 - 2013-09-24 06:59 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2014-01-06 17:44 - 2013-09-21 07:01 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\ReInfo.dll
2014-01-06 17:44 - 2013-09-21 06:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-01-06 17:44 - 2013-09-21 05:38 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2014-01-06 17:44 - 2013-09-17 06:26 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-01-06 17:44 - 2013-09-05 06:40 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Utilman.exe
2014-01-06 17:44 - 2013-08-31 11:00 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2014-01-06 17:44 - 2013-08-31 10:25 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2014-01-06 17:44 - 2013-08-28 09:03 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-01-06 17:44 - 2013-08-28 08:04 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2014-01-06 17:40 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-06 17:40 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-06 17:40 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-06 17:40 - 2013-10-23 12:01 - 00872840 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-01-06 17:40 - 2013-10-23 09:59 - 00698232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-01-06 17:40 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-06 17:40 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-06 17:40 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-06 17:40 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-06 17:40 - 2013-10-13 03:48 - 00136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-01-06 17:40 - 2013-10-12 22:48 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-01-06 17:40 - 2013-10-12 22:34 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-06 17:40 - 2013-10-05 15:21 - 01341288 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-06 17:40 - 2013-10-05 09:39 - 01067008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-01-06 17:40 - 2013-10-03 10:16 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2014-01-06 17:40 - 2013-10-03 10:02 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2014-01-06 17:40 - 2013-10-02 12:00 - 01286552 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-01-06 17:40 - 2013-10-02 10:47 - 01018960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-01-06 17:40 - 2013-10-01 04:42 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2014-01-06 17:40 - 2013-10-01 04:36 - 00977408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2014-01-06 17:39 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-06 17:39 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-06 17:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-06 17:39 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-06 17:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-06 17:39 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-06 17:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-06 17:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-06 17:39 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-06 17:39 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-06 17:39 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-06 17:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-06 17:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-06 17:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-06 17:39 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-06 17:39 - 2013-10-19 06:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-06 17:39 - 2013-10-16 16:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-06 17:39 - 2013-10-16 14:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
==================== One Month Modified Files and Folders =======
2014-02-05 20:51 - 2014-02-05 20:51 - 00000000 ____D () C:\Users\Alex\Downloads\FRST-OlderVersion
2014-02-05 20:51 - 2014-01-29 20:29 - 02082304 _____ (Farbar) C:\Users\Alex\Downloads\FRST64.exe
2014-02-05 20:51 - 2014-01-29 20:29 - 00012561 _____ () C:\Users\Alex\Downloads\FRST.txt
2014-02-05 20:51 - 2014-01-29 20:29 - 00000000 ____D () C:\FRST
2014-02-05 20:41 - 2014-02-05 20:41 - 00001010 _____ () C:\Users\Alex\Desktop\JRT.txt
2014-02-05 20:41 - 2014-01-04 00:36 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1107225930-2018077829-3078525047-1001
2014-02-05 20:33 - 2014-02-05 20:23 - 00004063 _____ () C:\Windows\WindowsUpdate.log
2014-02-05 20:21 - 2014-01-04 00:52 - 00000000 __RDO () C:\Users\Alex\SkyDrive
2014-02-05 20:20 - 2014-02-05 20:20 - 00335992 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-05 20:20 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-05 20:19 - 2014-01-05 00:07 - 00000000 ____D () C:\AdwCleaner
2014-02-05 20:19 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-02-05 20:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2014-02-05 18:16 - 2013-11-06 21:49 - 00000000 ____D () C:\ProgramData\Norton
2014-02-05 17:36 - 2014-01-04 18:18 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{BEC37DC8-1A2F-4380-AA0F-AF1AA18A4779}
2014-02-04 22:15 - 2014-01-07 23:10 - 00340480 ___SH () C:\Users\Alex\Desktop\Thumbs.db
2014-02-04 18:10 - 2014-02-04 18:10 - 00000000 ____D () C:\Program Files (x86)\af0.net
2014-02-04 18:09 - 2014-02-04 18:09 - 02378752 _____ () C:\Users\Alex\Downloads\Adblock_Installer.msi
2014-02-04 17:19 - 2014-01-04 22:20 - 00000000 ____D () C:\Users\Alex\AppData\Local\genienext
2014-02-04 16:29 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-02-04 16:24 - 2014-02-04 16:24 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-04 08:38 - 2014-02-05 20:31 - 01037530 _____ (Thisisu) C:\Users\Alex\Desktop\JRT_NEW.exe
2014-02-03 22:44 - 2014-01-29 18:56 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-03 22:17 - 2014-01-04 18:48 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-03 21:59 - 2014-01-04 18:48 - 00000000 ____D () C:\Users\Alex\AppData\Local\Google
2014-02-03 21:58 - 2014-02-03 21:58 - 00000000 ____D () C:\Users\Alex\AppData\Local\Deployment
2014-02-03 21:58 - 2014-02-03 21:58 - 00000000 ____D () C:\Users\Alex\AppData\Local\Apps\2.0
2014-02-03 21:19 - 2014-01-16 20:31 - 00000000 ____D () C:\Users\Alex\AppData\Local\CrashDumps
2014-02-03 21:19 - 2013-09-06 08:57 - 00000000 ____D () C:\Windows\Panther
2014-02-02 13:07 - 2014-01-10 17:26 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\XBMC
2014-02-01 22:12 - 2014-01-04 19:02 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\vlc
2014-02-01 13:33 - 2014-02-01 13:33 - 00032796 _____ () C:\Users\Alex\Desktop\21c71ea9b985a944752a1afdb64f1d09.jpeg
2014-02-01 12:21 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\WinStore
2014-01-30 21:47 - 2014-01-11 09:47 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-30 21:47 - 2014-01-11 09:47 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-30 01:57 - 2013-11-06 21:22 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-01-29 22:57 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF
2014-01-29 22:12 - 2014-01-29 22:12 - 01937466 _____ () C:\Users\Alex\Downloads\WGR614v9-V1.1.2.4.chk
2014-01-29 22:04 - 2014-01-29 22:04 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de-ckc (1).exe
2014-01-29 21:41 - 2014-01-29 21:31 - 780346318 _____ () C:\Users\Alex\Downloads\ubuntu-13.10-desktop-amd64.iso.crdownload
2014-01-29 21:23 - 2014-01-29 21:22 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de-ckc.exe
2014-01-29 20:31 - 2014-01-29 20:30 - 00019156 _____ () C:\Users\Alex\Downloads\Addition.txt
2014-01-29 20:17 - 2014-01-29 20:17 - 00000000 ____D () C:\Windows\ERUNT
2014-01-29 20:16 - 2014-01-29 20:16 - 01037068 _____ (Thisisu) C:\Users\Alex\Downloads\JRT.exe
2014-01-29 20:03 - 2014-01-29 20:03 - 00139264 _____ () C:\Users\Alex\Downloads\SystemLook.exe
2014-01-29 18:59 - 2014-01-29 18:56 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-29 18:57 - 2014-01-29 18:57 - 00001399 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-29 18:57 - 2014-01-29 18:57 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-01-29 18:55 - 2014-01-29 18:55 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Alex\Downloads\spybot-2.2.25.exe
2014-01-29 18:48 - 2014-01-29 17:42 - 00000000 ____D () C:\Program Files (x86)\LiveSupport
2014-01-29 18:33 - 2013-11-07 05:52 - 00765582 _____ () C:\Windows\system32\perfh007.dat
2014-01-29 18:33 - 2013-11-07 05:52 - 00159366 _____ () C:\Windows\system32\perfc007.dat
2014-01-29 18:33 - 2013-09-06 08:08 - 01776918 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-01-29 18:32 - 2014-01-29 18:32 - 01166132 _____ () C:\Users\Alex\Downloads\adwcleaner-3.018.exe
2014-01-18 18:10 - 2014-01-09 18:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-18 18:09 - 2014-01-09 18:59 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-18 12:33 - 2014-01-18 12:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-01-18 11:20 - 2014-01-18 11:20 - 00821760 _____ (Browser Opt-out) C:\Users\Alex\Downloads\uninstall (1).exe
2014-01-18 11:20 - 2014-01-04 21:57 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-01-18 11:20 - 2013-11-06 21:55 - 00003338 _____ () C:\Windows\System32\Tasks\AcerCloud
2014-01-18 11:20 - 2013-11-06 21:47 - 00002898 _____ () C:\Windows\System32\Tasks\Quick Access
2014-01-18 11:20 - 2013-11-06 21:46 - 00002916 _____ () C:\Windows\System32\Tasks\Power Management
2014-01-18 11:20 - 2013-11-06 20:59 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1107225930-2018077829-3078525047-500
2014-01-18 11:20 - 2013-09-06 08:16 - 00004404 _____ () C:\Windows\System32\Tasks\ALUAgent
2014-01-18 11:20 - 2013-09-06 08:16 - 00003630 _____ () C:\Windows\System32\Tasks\ALU
2014-01-18 11:20 - 2013-09-06 08:15 - 00002906 _____ () C:\Windows\System32\Tasks\Launch Manager
2014-01-18 11:19 - 2014-01-18 11:19 - 00821760 _____ (Browser Opt-out) C:\Users\Alex\Downloads\uninstall.exe
2014-01-16 19:49 - 2014-01-16 19:49 - 00001969 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-01-16 19:49 - 2014-01-16 19:49 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Canneverbe Limited
2014-01-16 19:49 - 2014-01-16 19:49 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-01-16 19:49 - 2014-01-16 19:48 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-01-16 19:45 - 2014-01-16 19:45 - 04986624 _____ (Canneverbe Limited ) C:\Users\Alex\Downloads\cdbxp_setup_4.5.2.4478_minimal.exe
2014-01-16 19:13 - 2014-01-04 19:02 - 00000000 ____D () C:\Users\Alex\Desktop\Musik
2014-01-16 17:35 - 2014-01-05 10:52 - 00000000 ___RD () C:\Users\Alex\Downloads\AFF540DC.Unpacker_v7353qx4kg3sa!App
2014-01-11 13:37 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2014-01-11 09:53 - 2014-01-10 23:56 - 00000000 ___RD () C:\Windows\BrowserChoice
2014-01-11 09:53 - 2014-01-04 00:30 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-11 09:53 - 2014-01-04 00:30 - 00000000 ___RD () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-11 09:53 - 2014-01-04 00:30 - 00000000 ____D () C:\Users\Alex\AppData\Local\Packages
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\migwiz
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\MediaViewer
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\FileManager
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Camera
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-01-10 23:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-01-10 23:56 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-01-10 23:56 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\oobe
2014-01-10 23:56 - 2013-08-22 14:36 - 00000000 ____D () C:\Windows\system32\Dism
2014-01-10 17:25 - 2014-01-10 17:25 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
2014-01-10 17:25 - 2014-01-10 17:24 - 00000000 ____D () C:\Program Files (x86)\XBMC
2014-01-10 17:23 - 2014-01-10 17:23 - 59604731 _____ () C:\Users\Alex\Downloads\xbmc-12.3.exe
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\ATI
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\Users\Alex\AppData\Local\ATI
2014-01-10 16:53 - 2014-01-10 16:53 - 00000000 ____D () C:\ProgramData\ATI
2014-01-09 19:13 - 2014-01-09 19:13 - 00000000 ____D () C:\Users\Alex\AppData\Roaming\TeamViewer
2014-01-09 19:12 - 2014-01-09 19:12 - 06072408 _____ (TeamViewer GmbH) C:\Users\Alex\Downloads\TeamViewer_Setup_de.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-30 18:45
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01 Ran by Alex at 2014-01-29 20:30:44 Running from C:\Users\Alex\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== 1-Zip version 1.0 (x32 Version: 1.0 - One Floor App Ltd.) Acer Docs (x32 Version: 1.03.2002 - Acer Incorporated) Acer Docs Office AddIn (x32 Version: 2.04.2001 - Acer) Acer Games (HKCU Version: 1.1.9.43466 - Pokki) Acer Launch Manager (Version: 8.00.8101 - Acer Incorporated) Acer Media (x32 Version: 2.04.2004.0 - Acer Incorporated) Acer Photo (x32 Version: 2.04.2004.1 - Acer Incorporated) Acer Portal (x32 Version: 2.04.2004 - Acer Incorporated) Acer Power Management (Version: 7.00.8100 - Acer Incorporated) Acer Quick Access (Version: 1.00.3000 - Acer Incorporated) Acer Recovery Management (Version: 6.00.8101 - Acer Incorporated) Acer Remote Files (Version: 1.00.3007 - Acer Incorporated) Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden AMD Accelerated Video Transcoding (Version: 13.15.100.30925 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2013.0925.645.10236 - Ihr Firmenname) Hidden AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) AMD Quick Stream (Version: 3.4.4.2 - AppEx Networks) avast! Free Antivirus (x32 Version: 9.0.2011 - Avast Software) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2013.0925.0644.10236 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2013.0925.645.10236 - Advanced Micro Devices, Inc.) Hidden CCleaner (Version: 4.09 - Piriform) CDBurnerXP (x32 Version: 4.5.2.4478 - CDBurnerXP) Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden DMUninstaller (x32 Version: - ) eBay Worldwide (x32 Version: 2.4.0105 - OEM) ETDWare PS/2-X64 11.6.27.201_WHQL (Version: 11.6.27.201 - ELAN Microelectronic Corp.) Google Chrome (x32 Version: 32.0.1700.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Identity Card (x32 Version: 2.00.8100 - Acer Incorporated) Live Updater (x32 Version: 2.00.8100 - Acer Incorporated) Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation) Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden Nero BackItUp (x32 Version: 12.5.11000 - Nero AG) Hidden Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.01200 - Nero AG) Nero BackItUp Help (CHM) (x32 Version: 12.0.13000 - Nero AG) Hidden Nero ControlCenter (x32 Version: 11.0.15900 - Nero AG) Hidden Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000 - Nero AG) Hidden Nero Core Components (x32 Version: 11.0.20900 - Nero AG) Hidden Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden Norton Online Backup (x32 Version: 2.8.0.44 - Symantec Corporation) Norton Online Backup (x32 Version: 4.5.0.9 - Symantec Corporation) Hidden OEM Application Profile (x32 Version: 1.00.0000 - Ihr Firmenname) Office Addin (x32 Version: 2.02.2009 - Acer) Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.1.305 - Qualcomm Atheros Communications) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (x32 Version: 12.07 - Qualcomm Atheros) Realtek High Definition Audio Driver (x32 Version: 6.0.1.7027 - Realtek Semiconductor Corp.) Snap.Do (x32 Version: 10.239.1.14117 - ReSoft Ltd.) <==== ATTENTION Spotify (x32 Version: 0.9.1.57.ge7405149 - Spotify AB) Spybot - Search & Destroy (x32 Version: 2.2.25 - Safer-Networking Ltd.) The Chronicles of Emerland Solitaire (x32 Version: 3.0.2.32 - WildTangent) Hidden Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden VideoPlayer v2.0.6 (x32 Version: v2.0.6 - TUGUU SL) Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation) VLC media player 2.1.2 (x32 Version: 2.1.2 - VideoLAN) WildTangent Games (x32 Version: 1.0.4.0 - WildTangent) WildTangent Games App (x32 Version: 4.0.10.20 - WildTangent) Hidden XBMC (HKCU Version: - Team XBMC) ==================== Restore Points ========================= 10-01-2014 14:42:47 DirectX wurde installiert 15-01-2014 17:47:30 Windows Update 22-01-2014 17:57:51 Geplanter Prüfpunkt 28-01-2014 18:05:53 Windows Update 29-01-2014 18:23:34 Windows Modules Installer ==================== Hosts content: ========================== 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {1095BB19-B66B-4A98-AC65-DD141E2572C2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {3EB84784-2609-4A18-B652-5592CCBB20F8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {546301A8-A38F-4790-8FE8-42EC180792ED} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] () Task: {566B7660-B965-40DE-AEE5-4E3D72938FA1} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-03] (Acer Incorporate) Task: {5F846995-83DC-41BD-964E-5212158849BA} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] () Task: {620FE8A6-C68F-48C6-A00E-B1AFFB408B10} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-04] (AVAST Software) Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6DF9CFFB-B465-45EE-AB85-562C3978025E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {8D2B6ACA-1B34-4108-943F-324ED09AB5DC} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2013-08-02] (Acer Incorporate) Task: {9E7956DA-8C3B-4640-8035-603A880C60B8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-01-18] (Microsoft Corporation) Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {AB60E971-63E6-4868-A45F-CEF533FCCF2D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe Task: {B142A6CF-2104-42BA-869A-798F24834026} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe [2013-08-07] (Symantec Corporation) Task: {BE0554EF-2FE5-46F9-BC0A-DCC3EEEFEE2B} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2013-12-06] (Acer Incorporated) Task: {C592DF39-5E0A-490D-A663-2F4DC5C0A7C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-04] (Google Inc.) Task: {C835A2FC-2E93-4359-8A71-3BC5A9A526EA} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-09-12] (Acer Incorporated) Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {E072C12C-5B80-4D89-A53D-D4D3D554796E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-04] (Google Inc.) Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: {F2A3F3F0-8717-4A3E-B4E4-81076C3A1CB5} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-01-05 14:00 - 2014-01-05 14:00 - 00183808 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\ErrorReporting.dll 2013-09-07 01:48 - 2013-09-07 01:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-09-07 01:45 - 2013-09-07 01:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll 2014-01-28 18:47 - 2014-01-28 17:44 - 02166272 _____ () C:\Program Files\AVAST Software\Avast\defs\14012801\algo.dll 2014-01-29 18:56 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2014-01-29 18:56 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2014-01-29 18:56 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2014-01-29 18:56 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2014-01-29 18:56 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2014-01-04 16:11 - 2014-01-04 16:11 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-01-27 20:00 - 2014-01-23 06:56 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libglesv2.dll 2014-01-27 20:00 - 2014-01-23 06:56 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\libegl.dll 2014-01-27 20:00 - 2014-01-23 06:56 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\pdf.dll 2014-01-27 20:00 - 2014-01-23 06:57 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ppGoogleNaClPluginChrome.dll 2014-01-27 20:00 - 2014-01-23 06:55 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\ffmpegsumo.dll 2014-01-27 20:00 - 2014-01-23 06:56 - 13615896 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.102\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\Users\Alex\SkyDrive:ms-properties AlternateDataStreams: C:\ProgramData\Temp:373E1720 ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Could not start eventlog service, could not read events. Der angeforderte Dienst wurde bereits gestartet. Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben. ==================== Memory info =========================== Percentage of memory in use: 21% Total physical RAM: 7621 MB Available physical RAM: 6010.34 MB Total Pagefile: 8837 MB Available Pagefile: 7015.21 MB Total Virtual: 131072 MB Available Virtual: 131071.8 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:914.08 GB) (Free:866.49 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 932 GB) (Disk ID: 7631888A) Partition: GPT Partition Type ==================== End Of Log ============================ --- --- --- und jrt: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.1 (02.04.2014:1) OS: Windows 8.1 x64 Ran by Alex on 05.02.2014 at 20:32:47,69 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services Successfully stopped: [Service] 70e6ca8c Failed to delete: [Service] 70e6ca8c ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\searchURL\\Default Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\searchURL\\Default ~~~ Registry Keys ~~~ Files ~~~ Folders Failed to delete: [Folder] "C:\Program Files (x86)\livesupport" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 05.02.2014 at 20:41:40,82 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ich hoffe, das man damit was anfangen kann und das alles richtig dargestellt ist! Leider bin ich nicht so firm darin... Geändert von alexa123 (05.02.2014 um 22:19 Uhr) |
|
06.02.2014, 07:03
| #2 |
| /// the machine /// TB-Ausbilder    | Snap.do lässt sich nicht aus Systemsteuerung entfernen hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Lade SystemLook von jpshortstuff von einem der folgenden Spiegel herunter und speichere das Tool auf dem Desktop. SystemLook (64 bit)
__________________ |
|
06.02.2014, 17:50
| #3 |
| | Snap.do lässt sich nicht aus Systemsteuerung entfernen hallo schrauber,
__________________vielen Dank für Deine Antwort und Sorry für das fehlendeTalent meinerseits die Logs anständig zu posten! ich gelobe Besserung  Werde jetzt mir jetzt die SystemLook.exe runterladen und mich dann wieder melden... so, hier nun der SystemLook... Code:
ATTFilter SystemLook 30.07.11 by jpshortstuff
Log created at 17:26 on 06/02/2014 by Alex
Administrator - Elevation successful
========== regfind ==========
Searching for "Snap.Do"
[HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\CB600452ED7928C41A1A2AAB2D250038]
"ProductName"="Snap.Do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1107225930-2018077829-3078525047-1001\Products\CB600452ED7928C41A1A2AAB2D250038\InstallProperties]
"HelpLink"="hxxp://snap.do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1107225930-2018077829-3078525047-1001\Products\CB600452ED7928C41A1A2AAB2D250038\InstallProperties]
"URLInfoAbout"="hxxp://snap.do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1107225930-2018077829-3078525047-1001\Products\CB600452ED7928C41A1A2AAB2D250038\InstallProperties]
"DisplayName"="Snap.Do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{254006BC-97DE-4C82-A1A1-A2BAD2520083}]
"HelpLink"="hxxp://snap.do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{254006BC-97DE-4C82-A1A1-A2BAD2520083}]
"URLInfoAbout"="hxxp://snap.do"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{254006BC-97DE-4C82-A1A1-A2BAD2520083}]
"DisplayName"="Snap.Do"
[HKEY_USERS\S-1-5-21-1107225930-2018077829-3078525047-1001\Software\Microsoft\Installer\Products\CB600452ED7928C41A1A2AAB2D250038]
"ProductName"="Snap.Do"
-= EOF =-
|
|
07.02.2014, 16:44
| #4 |
| /// the machine /// TB-Ausbilder | Snap.do lässt sich nicht aus Systemsteuerung entfernen Kopiere den Text in der Codebox in deinen Editor (z.B. Notepad) und speichere es unter dem Namen regfix.reg (bei Dateityp bitte "alle Dateien" wählen) Code:
ATTFilter Windows Registry Editor Version 5.00
[-HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\CB600452ED7928C41A1A2AAB2D250038]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1107225930-2018077829-3078525047-1001\Products\CB600452ED7928C41A1A2AAB2D250038\InstallProperties]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{254006BC-97DE-4C82-A1A1-A2BAD2520083}]
[-HKEY_USERS\S-1-5-21-1107225930-2018077829-3078525047-1001\Software\Microsoft\Installer\Products\CB600452ED7928C41A1A2AAB2D250038]
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.02.2014, 17:24
| #5 |
| | Snap.do lässt sich nicht aus Systemsteuerung entfernen hi, Regfix.reg ist erledigt! :-) Habe nachgesehen und Snap.do scheint raus aus der Systemsteuerung zu sein! War's das schon, oder muss ich noch was machen? Und noch ne Frage... Kann ich mir Chrome, wenn alles erledigt ist, dann bedenkenlos wieder runterladen? Diese Explorer-Schnecke macht mich auf Dauer noch ganz wahnsinnig ;-) Vielen Dank schon mal bis hier her!!! Gruss Alex |
|
08.02.2014, 13:12
| #6 |
| /// the machine /// TB-Ausbilder | Snap.do lässt sich nicht aus Systemsteuerung entfernen Chrome kannste installieren. Fertig  Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ --> Snap.do lässt sich nicht aus Systemsteuerung entfernen |
|
08.02.2014, 13:20
| #7 |
| | Snap.do lässt sich nicht aus Systemsteuerung entfernen hallo schrauber, danke für die Info! Und riesengrosses Dankeschön für die super Anleitungen und Deine Hilfe! :-) Eine letzte Frage habe ich noch. ADW-Cleaner gibt mir immer noch unter dem Reiter Chrome diese Meldung: C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\preferences Ich bin etwas unsicher, wenn ich Chrome jetzt wieder installiere... Habe den PC mit meinem Handy synchronisiert... Da kann dann aber nichts mehr passieren, oder? Nicht das ich mir damit wieder was zurückhole. Gruss Alex |
|
09.02.2014, 08:56
| #8 |
| /// the machine /// TB-Ausbilder | Snap.do lässt sich nicht aus Systemsteuerung entfernen Nein mit dem handy nicht. Der zeigt dir nur an was von Chrome da ist, das heisst nicht das da was an malware ist
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.02.2014, 10:34
| #9 |
| | Snap.do lässt sich nicht aus Systemsteuerung entfernen Alles Klar! :-) Dann bedank ich mich noch mal bei Dir für Deine Hilfe! Hab mir sämtliche von Dir empfohlene Software runtergeladen und hoffe, dass das nicht wieder passiert. Du kannst das Thema dann schliessen... Gruss Alex |
|
10.02.2014, 08:17
| #10 |
| /// the machine /// TB-Ausbilder | Snap.do lässt sich nicht aus Systemsteuerung entfernen Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Snap.do lässt sich nicht aus Systemsteuerung entfernen |
| adw-cleaner, angezeigt, appdata, branding, default, desktop, einstellungen, entfernen, entfernt, ergebnis, eset, folge, folgendes, gelöscht, google, guten, laufen, launch, pokki, programme, programmen, registrierungsdatenbank, safer networking, spotify web helper, spybot, systems, systemsteuerung, sämtliche, vorgehen, wildtangent games, windowsapps, wirklich, woche, würde |
Linear-Darstellung
