| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Fehlermeldung beim Start des LaptopsWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.02.2014, 11:18
| #1 |
 |  Fehlermeldung beim Start des Laptops Hi, erstmal bin neu hier hoffe mal dass ich alles richtig mache. Also ich hab folgendes Problem, wen ich meinen Laptop (Acer Aspire) starte kommt immer eine RunDLL Meldung. Dass steht dann darin: Fehler beim start von Windows. C:\PROGRA~1\COMMON~1\System\SysMenu.dll Das Folgende Modul konnte nicht geladen werden. Ich weiss auch nicht richtig ob das jetzt ein Virus/Trojaner verursacht, oder ob ich mal aus eigener dummheit mal was gelöscht hab. Habe Windows 8.1 hilft ja dem einen oder anderen vielleicht was. Hoffe könnt mir helfen. |
|
16.02.2014, 17:00
| #2 |
| /// the machine /// TB-Ausbilder    | Fehlermeldung beim Start des Laptops hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
16.02.2014, 19:05
| #3 |
| | Fehlermeldung beim Start des LaptopsFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-02-2014 01
Ran by Tom (administrator) on ACER on 16-02-2014 18:56:34
Running from C:\Users\Tom\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Unity Technologies ApS) C:\Program Files (x86)\Unity\Editor\Unity.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\FileManager\PhotosApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Akamai NetSession Interface] - C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://en.eazel.com/?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tom\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-13]
Chrome:
=======
CHR HomePage: hxxp://www.google.ch/
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-14]
CHR Extension: (Google Drive) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-14]
CHR Extension: (YouTube) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-14]
CHR Extension: (Spry this!) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-08]
CHR Extension: (Google-Suche) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-14]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2014-02-13]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-12-14]
CHR Extension: (Video Downloader professional) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-02-13]
CHR Extension: (AdBlock) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-12-14]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-15]
CHR Extension: (Google Wallet) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-14]
CHR Extension: (Google Mail) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-14]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-01-21]
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-11-13] (Kaspersky Lab ZAO)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-07-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-13] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-12-19] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [623712 2013-12-19] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-01-21] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-27] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SaiK1705; C:\Windows\system32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\drivers\SaiU1705.sys [47208 2012-09-20] (Saitek)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-16 18:56 - 2014-02-16 18:57 - 00021513 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-16 18:56 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-16 18:55 - 2014-02-16 18:56 - 02152960 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-16 17:18 - 2014-02-16 17:18 - 00550684 _____ () C:\Users\Tom\Desktop\sleepyhollow-910758.jpeg
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\vtk4xts3ii-courtbuilding
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\b3qq9lti8s-building3
2014-02-16 11:53 - 2014-02-16 11:53 - 08388608 _____ () C:\Users\Tom\Desktop\Sleepy Hollow.raw
2014-02-15 22:33 - 2014-02-15 22:34 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:19 - 2014-02-15 22:20 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 20:06 - 2014-02-15 20:06 - 08993569 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree Docu.ZPR
2014-02-15 20:06 - 2014-02-15 20:06 - 00257853 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree.OBJ
2014-02-15 18:42 - 2014-02-16 17:43 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-15 16:37 - 2014-02-15 16:37 - 00000596 _____ () C:\WINDOWS\PFRO.log
2014-02-13 20:45 - 2014-02-14 00:40 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 19:06 - 2014-02-14 12:52 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-13 16:03 - 2014-02-13 16:03 - 00446160 _____ () C:\Users\Tom\Downloads\assets.exe
2014-02-13 16:02 - 2014-02-13 16:02 - 00446160 _____ () C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack.exe
2014-02-13 16:02 - 2014-02-13 16:02 - 00446160 _____ () C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack (1).exe
2014-02-13 15:59 - 2014-02-13 15:59 - 00152704 _____ () C:\Users\Tom\Downloads\Unitypackage Real Nature Pack 1- Summer v1.3__3038_i355853022_il5534428.exe
2014-02-13 12:59 - 2014-02-14 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-13 12:59 - 2014-02-13 12:59 - 00001090 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:44 - 2014-02-13 13:04 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 12:39 - 2014-02-13 13:02 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:30 - 2014-02-13 12:55 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:39 - 2014-02-12 21:39 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-12 21:37 - 2014-02-12 21:37 - 01166132 _____ () C:\Users\Tom\Downloads\adwcleaner.exe
2014-02-12 20:32 - 2014-02-12 20:35 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 18:19 - 2014-02-12 18:22 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 16:05 - 2014-02-16 10:32 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-12 05:50 - 2014-02-12 13:30 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-11 21:43 - 2014-02-12 17:17 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-11 18:46 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-11 17:21 - 2014-02-15 18:01 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 19:42 - 2014-02-03 03:22 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 18:22 - 2014-02-02 19:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2014-02-01 11:32 - 2014-02-01 11:45 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:32 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys
2014-02-01 11:32 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-25 11:06 - 2014-02-12 21:36 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 17:50 - 2014-01-23 18:55 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-02-12 21:42 - 00000000 ____D () C:\ProgramData\ProductData
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-08 15:54 - 00121856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-01-21 21:04 - 2014-02-04 20:52 - 00165659 _____ () C:\MyXML.xml
2014-01-21 21:04 - 2013-12-24 10:40 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-01-21 21:04 - 2013-11-19 16:52 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2014-01-21 20:51 - 2014-01-21 20:56 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 17:07 - 2014-01-22 10:28 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 12:43 - 2014-01-21 13:04 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-20 18:47 - 2014-01-20 18:59 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 20:06 - 2014-02-04 20:59 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-01-19 19:30 - 2014-01-21 07:15 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:44 - 2014-02-01 11:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-19 15:34 - 2014-02-12 20:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 15:19 - 2014-02-12 21:38 - 00000000 ____D () C:\AdwCleaner
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:22 - 2014-02-11 20:27 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-01-19 14:12 - 2014-02-12 21:16 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Local\playnowradio
2014-01-19 11:04 - 2014-01-19 21:48 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
2014-01-18 10:24 - 2014-01-18 10:24 - 00000197 _____ () C:\WINDOWS\SysWOW64\Config.json
2014-01-17 19:44 - 2014-01-17 19:44 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{AAA03C17-BB8C-4006-93D0-172EDB9A1364}
2014-01-17 17:19 - 2014-01-17 17:19 - 70844416 _____ () C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00819200 _____ () C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00024576 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00024576 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
==================== One Month Modified Files and Folders =======
2014-02-16 18:57 - 2014-02-16 18:56 - 00021513 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-16 18:56 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-16 18:56 - 2014-02-16 18:55 - 02152960 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-16 18:47 - 2013-11-13 15:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-16 18:25 - 2014-01-08 13:08 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-16 18:18 - 2013-12-23 11:18 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-16 18:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-16 17:43 - 2014-02-15 18:42 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-16 17:18 - 2014-02-16 17:18 - 00550684 _____ () C:\Users\Tom\Desktop\sleepyhollow-910758.jpeg
2014-02-16 17:17 - 2013-12-23 22:19 - 01914309 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\vtk4xts3ii-courtbuilding
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\b3qq9lti8s-building3
2014-02-16 12:28 - 2014-01-09 12:38 - 00000410 _____ () C:\WINDOWS\Tasks\Show-Password Update.job
2014-02-16 11:53 - 2014-02-16 11:53 - 08388608 _____ () C:\Users\Tom\Desktop\Sleepy Hollow.raw
2014-02-16 11:09 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-16 11:09 - 2013-11-14 08:11 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-16 11:09 - 2013-11-14 08:11 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-16 10:49 - 2013-11-13 14:01 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714481637-1342907066-1217133146-1001
2014-02-16 10:34 - 2013-11-20 14:15 - 00000000 ____D () C:\ProgramData\Unity
2014-02-16 10:32 - 2014-02-12 16:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-16 10:32 - 2014-01-08 13:08 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-15 22:56 - 2014-01-08 13:07 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F415039C-C647-4210-ADE6-78387975FD52}
2014-02-15 22:34 - 2014-02-15 22:33 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:20 - 2014-02-15 22:19 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 22:20 - 2014-01-08 13:08 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 22:20 - 2014-01-08 13:08 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 21:56 - 2013-12-19 20:27 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Skype
2014-02-15 20:06 - 2014-02-15 20:06 - 08993569 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree Docu.ZPR
2014-02-15 20:06 - 2014-02-15 20:06 - 00257853 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree.OBJ
2014-02-15 18:56 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-15 18:01 - 2014-02-11 17:21 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-15 16:37 - 2014-02-15 16:37 - 00000596 _____ () C:\WINDOWS\PFRO.log
2014-02-14 13:10 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-14 12:52 - 2014-02-13 19:06 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-14 12:01 - 2014-02-13 12:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-14 11:47 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-14 11:46 - 2013-12-17 18:04 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\BitTorrent
2014-02-14 00:40 - 2014-02-13 20:45 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 16:03 - 2014-02-13 16:03 - 00446160 _____ () C:\Users\Tom\Downloads\assets.exe
2014-02-13 16:02 - 2014-02-13 16:02 - 00446160 _____ () C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack.exe
2014-02-13 16:02 - 2014-02-13 16:02 - 00446160 _____ () C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack (1).exe
2014-02-13 15:59 - 2014-02-13 15:59 - 00152704 _____ () C:\Users\Tom\Downloads\Unitypackage Real Nature Pack 1- Summer v1.3__3038_i355853022_il5534428.exe
2014-02-13 13:04 - 2014-02-13 12:44 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 13:02 - 2014-02-13 12:39 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:59 - 2014-02-13 12:59 - 00001090 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:55 - 2014-02-13 12:30 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:46 - 2014-01-12 08:30 - 00000246 _____ () C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job
2014-02-12 21:42 - 2014-01-21 21:34 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-12 21:39 - 2014-02-12 21:39 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-12 21:38 - 2014-01-19 15:19 - 00000000 ____D () C:\AdwCleaner
2014-02-12 21:37 - 2014-02-12 21:37 - 01166132 _____ () C:\Users\Tom\Downloads\adwcleaner.exe
2014-02-12 21:36 - 2014-01-25 11:06 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-02-12 21:18 - 2014-01-11 08:45 - 00000000 ____D () C:\Users\Tom\AppData\Local\backburner
2014-02-12 21:18 - 2014-01-09 19:38 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-12 21:18 - 2014-01-09 16:47 - 00000000 ____D () C:\Spacekace
2014-02-12 21:18 - 2013-07-27 05:24 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-12 21:18 - 2013-07-27 05:07 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-12 21:18 - 2013-07-27 05:05 - 00000000 ____D () C:\Dolby PCEE4
2014-02-12 21:16 - 2014-01-19 14:12 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-02-12 20:35 - 2014-02-12 20:32 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 20:28 - 2014-01-19 15:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-12 18:42 - 2013-12-27 23:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\DAEMON Tools Lite
2014-02-12 18:40 - 2013-12-23 22:05 - 00000000 ____D () C:\Users\Tom
2014-02-12 18:22 - 2014-02-12 18:19 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 17:17 - 2014-02-11 21:43 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-12 17:17 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\Skyrim
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 13:36 - 2013-12-28 03:20 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-02-12 13:30 - 2014-02-12 05:50 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:14 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-11 21:42 - 2013-12-15 09:49 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\.minecraft
2014-02-11 20:27 - 2014-01-19 14:22 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-02-11 18:46 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-09 10:23 - 2013-11-22 14:56 - 00000000 ____D () C:\Program Files (x86)\Pixologic
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 17:25 - 2014-01-03 00:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-04 21:07 - 2013-04-18 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-04 20:59 - 2014-01-19 20:06 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-02-04 20:52 - 2014-01-21 21:04 - 00165659 _____ () C:\MyXML.xml
2014-02-04 20:18 - 2013-12-23 11:18 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-03 03:22 - 2014-02-02 19:42 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 21:39 - 2013-07-27 05:25 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-02 19:00 - 2014-02-01 18:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-02 03:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2014-02-01 11:32 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:44 - 2014-01-19 15:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-29 06:59 - 2013-11-20 17:16 - 00000000 ____D () C:\Users\Tom\Neuer Ordner (2)
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-26 22:34 - 2014-01-05 03:47 - 00000000 ____D () C:\Users\Tom\AppData\Local\Activision
2014-01-25 18:39 - 2013-12-28 03:51 - 00000000 ____D () C:\Games
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 18:55 - 2014-01-23 17:50 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-22 10:28 - 2014-01-21 17:07 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-12 08:29 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\IObit
2014-01-21 21:34 - 2014-01-12 08:23 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-01-21 21:04 - 2014-01-12 08:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-21 20:56 - 2014-01-21 20:51 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 18:39 - 2013-12-30 18:20 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 13:04 - 2014-01-21 12:43 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-21 07:15 - 2014-01-19 19:30 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-21 07:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-01-20 18:59 - 2014-01-20 18:47 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 21:48 - 2014-01-19 11:04 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:56 - 2013-11-20 15:16 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-01-19 14:27 - 2013-11-19 16:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\clear.fi
2014-01-19 14:05 - 2013-11-13 13:52 - 00000000 ____D () C:\Users\Tom\AppData\Local\Packages
2014-01-19 14:01 - 2013-12-23 21:59 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:48 - 2013-11-20 14:16 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Apple Computer
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Local\playnowradio
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
2014-01-18 10:25 - 2013-12-17 18:06 - 00000000 ____D () C:\Program Files (x86)\ShopperPro
2014-01-18 10:24 - 2014-01-18 10:24 - 00000197 _____ () C:\WINDOWS\SysWOW64\Config.json
2014-01-18 10:24 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-01-18 10:24 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
2014-01-17 19:44 - 2014-01-17 19:44 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{AAA03C17-BB8C-4006-93D0-172EDB9A1364}
2014-01-17 17:19 - 2014-01-17 17:19 - 70844416 _____ () C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00819200 _____ () C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00024576 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-01-17 17:19 - 2014-01-17 17:19 - 00024576 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\Unitypackage Real Nature Pack 1- Summer v1.3__3038_i355853022_il5534428.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-16 10:49
==================== End Of Log ============================
FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-02-2014 01
Ran by Tom at 2014-02-16 18:58:02
Running from C:\Users\Tom\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
==================== Installed Programs ======================
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
Acer Device Fast-lane (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (Version: 1.00.3015 - Acer Incorporated)
Acer Power Management (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Docs (x32 Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (x32 Version: 2.02.2021 - Acer Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Advanced SystemCare 7 (x32 Version: 7.1.0 - IObit)
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Aliens vs. Predator (x32 Version: - )
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
BitTorrent (HKCU Version: 7.8.2.30489 - BitTorrent Inc.)
BrowserProtect (x32 Version: - ) <==== ATTENTION
CCleaner (Version: 4.09 - Piriform)
Cinema 4D version R12 (x32 Version: R12 - Salat Production)
clear.fi Media (x32 Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (x32 Version: 2.02.2016 - Acer Incorporated)
Creature Chaos 4.22 (x32 Version: - Creature Chaos Mod Team)
Creature Chaos 4.23 (x32 Version: - )
DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Distributed Computing Experiment (Version: - )
Dolby Home Theater v4 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
ETDWare PS/2-X64 11.6.17.002_WHQL (Version: 11.6.17.002 - ELAN Microelectronic Corp.)
Fallout New Vegas Ultimate Edition (x32 Version: - )
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Identity Card (x32 Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
IObit Uninstaller (x32 Version: 3.0.5.1228 - IObit)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jaws Unleashed version 1.0 (x32 Version: 1.0 - Majesco Entertainment)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Launch Manager (x32 Version: 7.0.10 - Acer Inc.)
Live Updater (x32 Version: 2.00.3010 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Metal Gear Rising Revengance (x32 Version: - Konami)
Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0 - Microsoft Corporation)
Mixamo Fuse version 0.9.3.1 (x32 Version: 0.9.3.1 - Mixamo)
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001 - www.motioninjoy.com)
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nexus Mod Manager (Version: 0.47.3 - Black Tree Gaming)
Norton Online Backup (x32 Version: 2.2.3.51r2 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
Office Addin (x32 Version: 2.02.2008 - Acer)
Office Addin 2003 (x32 Version: 2.02.2008 - Acer)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (x32 Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7111 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.2.8400.28124 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Show-Password (x32 Version: - Show-Password LTD) <==== ATTENTION
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Skyrim NPC Editor (x32 Version: 0.75.1 - foretrenty)
Smart Defrag 3 (x32 Version: 3.0 - IObit)
Smart Technology Programming Software 7.0.27.13 (Version: 7.0.27.13 - Mad Catz)
Steam (x32 Version: - Valve Corporation)
Surfing Protection (x32 Version: 1.0 - IObit)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Tellurian 2.01 (HKCU Version: - )
The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (x32 Version: 1 - )
Unity (x32 Version: - Unity Technologies ApS)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (x32 Version: 2.1.3 - VideoLAN)
WildTangent Games (x32 Version: 1.0.4.0 - WildTangent)
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)
World Machine 2.2 Professional Edition (x32 Version: - )
ZBrush 4 (x32 Version: 4.0 - Pixologic)
ZBrush 4 (x32 Version: 4.0 - Pixologic) Hidden
ZBrush 4R6 (x32 Version: 4R6 - Pixologic)
==================== Restore Points =========================
01-02-2014 16:10:34 Installed Impossible Creatures 1.0.1
02-02-2014 16:54:17 Installed Impossible Creatures 1.0.1
04-02-2014 19:54:04 Removed LogMeIn Hamachi
05-02-2014 21:02:26 Windows Modules Installer
13-02-2014 20:33:04 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {003589F6-38C8-4CCB-B220-296FE7C8A82B} - \iWebar-enabler No Task File
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {166DAEA0-B3A5-4598-9728-4C22480A9AFF} - \iWebar-updater No Task File
Task: {188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} - \iWebar-firefoxinstaller No Task File
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23F1ADC9-0E5C-458D-8C87-CD34BA1C052D} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-01-09] (IObit)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2FC3AF2E-E80C-4A2C-A3C4-24DAB381C82B} - \MySearchDial No Task File
Task: {33BFA2B8-9758-48A9-B088-3E0760E38C57} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2
Task: {34B5F279-7DA5-4330-87BD-89D99E9ECCBA} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-02-08] ()
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3866453C-18F1-44A8-B7D0-97DF63B19F53} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {42794B70-F362-48C7-AA45-8F164C6462AA} - System32\Tasks\ASC7_SkipUac_Tom => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe [2013-12-10] (IObit)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4C2C58FD-27CF-4716-9155-732CAE308F5E} - \iWebar-codedownloader No Task File
Task: {5226A5B0-C414-49C7-93E8-AEEC31B82D17} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe [2013-12-03] (IObit)
Task: {5282C51F-DEA4-4C07-8612-825B685533F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.)
Task: {5AA69056-7EFE-4370-AF6B-FD7C2BCA6B13} - System32\Tasks\Show-Password Update => C:\Program Files (x86)\Show-Password\Show_Password.exe <==== ATTENTION
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73829F72-FE6D-4CB3-ABD0-DFF65B88B905} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {83D3EA2F-52F1-46C0-BA7D-28A805B49940} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8B83415D-78E4-4E87-9D6C-05D9E4301DDA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C8C808B0-F4AF-4F07-BB70-71C0E8E1ED0F} - \iWebar-chromeinstaller No Task File
Task: {CD455373-9569-46E1-ADE8-3B7BF21EFCA6} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D5E06250-3270-4D27-950B-32A884018B46} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.)
Task: {D6228894-0F6A-4739-856C-AD99982116C8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D94CFF4C-A713-4825-9F9E-09DA961ED5B8} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {D9B313DA-8103-4F47-A417-147527C4920C} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-02-08] ()
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DE03735A-F195-456F-89CD-8EC4BE44AF32} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-23] (Adobe Systems Incorporated)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EB59083F-5271-45BA-99B7-A47BB1015FAD} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {F445B4EE-FF5C-412F-B093-3A387E8AF118} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Show-Password Update.job => C:\Program Files (x86)\Show-Password\Show_Password.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-01-28 22:45 - 2013-01-28 22:45 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-28 22:42 - 2013-01-28 22:42 - 00084992 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-28 22:47 - 2013-01-28 22:47 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-02-08 22:24 - 2013-02-08 22:24 - 00025672 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2013-02-08 22:24 - 2013-02-08 22:24 - 00044616 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2014-01-12 08:29 - 2013-10-25 11:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\sqlite3.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
2013-07-27 04:59 - 2012-06-25 03:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-01-12 08:29 - 2013-01-15 17:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madExcept_.bpl
2014-01-12 08:29 - 2013-01-15 17:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madBasic_.bpl
2014-01-12 08:29 - 2013-01-15 17:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madDisAsm_.bpl
2014-01-12 08:29 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\webres.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
2013-12-11 20:57 - 2013-12-11 20:57 - 00359936 _____ () C:\Program Files (x86)\Unity\Editor\libmp3lame.DLL
2013-12-11 21:14 - 2013-12-11 21:14 - 00739328 _____ () C:\Program Files (x86)\Unity\Editor\umbraoptimizer32.dll
2013-12-11 20:57 - 2013-12-11 20:57 - 00167936 _____ () C:\Program Files (x86)\Unity\Editor\LIBPQ.dll
2013-12-11 21:14 - 2013-12-11 21:14 - 15687680 _____ () C:\Program Files (x86)\Unity\Editor\CFLite.dll
2013-12-11 21:14 - 2013-12-11 21:14 - 00942080 _____ () C:\Program Files (x86)\Unity\Editor\cairo.dll
2013-12-11 21:14 - 2013-12-11 21:14 - 00986112 _____ () C:\Program Files (x86)\Unity\Editor\libxml2.dll
2013-12-11 21:14 - 2013-12-11 21:14 - 00100352 _____ () C:\Program Files (x86)\Unity\Editor\zlib1.dll
2013-12-11 22:39 - 2013-12-11 22:39 - 02100224 _____ () C:\Program Files (x86)\Unity\Editor\Data\Mono\EmbedRuntime\mono.dll
2013-07-27 05:25 - 2013-02-21 06:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2013-12-11 22:44 - 2013-12-11 22:44 - 04388864 _____ () C:\Program Files (x86)\Unity\Editor\Data\Tools\ImportFBX.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 13616456 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Tom\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Norton Online Backup => c:\program files (x86)\symantec\norton online backup\nobuclient.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "c:\program files (x86)\common files\java\java update\jusched.exe"
==================== Faulty Device Manager Devices =============
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (02/16/2014 04:18:50 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Unity.exe, Version: 4.3.2.30490, Zeitstempel: 0x52a8de6d
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d45fa
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003ea02
ID des fehlerhaften Prozesses: 0x17c4
Startzeit der fehlerhaften Anwendung: 0xUnity.exe0
Pfad der fehlerhaften Anwendung: Unity.exe1
Pfad des fehlerhaften Moduls: Unity.exe2
Berichtskennung: Unity.exe3
Vollständiger Name des fehlerhaften Pakets: Unity.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Unity.exe5
Error: (02/16/2014 04:18:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Unity.exe, Version: 4.3.2.30490, Zeitstempel: 0x52a8de6d
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d45fa
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003ea02
ID des fehlerhaften Prozesses: 0x1864
Startzeit der fehlerhaften Anwendung: 0xUnity.exe0
Pfad der fehlerhaften Anwendung: Unity.exe1
Pfad des fehlerhaften Moduls: Unity.exe2
Berichtskennung: Unity.exe3
Vollständiger Name des fehlerhaften Pakets: Unity.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Unity.exe5
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/15/2014 09:30:54 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
Error: (02/15/2014 08:12:50 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
System errors:
=============
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:39 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/16/2014 10:32:38 AM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Microsoft Office Sessions:
=========================
Error: (02/16/2014 04:18:50 PM) (Source: Application Error)(User: )
Description: Unity.exe4.3.2.3049052a8de6dntdll.dll6.3.9600.16408523d45fac00000050003ea0217c401cf2b2a638941a5C:\Program Files (x86)\Unity\Editor\Unity.exeC:\WINDOWS\SYSTEM32\ntdll.dlla2b632c5-971d-11e3-beb8-24fd52154251
Error: (02/16/2014 04:18:41 PM) (Source: Application Error)(User: )
Description: Unity.exe4.3.2.3049052a8de6dntdll.dll6.3.9600.16408523d45fac00000050003ea02186401cf2b2a5c296847C:\Program Files (x86)\Unity\Editor\Unity.exeC:\WINDOWS\SYSTEM32\ntdll.dll9d8ddd8d-971d-11e3-beb8-24fd52154251
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4
Error: (02/16/2014 10:58:44 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4
Error: (02/16/2014 10:51:59 AM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4
Error: (02/15/2014 09:30:54 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
Error: (02/15/2014 08:12:50 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 8010.27 MB
Available physical RAM: 4949.31 MB
Total Pagefile: 16202.27 MB
Available Pagefile: 11978.6 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:674.48 GB) (Free:426.09 GB) NTFS
Drive g: () (Fixed) (Total:465.76 GB) (Free:278.04 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 699 GB) (Disk ID: A57EFACF)
Partition: GPT Partition Type
==================== End Of Log ============================
|
|
17.02.2014, 14:17
| #4 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des Laptops Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.02.2014, 17:40
| #5 |
| | Fehlermeldung beim Start des Laptops Malwarebytes Anti-Malware (Test) 1.75.0.1300 Malwarebytes : Free Anti-Malware Datenbank Version: v2014.02.17.05 Windows 8 x64 NTFS Internet Explorer 11.0.9600.16476 Tom :: ACER [Administrator] Schutz: Aktiviert 17.02.2014 16:59:43 mbam-log-2014-02-17 (16-59-43).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 227553 Laufzeit: 3 Minute(n), 39 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 29 HKCR\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialHlpr.1 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialHlpr (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{3004627E-F8E9-4E8B-909D-316753CBA923} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialdskBnd.1 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialdskBnd (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\esrv.mysearchdialESrvc.1 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\esrv.mysearchdialESrvc (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Typelib\{FBC322D5-407E-4854-8C0B-555B951FD8E3} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\Interface\{0400EBCA-042C-4000-AA89-9713FBEDB671} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} (PUP.Optional.OptimzerPro.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} (PUP.Optional.ShopperPro.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\mysearchdial (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\InstallCore\1I1T1Q1S (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\InstallCore\mysearchdial (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Google\Chrome\Extensions\logekkkdbdidmmcgkonmmonclldogceg (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\InstallCore\mysearchdial (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialappCore.1 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\mysearchdial.mysearchdialappCore (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3} (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCR\m (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 3 HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{3004627E-F8E9-4E8B-909D-316753CBA923} (PUP.Optional.MySearchDial.A) -> Daten: mysearchdial Toolbar -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{3004627E-F8E9-4E8B-909D-316753CBA923} (PUP.Optional.MySearchDial.A) -> Daten: -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: zr2X2X1G1S1F2V1S2Q0V -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 2 HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.EazelBar.A) -> Bösartig: (Eazel search) Gut: (Google) -> Erfolgreich ersetzt und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.MySearchDial.A) -> Bösartig: (Mysearchdial Search) Gut: (Google) -> Erfolgreich ersetzt und in Quarantäne gestellt. Infizierte Verzeichnisse: 7 C:\Users\Tom\AppData\Roaming\dclogs (Stolen.Data) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\icons_2.2.15.1631 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\UpdateProc (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0 (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\bh (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 25 C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\bh\MYSEARCHDIAL.DLL (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\MYSEARCHDIALTLBR.DLL (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\MYSEARCHDIALSRV.EXE (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Local\Temp\Unitypackage Real Nature Pack 1- Summer v1.3__3038_i355853022_il5534428.exe (PUP.Optional.Amonetize) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Local\Temp\is1070216317\150216893_stp\Mysearchdial.exe (PUP.Optional.MySpeedDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\Downloads\assets.exe (PUP.Optional.OneClickDownloader.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\Downloads\Unitypackage Real Nature Pack 1- Summer v1.3__3038_i355853022_il5534428.exe (PUP.Optional.Amonetize) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack (1).exe (PUP.Optional.OneClickDownloader.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\Downloads\Unity_3D_Sorted_ASSET_Pack.exe (PUP.Optional.OneClickDownloader.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\dclogs\2014-01-19-1.DC (Stolen.Data) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\dclogs\2014-01-20-2.dc (Stolen.Data) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\dclogs\2014-01-21-3.dc (Stolen.Data) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\Tasks\Show-Password Update.job (PUP.Optional.ShowPassword.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\ICONS_2.2.15.1631\62.ico (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\ICONS_2.2.15.1631\80.ico (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\UPDATEPROC\config.dat (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\UPDATEPROC\STTL.DAT (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\UPDATEPROC\TTL.DAT (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Tom\AppData\Roaming\MYSEARCHDIAL\UPDATEPROC\UpdateTask.exe (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\FavIcon.ico (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\mysearchdialApp.dll (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\mysearchdialEng.dll (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\Sqlite3.dll (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\uninst.dat (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\MYSEARCHDIAL\1.8.21.0\uninstall.exe (PUP.Optional.MySearchDial.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende)AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.019 - Bericht erstellt am 17/02/2014 um 17:13:34
# Aktualisiert 17/02/2014 von Xplode
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : Tom - ACER
# Gestartet von : C:\Users\Tom\Desktop\adwcleaner (1).exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\Users\Tom\AppData\Local\playnowradio
Ordner Gelöscht : C:\Users\Tom\Documents\optimizer pro
Ordner Gelöscht : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\l60zjxmf.default-1387889089968\Extensions\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
Ordner Gelöscht : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\l60zjxmf.default-1387889089968\Extensions\ffxtlbr@mysearchdial.com
Datei Gelöscht : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\l60zjxmf.default-1387889089968\searchplugins\Mysearchdial.xml
Datei Gelöscht : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\l60zjxmf.default-1387889089968\user.js
Datei Gelöscht : C:\WINDOWS\Tasks\MySearchDial.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\MySearchDial
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gelöscht : HKLM\Software\caphyon
Schlüssel Gelöscht : HKLM\Software\InstallCore
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16518
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v
[ Datei : C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\l60zjxmf.default-1387889089968\prefs.js ]
Zeile gelöscht : user_pref("browser.startup.homepage", "hxxp://start.mysearchdial.com/?f=1&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzuyB0CtDyDtDyB0F0Czz0BtDzyyEzzzz0AtN0D0Tzu0CyByBzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDt[...]
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Mysearchdial");
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Mysearchdial");
-\\ Google Chrome v32.0.1700.107
[ Datei : C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht : homepage
*************************
AdwCleaner[R0].txt - [18065 octets] - [19/01/2014 15:19:55]
AdwCleaner[R1].txt - [1221 octets] - [12/02/2014 21:37:57]
AdwCleaner[R2].txt - [4683 octets] - [17/02/2014 17:12:57]
AdwCleaner[S0].txt - [12961 octets] - [19/01/2014 15:21:08]
AdwCleaner[S1].txt - [1225 octets] - [12/02/2014 21:38:53]
AdwCleaner[S2].txt - [4067 octets] - [17/02/2014 17:13:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [4127 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 8.1 x64
Ran by Tom on 17.02.2014 at 17:17:41.75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1714481637-1342907066-1217133146-1001\Software\Microsoft\Internet Explorer\Main\\Start Page
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{6C3D3A72-B126-48D4-B521-9B8AA01081EE}
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Tom\appdata\local\cre"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.02.2014 at 17:22:36.17
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-02-2014
Ran by Tom (administrator) on ACER on 17-02-2014 17:37:25
Running from C:\Users\Tom\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\DelayLoad.exe
(Microsoft Corporation) C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.16470_none_fa2491fd9b3cfcb2\TiWorker.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Akamai NetSession Interface] - C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Eazel search
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzuyB0CtDyDtDyB0F0Czz0BtDzyyEzzzz0AtN0D0Tzu0CyByBzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=267277642&ir=
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tom\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-13]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-14]
CHR Extension: (Google Drive) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-14]
CHR Extension: (YouTube) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-14]
CHR Extension: (Spry this!) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-08]
CHR Extension: (Google-Suche) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-14]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2014-02-13]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-12-14]
CHR Extension: (Video Downloader professional) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-02-13]
CHR Extension: (AdBlock) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-12-14]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-17]
CHR Extension: (Google Wallet) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-14]
CHR Extension: (Google Mail) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-14]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-01-21]
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-11-13] (Kaspersky Lab ZAO)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-07-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-13] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-12-19] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-02-17] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-01-21] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-27] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SaiK1705; C:\Windows\system32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\drivers\SaiU1705.sys [47208 2012-09-20] (Saitek)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:37 - 2014-02-17 17:37 - 00021167 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 00000000 ____D () C:\Users\Tom\Downloads\FRST-OlderVersion
2014-02-17 17:22 - 2014-02-17 17:22 - 00001618 _____ () C:\Users\Tom\Desktop\JRT.txt
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:15 - 2014-02-17 17:15 - 00004215 _____ () C:\Users\Tom\Desktop\AdwCleaner[S2].txt
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 17:07 - 2014-02-17 17:07 - 00008778 _____ () C:\WINDOWS\PFRO.log
2014-02-17 16:56 - 2014-02-17 16:56 - 00001147 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-17 16:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:55 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Desktop\adwcleaner (1).exe
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:54 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Desktop\JRT_6.1.1.exe
2014-02-17 16:54 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Desktop\mbam-setup-1.75.0.1300.exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 13:06 - 2014-02-17 13:07 - 110100480 _____ () C:\Users\Tom\Downloads\EnvironmentGator.part1.rar
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:47 - 2014-02-17 12:47 - 00001412 _____ () C:\Users\Tom\Downloads\3678e15tr0l4m6o (1).dlc
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:41 - 2014-02-17 12:49 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:39 - 2014-02-17 12:39 - 00081488 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\Tom\Downloads\WebInstaller.exe
2014-02-17 12:38 - 2014-02-17 12:38 - 00001412 _____ () C:\Users\Tom\Downloads\3678e15tr0l4m6o.dlc
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 18:56 - 2014-02-17 17:37 - 00000000 ____D () C:\FRST
2014-02-16 17:18 - 2014-02-16 17:18 - 00550684 _____ () C:\Users\Tom\Desktop\sleepyhollow-910758.jpeg
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\vtk4xts3ii-courtbuilding
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\b3qq9lti8s-building3
2014-02-16 11:53 - 2014-02-16 11:53 - 08388608 _____ () C:\Users\Tom\Desktop\Sleepy Hollow.raw
2014-02-15 22:33 - 2014-02-15 22:34 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:19 - 2014-02-15 22:20 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 20:06 - 2014-02-15 20:06 - 08993569 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree Docu.ZPR
2014-02-15 20:06 - 2014-02-15 20:06 - 00257853 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree.OBJ
2014-02-15 18:42 - 2014-02-17 11:57 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-13 20:45 - 2014-02-14 00:40 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 19:06 - 2014-02-14 12:52 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-13 12:59 - 2014-02-14 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-13 12:59 - 2014-02-13 12:59 - 00001090 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:44 - 2014-02-13 13:04 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 12:39 - 2014-02-13 13:02 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:30 - 2014-02-13 12:55 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:37 - 2014-02-12 21:37 - 01166132 _____ () C:\Users\Tom\Downloads\adwcleaner.exe
2014-02-12 20:32 - 2014-02-12 20:35 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 18:19 - 2014-02-12 18:22 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 16:05 - 2014-02-17 17:15 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-12 05:50 - 2014-02-12 13:30 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-11 21:43 - 2014-02-12 17:17 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-11 18:46 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-11 17:21 - 2014-02-15 18:01 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 19:42 - 2014-02-03 03:22 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 18:22 - 2014-02-02 19:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2014-02-01 11:32 - 2014-02-01 11:45 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:32 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys
2014-02-01 11:32 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-25 11:06 - 2014-02-12 21:36 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 17:50 - 2014-01-23 18:55 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-02-12 21:42 - 00000000 ____D () C:\ProgramData\ProductData
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-08 15:54 - 00121856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-01-21 21:04 - 2014-02-04 20:52 - 00165659 _____ () C:\MyXML.xml
2014-01-21 21:04 - 2013-12-24 10:40 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-01-21 21:04 - 2013-11-19 16:52 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2014-01-21 20:51 - 2014-01-21 20:56 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 17:07 - 2014-01-22 10:28 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 12:43 - 2014-01-21 13:04 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-20 18:47 - 2014-01-20 18:59 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 20:06 - 2014-02-04 20:59 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-01-19 19:30 - 2014-01-21 07:15 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:44 - 2014-02-01 11:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-19 15:34 - 2014-02-12 20:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 15:19 - 2014-02-17 17:13 - 00000000 ____D () C:\AdwCleaner
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:22 - 2014-02-11 20:27 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-01-19 14:12 - 2014-02-12 21:16 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 11:04 - 2014-01-19 21:48 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
2014-01-18 10:24 - 2014-01-18 10:24 - 00000197 _____ () C:\WINDOWS\SysWOW64\Config.json
==================== One Month Modified Files and Folders =======
2014-02-17 17:38 - 2014-02-17 17:37 - 00021167 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:37 - 2014-02-17 17:37 - 00000000 ____D () C:\Users\Tom\Downloads\FRST-OlderVersion
2014-02-17 17:37 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-17 17:36 - 2014-01-08 13:07 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F415039C-C647-4210-ADE6-78387975FD52}
2014-02-17 17:26 - 2013-11-13 14:01 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714481637-1342907066-1217133146-1001
2014-02-17 17:25 - 2014-01-08 13:08 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-17 17:22 - 2014-02-17 17:22 - 00001618 _____ () C:\Users\Tom\Desktop\JRT.txt
2014-02-17 17:18 - 2013-12-23 11:18 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:15 - 2014-02-17 17:15 - 00004215 _____ () C:\Users\Tom\Desktop\AdwCleaner[S2].txt
2014-02-17 17:15 - 2014-02-12 16:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-17 17:15 - 2014-01-08 13:08 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-17 17:15 - 2013-11-13 15:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 17:14 - 2013-12-23 22:19 - 01932947 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-17 17:14 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-17 17:14 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-17 17:13 - 2014-01-19 15:19 - 00000000 ____D () C:\AdwCleaner
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 17:08 - 2013-08-22 15:44 - 00344712 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-17 17:07 - 2014-02-17 17:07 - 00008778 _____ () C:\WINDOWS\PFRO.log
2014-02-17 17:05 - 2014-01-12 08:30 - 00000246 _____ () C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-17 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-17 16:56 - 2014-02-17 16:56 - 00001147 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:55 - 01241888 _____ () C:\Users\Tom\Desktop\adwcleaner (1).exe
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:54 - 01037530 _____ (Thisisu) C:\Users\Tom\Desktop\JRT_6.1.1.exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:54 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Desktop\mbam-setup-1.75.0.1300.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 13:07 - 2014-02-17 13:06 - 110100480 _____ () C:\Users\Tom\Downloads\EnvironmentGator.part1.rar
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:49 - 2014-02-17 12:41 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:47 - 2014-02-17 12:47 - 00001412 _____ () C:\Users\Tom\Downloads\3678e15tr0l4m6o (1).dlc
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:39 - 2014-02-17 12:39 - 00081488 _____ (AppWork UG (haftungsbeschränkt)) C:\Users\Tom\Downloads\WebInstaller.exe
2014-02-17 12:38 - 2014-02-17 12:38 - 00001412 _____ () C:\Users\Tom\Downloads\3678e15tr0l4m6o.dlc
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-17 11:57 - 2014-02-15 18:42 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-17 11:48 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-17 11:48 - 2013-11-14 08:11 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-17 11:48 - 2013-11-14 08:11 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 21:44 - 2013-12-23 22:05 - 00000000 ____D () C:\Users\Tom
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 17:18 - 2014-02-16 17:18 - 00550684 _____ () C:\Users\Tom\Desktop\sleepyhollow-910758.jpeg
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\vtk4xts3ii-courtbuilding
2014-02-16 13:18 - 2014-02-16 13:18 - 00000000 ____D () C:\Users\Tom\Desktop\b3qq9lti8s-building3
2014-02-16 11:53 - 2014-02-16 11:53 - 08388608 _____ () C:\Users\Tom\Desktop\Sleepy Hollow.raw
2014-02-16 10:34 - 2013-11-20 14:15 - 00000000 ____D () C:\ProgramData\Unity
2014-02-15 22:34 - 2014-02-15 22:33 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:20 - 2014-02-15 22:19 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 22:20 - 2014-01-08 13:08 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 22:20 - 2014-01-08 13:08 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 21:56 - 2013-12-19 20:27 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Skype
2014-02-15 20:06 - 2014-02-15 20:06 - 08993569 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree Docu.ZPR
2014-02-15 20:06 - 2014-02-15 20:06 - 00257853 _____ () C:\Users\Tom\Desktop\Sleepy Hollow Tree.OBJ
2014-02-15 18:01 - 2014-02-11 17:21 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-14 12:52 - 2014-02-13 19:06 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-14 12:01 - 2014-02-13 12:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-14 11:47 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-14 11:46 - 2013-12-17 18:04 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\BitTorrent
2014-02-14 00:40 - 2014-02-13 20:45 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 13:04 - 2014-02-13 12:44 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 13:02 - 2014-02-13 12:39 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:59 - 2014-02-13 12:59 - 00001090 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:55 - 2014-02-13 12:30 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:42 - 2014-01-21 21:34 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-12 21:37 - 2014-02-12 21:37 - 01166132 _____ () C:\Users\Tom\Downloads\adwcleaner.exe
2014-02-12 21:36 - 2014-01-25 11:06 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-02-12 21:18 - 2014-01-11 08:45 - 00000000 ____D () C:\Users\Tom\AppData\Local\backburner
2014-02-12 21:18 - 2014-01-09 19:38 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-12 21:18 - 2014-01-09 16:47 - 00000000 ____D () C:\Spacekace
2014-02-12 21:18 - 2013-07-27 05:24 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-12 21:18 - 2013-07-27 05:07 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-12 21:18 - 2013-07-27 05:05 - 00000000 ____D () C:\Dolby PCEE4
2014-02-12 21:16 - 2014-01-19 14:12 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-02-12 20:35 - 2014-02-12 20:32 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 20:28 - 2014-01-19 15:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-12 18:42 - 2013-12-27 23:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\DAEMON Tools Lite
2014-02-12 18:22 - 2014-02-12 18:19 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 17:17 - 2014-02-11 21:43 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-12 17:17 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\Skyrim
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 13:36 - 2013-12-28 03:20 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-02-12 13:30 - 2014-02-12 05:50 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:14 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-11 21:42 - 2013-12-15 09:49 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\.minecraft
2014-02-11 20:27 - 2014-01-19 14:22 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-02-11 18:46 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-09 10:23 - 2013-11-22 14:56 - 00000000 ____D () C:\Program Files (x86)\Pixologic
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 17:25 - 2014-01-03 00:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-04 21:07 - 2013-04-18 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-04 20:59 - 2014-01-19 20:06 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-02-04 20:52 - 2014-01-21 21:04 - 00165659 _____ () C:\MyXML.xml
2014-02-04 20:18 - 2013-12-23 11:18 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-03 03:22 - 2014-02-02 19:42 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 21:39 - 2013-07-27 05:25 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-02 19:00 - 2014-02-01 18:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-02 03:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2014-02-01 11:32 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:44 - 2014-01-19 15:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-29 06:59 - 2013-11-20 17:16 - 00000000 ____D () C:\Users\Tom\Neuer Ordner (2)
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-26 22:34 - 2014-01-05 03:47 - 00000000 ____D () C:\Users\Tom\AppData\Local\Activision
2014-01-25 18:39 - 2013-12-28 03:51 - 00000000 ____D () C:\Games
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 18:55 - 2014-01-23 17:50 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-22 10:28 - 2014-01-21 17:07 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-12 08:29 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\IObit
2014-01-21 21:34 - 2014-01-12 08:23 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-01-21 21:04 - 2014-01-12 08:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-21 20:56 - 2014-01-21 20:51 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 18:39 - 2013-12-30 18:20 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 13:04 - 2014-01-21 12:43 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-21 07:15 - 2014-01-19 19:30 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-21 07:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-01-20 18:59 - 2014-01-20 18:47 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 21:48 - 2014-01-19 11:04 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:56 - 2013-11-20 15:16 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-01-19 14:27 - 2013-11-19 16:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\clear.fi
2014-01-19 14:05 - 2013-11-13 13:52 - 00000000 ____D () C:\Users\Tom\AppData\Local\Packages
2014-01-19 14:01 - 2013-12-23 21:59 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:48 - 2013-11-20 14:16 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Apple Computer
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
2014-01-18 10:25 - 2013-12-17 18:06 - 00000000 ____D () C:\Program Files (x86)\ShopperPro
2014-01-18 10:24 - 2014-01-18 10:24 - 00000197 _____ () C:\WINDOWS\SysWOW64\Config.json
2014-01-18 10:24 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-01-18 10:24 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\GroupPolicy
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-17 17:26
==================== End Of Log ============================
|
|
18.02.2014, 12:37
| #6 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des LaptopsESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ --> Fehlermeldung beim Start des Laptops |
|
18.02.2014, 20:36
| #7 |
| | Fehlermeldung beim Start des Laptops ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=5504a78f0d353044a873a4e0c58b2309 # engine=17123 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2014-02-18 06:50:57 # local_time=2014-02-18 07:50:57 (+0100, Mitteleuropäische Zeit) # country="Switzerland" # lang=1033 # osver=6.2.9200 NT # compatibility_mode=5893 16776574 100 94 8337552 17630750 0 0 # scanned=274161 # found=3 # cleaned=0 # scan_time=9504 sh=86438136421091C3FD56481089886FB50308CD0B ft=1 fh=c71c00115f5f9438 vn="a variant of Win32/AdWare.AddLyrics.AB application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Show-Password\Show_Password.exe.vir" sh=1A785D5615000DD8387F1BAB6D6FF7E58AEF2168 ft=1 fh=3344fa9499ea1fd7 vn="a variant of Win32/AdWare.AddLyrics.AB application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Show-Password\Uninstall.exe.vir" sh=1F8384F271D5A89592FF2367C5CCA43EB9CD708A ft=1 fh=a79392de1858e38f vn="Win32/AdWare.1ClickDownload.AJ application" ac=I fn="C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\File System\005\t\00\00000000" Results of screen317's Security Check version 0.99.79 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` McAfee Anti-Virus und Anti-Spyware Kaspersky Anti-Virus Windows Defender Antivirus out of date! `````````Anti-malware/Other Utilities Check:````````` Java 7 Update 45 Java version out of Date! Adobe Flash Player 12.0.0.44 Google Chrome 32.0.1700.102 Google Chrome 32.0.1700.107 ````````Process Check: objlist.exe by Laurent```````` Kaspersky Lab Kaspersky Anti-Virus 14.0.0 avp.exe Kaspersky Lab Kaspersky Anti-Virus 14.0.0 avpui.exe Symantec Norton Online Backup NOBuAgent.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-02-2014
Ran by Tom (administrator) on ACER on 18-02-2014 20:18:42
Running from C:\Users\Tom\Desktop\Trojaner Board
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Avanquest Software) C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Akamai NetSession Interface] - C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\MountPoints2: {81bb0d98-9802-11e3-bebc-24fd52154251} - "F:\Startme.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Eazel search
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzuyB0CtDyDtDyB0F0Czz0BtDzyyEzzzz0AtN0D0Tzu0CyByBzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=267277642&ir=
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tom\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-13]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-14]
CHR Extension: (Google Drive) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-14]
CHR Extension: (YouTube) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-14]
CHR Extension: (Spry this!) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-08]
CHR Extension: (Google-Suche) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-14]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2014-02-13]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-12-14]
CHR Extension: (Video Downloader professional) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-02-13]
CHR Extension: (AdBlock) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-12-14]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-17]
CHR Extension: (Google Wallet) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-14]
CHR Extension: (Google Mail) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-14]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-01-21]
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-11-13] (Kaspersky Lab ZAO)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-07-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-13] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-12-19] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-02-17] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-01-21] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-27] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SaiK1705; C:\Windows\system32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\drivers\SaiU1705.sys [47208 2012-09-20] (Saitek)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-18 20:17 - 2014-02-18 20:17 - 00001003 _____ () C:\Users\Tom\Desktop\checkup.txt
2014-02-18 17:10 - 2014-02-18 17:10 - 00987425 _____ () C:\Users\Tom\Desktop\SecurityCheck.exe
2014-02-18 17:08 - 2014-02-18 17:09 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Desktop\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Desktop\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:36 - 2014-02-17 21:21 - 03403874 _____ () C:\Users\Tom\Desktop\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:28 - 2014-02-17 21:30 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:20 - 2014-02-17 21:21 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:15 - 2014-02-17 21:21 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00002132 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 21:03 - 2014-02-17 21:03 - 00000000 ____D () C:\Users\Tom\Desktop\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1)
2014-02-17 21:03 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Desktop\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:54 - 2014-02-18 20:18 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-17 17:37 - 2014-02-17 17:38 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:41 - 2014-02-17 12:49 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 18:56 - 2014-02-18 20:18 - 00000000 ____D () C:\FRST
2014-02-15 22:33 - 2014-02-15 22:34 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:19 - 2014-02-15 22:20 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 18:42 - 2014-02-17 19:32 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-13 20:45 - 2014-02-14 00:40 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 19:06 - 2014-02-14 12:52 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-13 12:59 - 2014-02-14 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:44 - 2014-02-13 13:04 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 12:39 - 2014-02-13 13:02 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:30 - 2014-02-13 12:55 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 20:32 - 2014-02-12 20:35 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 18:19 - 2014-02-12 18:22 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 16:05 - 2014-02-18 17:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-12 05:50 - 2014-02-12 13:30 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-11 21:43 - 2014-02-12 17:17 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-11 18:46 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-11 17:21 - 2014-02-15 18:01 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 19:42 - 2014-02-03 03:22 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 18:22 - 2014-02-02 19:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2014-02-01 11:32 - 2014-02-01 11:45 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:32 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys
2014-02-01 11:32 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-25 11:06 - 2014-02-12 21:36 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 17:50 - 2014-01-23 18:55 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-02-12 21:42 - 00000000 ____D () C:\ProgramData\ProductData
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-08 15:54 - 00121856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-01-21 21:04 - 2014-02-04 20:52 - 00165659 _____ () C:\MyXML.xml
2014-01-21 21:04 - 2013-12-24 10:40 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-01-21 21:04 - 2013-11-19 16:52 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2014-01-21 20:51 - 2014-01-21 20:56 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 17:07 - 2014-01-22 10:28 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 12:43 - 2014-01-21 13:04 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-20 18:47 - 2014-01-20 18:59 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 20:06 - 2014-02-04 20:59 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-01-19 19:30 - 2014-01-21 07:15 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:44 - 2014-02-01 11:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-19 15:34 - 2014-02-12 20:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 15:19 - 2014-02-17 17:13 - 00000000 ____D () C:\AdwCleaner
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:22 - 2014-02-11 20:27 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-01-19 14:12 - 2014-02-17 19:55 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 11:04 - 2014-01-19 21:48 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
==================== One Month Modified Files and Folders =======
2014-02-18 20:18 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-18 20:18 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-18 20:18 - 2013-12-23 11:18 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-18 20:17 - 2014-02-18 20:17 - 00001003 _____ () C:\Users\Tom\Desktop\checkup.txt
2014-02-18 20:13 - 2014-01-08 13:07 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F415039C-C647-4210-ADE6-78387975FD52}
2014-02-18 19:25 - 2014-01-08 13:08 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-18 19:25 - 2013-11-13 15:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-18 18:50 - 2013-12-23 22:19 - 01082600 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-18 17:19 - 2013-11-13 14:01 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714481637-1342907066-1217133146-1001
2014-02-18 17:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-18 17:10 - 2014-02-18 17:10 - 00987425 _____ () C:\Users\Tom\Desktop\SecurityCheck.exe
2014-02-18 17:09 - 2014-02-18 17:08 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-18 17:06 - 2014-01-08 13:08 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-18 17:05 - 2014-02-12 16:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-17 21:43 - 2014-01-12 08:30 - 00000246 _____ () C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Desktop\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Desktop\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:30 - 2014-02-17 21:28 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:21 - 2014-02-17 21:36 - 03403874 _____ () C:\Users\Tom\Desktop\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:21 - 2014-02-17 21:20 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:21 - 2014-02-17 21:15 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00002132 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 21:14 - 2013-04-18 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-17 21:03 - 2014-02-17 21:03 - 00000000 ____D () C:\Users\Tom\Desktop\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1)
2014-02-17 20:15 - 2014-02-17 21:03 - 475244249 _____ () C:\Users\Tom\Desktop\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:55 - 2014-01-19 14:12 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-02-17 19:54 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-17 19:37 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-17 19:36 - 2013-12-23 22:05 - 00000000 ____D () C:\Users\Tom
2014-02-17 19:36 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-17 19:32 - 2014-02-15 18:42 - 00000000 ____D () C:\Users\Tom\Documents\Sleepy Hollow 2
2014-02-17 19:23 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-17 19:23 - 2013-11-14 08:11 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-17 19:23 - 2013-11-14 08:11 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-17 17:38 - 2014-02-17 17:37 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 17:13 - 2014-01-19 15:19 - 00000000 ____D () C:\AdwCleaner
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 17:08 - 2013-08-22 15:44 - 00344712 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-17 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:49 - 2014-02-17 12:41 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 10:34 - 2013-11-20 14:15 - 00000000 ____D () C:\ProgramData\Unity
2014-02-15 22:34 - 2014-02-15 22:33 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:20 - 2014-02-15 22:19 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 22:20 - 2014-01-08 13:08 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 22:20 - 2014-01-08 13:08 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 21:56 - 2013-12-19 20:27 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Skype
2014-02-15 18:01 - 2014-02-11 17:21 - 00000000 ____D () C:\Users\Tom\Documents\New Unity Project
2014-02-14 12:52 - 2014-02-13 19:06 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-14 12:01 - 2014-02-13 12:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-14 11:46 - 2013-12-17 18:04 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\BitTorrent
2014-02-14 00:40 - 2014-02-13 20:45 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 13:04 - 2014-02-13 12:44 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 13:02 - 2014-02-13 12:39 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:55 - 2014-02-13 12:30 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:42 - 2014-01-21 21:34 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-12 21:36 - 2014-01-25 11:06 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-02-12 21:18 - 2014-01-11 08:45 - 00000000 ____D () C:\Users\Tom\AppData\Local\backburner
2014-02-12 21:18 - 2014-01-09 19:38 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-12 21:18 - 2014-01-09 16:47 - 00000000 ____D () C:\Spacekace
2014-02-12 21:18 - 2013-07-27 05:24 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-12 21:18 - 2013-07-27 05:07 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-12 21:18 - 2013-07-27 05:05 - 00000000 ____D () C:\Dolby PCEE4
2014-02-12 20:35 - 2014-02-12 20:32 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 20:28 - 2014-01-19 15:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-12 18:42 - 2013-12-27 23:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\DAEMON Tools Lite
2014-02-12 18:22 - 2014-02-12 18:19 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 17:17 - 2014-02-11 21:43 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-12 17:17 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\Skyrim
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 13:36 - 2013-12-28 03:20 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-02-12 13:30 - 2014-02-12 05:50 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:14 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-11 21:42 - 2013-12-15 09:49 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\.minecraft
2014-02-11 20:27 - 2014-01-19 14:22 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-02-09 10:23 - 2013-11-22 14:56 - 00000000 ____D () C:\Program Files (x86)\Pixologic
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 17:25 - 2014-01-03 00:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-04 20:59 - 2014-01-19 20:06 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-02-04 20:52 - 2014-01-21 21:04 - 00165659 _____ () C:\MyXML.xml
2014-02-04 20:18 - 2013-12-23 11:18 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-03 03:22 - 2014-02-02 19:42 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 21:39 - 2013-07-27 05:25 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-02 19:00 - 2014-02-01 18:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-02 03:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2014-02-01 11:32 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:44 - 2014-01-19 15:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-29 06:59 - 2013-11-20 17:16 - 00000000 ____D () C:\Users\Tom\Neuer Ordner (2)
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-26 22:34 - 2014-01-05 03:47 - 00000000 ____D () C:\Users\Tom\AppData\Local\Activision
2014-01-25 18:39 - 2013-12-28 03:51 - 00000000 ____D () C:\Games
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 18:55 - 2014-01-23 17:50 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-22 10:28 - 2014-01-21 17:07 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-12 08:29 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\IObit
2014-01-21 21:34 - 2014-01-12 08:23 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-01-21 21:04 - 2014-01-12 08:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-21 20:56 - 2014-01-21 20:51 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 18:39 - 2013-12-30 18:20 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 13:04 - 2014-01-21 12:43 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-21 07:15 - 2014-01-19 19:30 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-21 07:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-01-20 18:59 - 2014-01-20 18:47 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
2014-01-19 21:48 - 2014-01-19 11:04 - 00000000 ____D () C:\Users\Tom\AppData\Local\DayZ
2014-01-19 18:06 - 2014-01-19 18:06 - 00003162 _____ () C:\WINDOWS\System32\Tasks\{AFBC31A5-AF0C-4729-B187-904ADB7F725D}
2014-01-19 15:21 - 2014-01-19 15:21 - 00001007 _____ () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-19 14:59 - 2014-01-19 14:59 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy\AppData\Roaming\IObit
2014-01-19 14:56 - 2014-01-19 14:56 - 00000000 ____D () C:\Users\Jimmy
2014-01-19 14:56 - 2013-11-20 15:16 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-01-19 14:27 - 2013-11-19 16:03 - 00000000 ____D () C:\Users\Tom\AppData\Local\clear.fi
2014-01-19 14:05 - 2013-11-13 13:52 - 00000000 ____D () C:\Users\Tom\AppData\Local\Packages
2014-01-19 14:01 - 2013-12-23 21:59 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-01-19 14:00 - 2014-01-19 14:00 - 43342848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 14153984 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 05681196 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat
2014-01-19 14:00 - 2014-01-19 14:00 - 03771352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-01-19 14:00 - 2014-01-19 14:00 - 02810072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02588888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 02036992 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-01-19 14:00 - 2014-01-19 14:00 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01922304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01021656 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 01013504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00693385 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-01-19 14:00 - 2014-01-19 14:00 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00618200 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00153304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-01-19 14:00 - 2014-01-19 14:00 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-01-19 13:54 - 2014-01-19 13:54 - 00003156 _____ () C:\WINDOWS\System32\Tasks\Game_Booster_AutoUpdate
2014-01-19 13:51 - 2014-01-19 13:51 - 00000000 ____D () C:\WINDOWS\Tasks\TaskDisabled
2014-01-19 13:48 - 2013-11-20 14:16 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Apple Computer
2014-01-19 13:40 - 2014-01-19 13:40 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1clickmoviedownloader.com
2014-01-19 11:04 - 2014-01-19 11:04 - 00000000 ____D () C:\ProgramData\Steam
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-17 20:51
==================== End Of Log ============================
--- --- --- So ich dankke dir schonmal^^ hoffe mal das die Meldung jetzt nicht mehr kommt, wird sich aber mir einem Neustart zeigen. Ich schreibe dann nochmal ob jetzt alles geklappt hat  .Mmh, kommt leider immer noch die gleiche Meldung... :/ du hast nicht zufällig noch ein Ass im Ärmel? Vielleicht hab ich aber wirklich mal was gelöscht, wer weis. |
|
19.02.2014, 16:28
| #8 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des Laptops Java updaten. Öffne mal bitte FRST, setz nen Haken bei Additional und scanne, poste bitte beide Logfiles.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.02.2014, 18:09
| #9 |
| | Fehlermeldung beim Start des LaptopsFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by Tom (administrator) on ACER on 19-02-2014 18:00:25
Running from C:\Users\Tom\Desktop\Trojaner Board
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre7\bin\java.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Akamai NetSession Interface] - C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\MountPoints2: {81bb0d98-9802-11e3-bebc-24fd52154251} - "F:\Startme.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Eazel search
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzuyB0CtDyDtDyB0F0Czz0BtDzyyEzzzz0AtN0D0Tzu0CyByBzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=267277642&ir=
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tom\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-13]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-14]
CHR Extension: (Google Drive) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-14]
CHR Extension: (YouTube) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-14]
CHR Extension: (Spry this!) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-08]
CHR Extension: (Google-Suche) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-14]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2014-02-13]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-12-14]
CHR Extension: (Video Downloader professional) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-02-13]
CHR Extension: (AdBlock) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-12-14]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-17]
CHR Extension: (Google Wallet) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-14]
CHR Extension: (Google Mail) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-14]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-01-21]
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-11-13] (Kaspersky Lab ZAO)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-07-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-13] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-12-19] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-02-17] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-01-21] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-27] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SaiK1705; C:\Windows\system32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\drivers\SaiU1705.sys [47208 2012-09-20] (Saitek)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-19 17:58 - 2014-02-19 17:58 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-19 17:58 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-02-19 17:58 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-02-19 17:58 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-02-19 17:58 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-02-19 17:57 - 2014-02-19 17:57 - 00921000 _____ (Oracle Corporation) C:\Users\Tom\Downloads\chromeinstall-7u51.exe
2014-02-19 15:29 - 2014-02-19 15:29 - 12840299 _____ () C:\Users\Tom\Downloads\wolf.rar
2014-02-19 15:20 - 2014-02-19 15:21 - 56588002 _____ () C:\Users\Tom\Downloads\werewolf_294_MB.rar
2014-02-18 21:20 - 2014-02-18 21:21 - 77794906 _____ () C:\Users\Tom\Downloads\Skeleton Pack.unitypackage
2014-02-18 21:05 - 2014-02-19 17:55 - 00000000 ____D () C:\Users\Tom\Documents\Horror Story`s
2014-02-18 20:27 - 2014-02-18 20:27 - 00017296 _____ () C:\WINDOWS\PFRO.log
2014-02-18 17:08 - 2014-02-18 17:09 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:28 - 2014-02-17 21:30 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:20 - 2014-02-17 21:21 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:15 - 2014-02-17 21:21 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:54 - 2014-02-19 18:00 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-17 17:37 - 2014-02-17 17:38 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:41 - 2014-02-17 12:49 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 18:56 - 2014-02-19 18:00 - 00000000 ____D () C:\FRST
2014-02-15 22:33 - 2014-02-15 22:34 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:19 - 2014-02-15 22:20 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-13 20:45 - 2014-02-14 00:40 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 19:06 - 2014-02-18 21:23 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-13 12:59 - 2014-02-14 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:44 - 2014-02-13 13:04 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 12:39 - 2014-02-13 13:02 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:30 - 2014-02-13 12:55 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 20:32 - 2014-02-12 20:35 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 18:19 - 2014-02-12 18:22 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 16:05 - 2014-02-19 13:14 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-12 05:50 - 2014-02-12 13:30 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-11 21:43 - 2014-02-12 17:17 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-11 18:46 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 19:42 - 2014-02-03 03:22 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 18:22 - 2014-02-02 19:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2014-02-01 11:32 - 2014-02-01 11:45 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:32 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys
2014-02-01 11:32 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-25 11:06 - 2014-02-18 21:22 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 17:50 - 2014-01-23 18:55 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-02-12 21:42 - 00000000 ____D () C:\ProgramData\ProductData
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-08 15:54 - 00121856 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-01-21 21:04 - 2014-02-04 20:52 - 00165659 _____ () C:\MyXML.xml
2014-01-21 21:04 - 2013-12-24 10:40 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2014-01-21 21:04 - 2013-11-19 16:52 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2014-01-21 20:51 - 2014-01-21 20:56 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 17:07 - 2014-01-22 10:28 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 12:43 - 2014-01-21 13:04 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-20 18:47 - 2014-01-20 18:59 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
==================== One Month Modified Files and Folders =======
2014-02-19 18:00 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-19 18:00 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-19 17:58 - 2014-02-19 17:58 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-19 17:58 - 2013-12-15 09:49 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-19 17:58 - 2013-12-15 09:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-19 17:57 - 2014-02-19 17:57 - 00921000 _____ (Oracle Corporation) C:\Users\Tom\Downloads\chromeinstall-7u51.exe
2014-02-19 17:55 - 2014-02-18 21:05 - 00000000 ____D () C:\Users\Tom\Documents\Horror Story`s
2014-02-19 17:52 - 2013-11-13 15:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-19 17:43 - 2013-12-23 22:19 - 01109525 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-19 15:29 - 2014-02-19 15:29 - 12840299 _____ () C:\Users\Tom\Downloads\wolf.rar
2014-02-19 15:25 - 2014-01-08 13:08 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-19 15:21 - 2014-02-19 15:20 - 56588002 _____ () C:\Users\Tom\Downloads\werewolf_294_MB.rar
2014-02-19 15:18 - 2013-12-23 11:18 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-19 15:14 - 2013-11-13 14:01 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714481637-1342907066-1217133146-1001
2014-02-19 13:14 - 2014-02-12 16:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-19 13:14 - 2014-01-08 13:08 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-18 21:30 - 2014-01-08 13:07 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F415039C-C647-4210-ADE6-78387975FD52}
2014-02-18 21:23 - 2014-02-13 19:06 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-18 21:22 - 2014-01-25 11:06 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-02-18 21:21 - 2014-02-18 21:20 - 77794906 _____ () C:\Users\Tom\Downloads\Skeleton Pack.unitypackage
2014-02-18 20:38 - 2013-11-20 14:15 - 00000000 ____D () C:\ProgramData\Unity
2014-02-18 20:27 - 2014-02-18 20:27 - 00017296 _____ () C:\WINDOWS\PFRO.log
2014-02-18 20:27 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-18 20:26 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-18 17:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-18 17:09 - 2014-02-18 17:08 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-17 21:43 - 2014-01-12 08:30 - 00000246 _____ () C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:30 - 2014-02-17 21:28 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:21 - 2014-02-17 21:20 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:21 - 2014-02-17 21:15 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 21:14 - 2013-04-18 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:55 - 2014-01-19 14:12 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-02-17 19:54 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-17 19:36 - 2013-12-23 22:05 - 00000000 ____D () C:\Users\Tom
2014-02-17 19:23 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-17 19:23 - 2013-11-14 08:11 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-17 19:23 - 2013-11-14 08:11 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-17 17:38 - 2014-02-17 17:37 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 17:13 - 2014-01-19 15:19 - 00000000 ____D () C:\AdwCleaner
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 17:08 - 2013-08-22 15:44 - 00344712 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-17 17:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:49 - 2014-02-17 12:41 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-15 22:34 - 2014-02-15 22:33 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:20 - 2014-02-15 22:19 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 22:20 - 2014-01-08 13:08 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 22:20 - 2014-01-08 13:08 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 21:56 - 2013-12-19 20:27 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Skype
2014-02-14 12:01 - 2014-02-13 12:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-14 11:46 - 2013-12-17 18:04 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\BitTorrent
2014-02-14 00:40 - 2014-02-13 20:45 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 13:04 - 2014-02-13 12:44 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 13:02 - 2014-02-13 12:39 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:55 - 2014-02-13 12:30 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:42 - 2014-01-21 21:34 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-12 21:18 - 2014-01-11 08:45 - 00000000 ____D () C:\Users\Tom\AppData\Local\backburner
2014-02-12 21:18 - 2014-01-09 19:38 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-12 21:18 - 2014-01-09 16:47 - 00000000 ____D () C:\Spacekace
2014-02-12 21:18 - 2013-07-27 05:24 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-12 21:18 - 2013-07-27 05:07 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-12 21:18 - 2013-07-27 05:05 - 00000000 ____D () C:\Dolby PCEE4
2014-02-12 20:35 - 2014-02-12 20:32 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 20:28 - 2014-01-19 15:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-12 18:42 - 2013-12-27 23:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\DAEMON Tools Lite
2014-02-12 18:22 - 2014-02-12 18:19 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 17:17 - 2014-02-11 21:43 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-12 17:17 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\Skyrim
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 13:36 - 2013-12-28 03:20 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-02-12 13:30 - 2014-02-12 05:50 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:14 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-11 21:42 - 2013-12-15 09:49 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\.minecraft
2014-02-11 20:27 - 2014-01-19 14:22 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-02-09 10:23 - 2013-11-22 14:56 - 00000000 ____D () C:\Program Files (x86)\Pixologic
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 22:02 - 2014-02-05 22:02 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-05 22:02 - 2014-02-05 22:02 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 17:25 - 2014-01-03 00:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-04 20:59 - 2014-01-19 20:06 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-02-04 20:52 - 2014-01-21 21:04 - 00165659 _____ () C:\MyXML.xml
2014-02-04 20:18 - 2013-12-23 11:18 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-03 03:22 - 2014-02-02 19:42 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 21:39 - 2013-07-27 05:25 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-02 19:00 - 2014-02-01 18:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-02 03:10 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2014-02-01 11:32 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:44 - 2014-01-19 15:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-29 06:59 - 2013-11-20 17:16 - 00000000 ____D () C:\Users\Tom\Neuer Ordner (2)
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-26 22:34 - 2014-01-05 03:47 - 00000000 ____D () C:\Users\Tom\AppData\Local\Activision
2014-01-25 18:39 - 2013-12-28 03:51 - 00000000 ____D () C:\Games
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 18:55 - 2014-01-23 17:50 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-22 10:28 - 2014-01-21 17:07 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
2014-01-21 21:37 - 2014-01-21 21:37 - 05103616 _____ () C:\WINDOWS\system32\config\drivers.iobit
2014-01-21 21:35 - 2014-01-21 21:35 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-21 21:34 - 2014-01-21 21:34 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-21 21:34 - 2014-01-21 21:34 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-21 21:34 - 2014-01-21 21:34 - 00003170 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag3_Update
2014-01-21 21:34 - 2014-01-21 21:34 - 00000000 ____D () C:\DrvInstall
2014-01-21 21:34 - 2014-01-12 08:29 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\IObit
2014-01-21 21:34 - 2014-01-12 08:23 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-01-21 21:04 - 2014-01-12 08:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-21 20:56 - 2014-01-21 20:51 - 00000000 ____D () C:\Users\Tom\AppData\Local\Sniper Elite Nazi Zombie Army 2
2014-01-21 20:50 - 2014-01-21 20:50 - 00000000 ____D () C:\Users\Tom\AppData\Local\EMU
2014-01-21 18:39 - 2013-12-30 18:20 - 00000000 ____D () C:\Program Files (x86)\The Elder Scrolls V Skyrim
2014-01-21 17:23 - 2014-01-21 17:23 - 00000000 ____D () C:\Users\Tom\Documents\MGR
2014-01-21 13:04 - 2014-01-21 12:43 - 00000000 ____D () C:\Program Files (x86)\Jaws Unleashed
2014-01-21 07:15 - 2014-01-19 19:30 - 00000000 ___HD () C:\Users\Tom\Documents\MSDCSC
2014-01-21 07:08 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-01-20 18:59 - 2014-01-20 18:47 - 00000000 ____D () C:\Users\Tom\Desktop\Schule Freddy Krueger
2014-01-20 11:52 - 2014-01-20 11:52 - 00000000 ____D () C:\ProgramData\Orbit
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-18 21:36
==================== End Of Log ============================
FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2014
Ran by Tom at 2014-02-19 18:02:06
Running from C:\Users\Tom\Desktop\Trojaner Board
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
==================== Installed Programs ======================
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
Acer Device Fast-lane (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (Version: 1.00.3015 - Acer Incorporated)
Acer Power Management (Version: 7.00.3013 - Acer Incorporated)
Acer Recovery Management (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Docs (x32 Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (x32 Version: 2.02.2021 - Acer Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Advanced SystemCare 7 (x32 Version: 7.1.0 - IObit)
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Aliens vs. Predator (x32 Version: - )
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
BitTorrent (HKCU Version: 7.8.2.30489 - BitTorrent Inc.)
BrowserProtect (x32 Version: - ) <==== ATTENTION
CCleaner (Version: 4.09 - Piriform)
Cinema 4D version R12 (x32 Version: R12 - Salat Production)
clear.fi Media (x32 Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (x32 Version: 2.02.2016 - Acer Incorporated)
Creature Chaos 4.22 (x32 Version: - Creature Chaos Mod Team)
Creature Chaos 4.23 (x32 Version: - )
DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Distributed Computing Experiment (Version: - )
Dolby Home Theater v4 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
ETDWare PS/2-X64 11.6.17.002_WHQL (Version: 11.6.17.002 - ELAN Microelectronic Corp.)
Fallout New Vegas Ultimate Edition (x32 Version: - )
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Identity Card (x32 Version: 2.00.3006 - Acer Incorporated)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
IObit Uninstaller (x32 Version: 3.0.5.1228 - IObit)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Jaws Unleashed version 1.0 (x32 Version: 1.0 - Majesco Entertainment)
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Launch Manager (x32 Version: 7.0.10 - Acer Inc.)
Live Updater (x32 Version: 2.00.3010 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Metal Gear Rising Revengance (x32 Version: - Konami)
Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0 - Microsoft Corporation)
Mixamo Fuse version 0.9.3.1 (x32 Version: 0.9.3.1 - Mixamo)
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001 - www.motioninjoy.com)
Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden
Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500 - Nero AG)
Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Nexus Mod Manager (Version: 0.47.3 - Black Tree Gaming)
Norton Online Backup (x32 Version: 2.2.3.51r2 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
Office Addin (x32 Version: 2.02.2008 - Acer)
Office Addin 2003 (x32 Version: 2.02.2008 - Acer)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (x32 Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7111 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.2.8400.28124 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Show-Password (x32 Version: - Show-Password LTD) <==== ATTENTION
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Skyrim NPC Editor (x32 Version: 0.75.1 - foretrenty)
Smart Defrag 3 (x32 Version: 3.0 - IObit)
Smart Technology Programming Software 7.0.27.13 (Version: 7.0.27.13 - Mad Catz)
Sony PC Companion 2.10.188 (x32 Version: 2.10.188 - Sony)
Steam (x32 Version: - Valve Corporation)
Surfing Protection (x32 Version: 1.0 - IObit)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Tellurian 2.01 (HKCU Version: - )
The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (x32 Version: 1 - )
Unity (x32 Version: - Unity Technologies ApS)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (x32 Version: 2.1.3 - VideoLAN)
WildTangent Games (x32 Version: 1.0.4.0 - WildTangent)
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)
World Machine 2.2 Professional Edition (x32 Version: - )
ZBrush 4 (x32 Version: 4.0 - Pixologic)
ZBrush 4 (x32 Version: 4.0 - Pixologic) Hidden
ZBrush 4R6 (x32 Version: 4R6 - Pixologic)
==================== Restore Points =========================
02-02-2014 16:54:17 Installed Impossible Creatures 1.0.1
04-02-2014 19:54:04 Removed LogMeIn Hamachi
05-02-2014 21:02:26 Windows Modules Installer
13-02-2014 20:33:04 Geplanter Prüfpunkt
16-02-2014 20:47:04 Windows Modules Installer
19-02-2014 16:57:44 Installed Java 7 Update 51
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {003589F6-38C8-4CCB-B220-296FE7C8A82B} - \iWebar-enabler No Task File
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {092B9086-2C66-40E1-8C23-C2740D581F23} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {166DAEA0-B3A5-4598-9728-4C22480A9AFF} - \iWebar-updater No Task File
Task: {188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} - \iWebar-firefoxinstaller No Task File
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23F1ADC9-0E5C-458D-8C87-CD34BA1C052D} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-01-09] (IObit)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {33BFA2B8-9758-48A9-B088-3E0760E38C57} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2
Task: {34B5F279-7DA5-4330-87BD-89D99E9ECCBA} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-02-08] ()
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3866453C-18F1-44A8-B7D0-97DF63B19F53} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {42794B70-F362-48C7-AA45-8F164C6462AA} - System32\Tasks\ASC7_SkipUac_Tom => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe [2013-12-10] (IObit)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4A72EE9A-EE7D-4213-B9E6-565FD449A374} - \MySearchDial No Task File
Task: {4C2C58FD-27CF-4716-9155-732CAE308F5E} - \iWebar-codedownloader No Task File
Task: {5226A5B0-C414-49C7-93E8-AEEC31B82D17} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe [2013-12-03] (IObit)
Task: {5282C51F-DEA4-4C07-8612-825B685533F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73829F72-FE6D-4CB3-ABD0-DFF65B88B905} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {83D3EA2F-52F1-46C0-BA7D-28A805B49940} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8B83415D-78E4-4E87-9D6C-05D9E4301DDA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C8C808B0-F4AF-4F07-BB70-71C0E8E1ED0F} - \iWebar-chromeinstaller No Task File
Task: {CD455373-9569-46E1-ADE8-3B7BF21EFCA6} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D5E06250-3270-4D27-950B-32A884018B46} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D94CFF4C-A713-4825-9F9E-09DA961ED5B8} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] ()
Task: {D9B313DA-8103-4F47-A417-147527C4920C} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-02-08] ()
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DE03735A-F195-456F-89CD-8EC4BE44AF32} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-23] (Adobe Systems Incorporated)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EB59083F-5271-45BA-99B7-A47BB1015FAD} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {F445B4EE-FF5C-412F-B093-3A387E8AF118} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-02-17 21:14 - 2013-10-31 11:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2013-02-08 22:24 - 2013-02-08 22:24 - 00025672 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2013-02-08 22:24 - 2013-02-08 22:24 - 00044616 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2014-01-12 08:29 - 2013-10-25 11:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\sqlite3.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll
2013-07-27 04:59 - 2012-06-25 03:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-01-12 08:29 - 2013-01-15 17:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madExcept_.bpl
2014-01-12 08:29 - 2013-01-15 17:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madBasic_.bpl
2014-01-12 08:29 - 2013-01-15 17:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madDisAsm_.bpl
2014-01-12 08:29 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\webres.dll
2014-02-17 21:14 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2014-02-17 21:14 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
2014-02-04 03:20 - 2014-02-02 00:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
2013-12-18 21:05 - 2013-12-18 21:05 - 00016808 _____ () C:\Program Files (x86)\Java\jre7\bin\jp2native.dll
2014-02-04 03:20 - 2014-02-02 00:42 - 13616456 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\Users\Tom\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Norton Online Backup => c:\program files (x86)\symantec\norton online backup\nobuclient.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "c:\program files (x86)\common files\java\java update\jusched.exe"
==================== Faulty Device Manager Devices =============
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.
Error: (02/19/2014 01:15:21 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: BtvStack.exe, Version: 8.0.0.220, Zeitstempel: 0x51061e13
Name des fehlerhaften Moduls: audio.dll, Version: 8.0.0.220, Zeitstempel: 0x51061de7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001aed8
ID des fehlerhaften Prozesses: 0xe94
Startzeit der fehlerhaften Anwendung: 0xBtvStack.exe0
Pfad der fehlerhaften Anwendung: BtvStack.exe1
Pfad des fehlerhaften Moduls: BtvStack.exe2
Berichtskennung: BtvStack.exe3
Vollständiger Name des fehlerhaften Pakets: BtvStack.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BtvStack.exe5
Error: (02/18/2014 08:29:38 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: BtvStack.exe, Version: 8.0.0.220, Zeitstempel: 0x51061e13
Name des fehlerhaften Moduls: audio.dll, Version: 8.0.0.220, Zeitstempel: 0x51061de7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001aed8
ID des fehlerhaften Prozesses: 0x1224
Startzeit der fehlerhaften Anwendung: 0xBtvStack.exe0
Pfad der fehlerhaften Anwendung: BtvStack.exe1
Pfad des fehlerhaften Moduls: BtvStack.exe2
Berichtskennung: BtvStack.exe3
Vollständiger Name des fehlerhaften Pakets: BtvStack.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BtvStack.exe5
Error: (02/18/2014 08:15:52 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (02/18/2014 08:13:24 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
System errors:
=============
Error: (02/19/2014 04:45:31 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 04:14:36 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 04:14:36 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 04:14:36 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 04:14:36 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 04:14:35 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR9 gefunden.
Error: (02/19/2014 01:17:21 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/19/2014 01:14:37 PM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/19/2014 01:14:37 PM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (02/19/2014 01:14:36 PM) (Source: DCOM) (User: ACER)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Microsoft Office Sessions:
=========================
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4
Error: (02/19/2014 04:08:18 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4
Error: (02/19/2014 03:16:01 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4
Error: (02/19/2014 01:15:21 PM) (Source: Application Error)(User: )
Description: BtvStack.exe8.0.0.22051061e13audio.dll8.0.0.22051061de7c0000005000000000001aed8e9401cf2d6c2ea40071C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exeC:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dll804ee5e7-995f-11e3-bebd-24fd52154251
Error: (02/18/2014 08:29:38 PM) (Source: Application Error)(User: )
Description: BtvStack.exe8.0.0.22051061e13audio.dll8.0.0.22051061de7c0000005000000000001aed8122401cf2cdfa5d93043C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exeC:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dll00fca969-98d3-11e3-bebd-24fd52154251
Error: (02/18/2014 08:15:52 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
Error: (02/18/2014 08:13:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 8010.27 MB
Available physical RAM: 5772.11 MB
Total Pagefile: 16202.27 MB
Available Pagefile: 13502.05 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:674.48 GB) (Free:431.77 GB) NTFS
Drive g: () (Fixed) (Total:465.76 GB) (Free:278.04 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 699 GB) (Disk ID: A57EFACF)
Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 000FC36D)
Partition 1: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
20.02.2014, 14:19
| #10 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des Laptops Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Task: {33BFA2B8-9758-48A9-B088-3E0760E38C57} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2
C:\PROGRA~1\COMMON~1\System\SysMenu.dll
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Meldung sollte weg sein
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.02.2014, 15:48
| #11 |
| | Fehlermeldung beim Start des Laptops Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-02-2014 Ran by Tom at 2014-02-20 15:35:40 Run:1 Running from C:\Users\Tom\Desktop\Trojaner Board Boot Mode: Normal ============================================== Content of fixlist: ***************** Task: {33BFA2B8-9758-48A9-B088-3E0760E38C57} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 C:\PROGRA~1\COMMON~1\System\SysMenu.dll ***************** HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{33BFA2B8-9758-48A9-B088-3E0760E38C57} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{33BFA2B8-9758-48A9-B088-3E0760E38C57} => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SMupdate2 => Key deleted successfully. "C:\PROGRA~1\COMMON~1\System\SysMenu.dll" => File/Directory not found. ==== End of Fixlog ==== Ich start dann nochmal neu, hoffe mal das es geklappt hat Ne, kommt immer noch... jetzt aber nurnoch 2x beim start anstatt 3x. Jetzt steht unter dem ganzen: Das Modul wurde nicht gefunden. Kann es sein das ich die Datei garnicht mehr auf dem Laptop hab? |
|
21.02.2014, 11:06
| #12 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des Laptops Die Datei ist schon lange weg, da ist nur noch ein Rest in einem Task. Bitte frisches FRST und Additional Logfile.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
21.02.2014, 19:14
| #13 |
| | Fehlermeldung beim Start des Laptops FRST Additions Logfile: [CODE]Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-02-2014 Ran by Tom at 2014-02-21 18:41:13 Running from C:\Users\Tom\Desktop\Trojaner Board Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892} AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F} AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9} ==================== Installed Programs ====================== clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov) Acer Device Fast-lane (Version: 1.00.3011 - Acer Incorporated) Acer Instant Update Service (Version: 1.00.3015 - Acer Incorporated) Acer Power Management (Version: 7.00.3013 - Acer Incorporated) Acer Recovery Management (Version: 6.00.3016 - Acer Incorporated) AcerCloud Docs (x32 Version: 1.01.2008 - Acer Incorporated) AcerCloud Portal (x32 Version: 2.02.2021 - Acer Incorporated) Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.70 - Adobe Systems Incorporated) Advanced SystemCare 7 (x32 Version: 7.1.0 - IObit) Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc) Aliens vs. Predator (x32 Version: - ) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden BitTorrent (HKCU Version: 7.8.2.30489 - BitTorrent Inc.) BrowserProtect (x32 Version: - ) <==== ATTENTION CCleaner (Version: 4.09 - Piriform) Cinema 4D version R12 (x32 Version: R12 - Salat Production) clear.fi Media (x32 Version: 2.02.2012 - Acer Incorporated) clear.fi Photo (x32 Version: 2.02.2016 - Acer Incorporated) Creature Chaos 4.22 (x32 Version: - Creature Chaos Mod Team) Creature Chaos 4.23 (x32 Version: - ) DAEMON Tools Lite (x32 Version: 4.48.1.0347 - Disc Soft Ltd) Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden Distributed Computing Experiment (Version: - ) Dolby Home Theater v4 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc) ETDWare PS/2-X64 11.6.17.002_WHQL (Version: 11.6.17.002 - ELAN Microelectronic Corp.) Fallout New Vegas Ultimate Edition (x32 Version: - ) Google Chrome (x32 Version: 33.0.1750.117 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Identity Card (x32 Version: 2.00.3006 - Acer Incorporated) Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (x32 Version: 10.18.10.3316 - Intel Corporation) Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 2.0.0.37149 - Intel Corporation) Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden IObit Uninstaller (x32 Version: 3.0.5.1228 - IObit) Java 7 Update 51 (x32 Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden Jaws Unleashed version 1.0 (x32 Version: 1.0 - Majesco Entertainment) JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden Launch Manager (x32 Version: 7.0.10 - Acer Inc.) Live Updater (x32 Version: 2.00.3010 - Acer Incorporated) Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden Metal Gear Rising Revengance (x32 Version: - Konami) Microsoft Office (x32 Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0 - Microsoft Corporation) Mixamo Fuse version 0.9.3.1 (x32 Version: 0.9.3.1 - Mixamo) MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001 - MotioninJoy | Playstation 3|Xbox 360|Dualshock 3|Sixaxis|Game|Driver|) Nero BackItUp (x32 Version: 12.5.5000 - Nero AG) Hidden Nero BackItUp 12 Essentials OEM.a01 (x32 Version: 12.5.00500 - Nero AG) Nero BackItUp Help (CHM) (x32 Version: 12.0.10000 - Nero AG) Hidden Nero ControlCenter (x32 Version: 11.0.15600 - Nero AG) Hidden Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden Nero Launcher (x32 Version: 12.2.7000 - Nero AG) Hidden Nero RescueAgent (x32 Version: 12.0.3001 - Nero AG) Hidden Nero RescueAgent Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden Nexus Mod Manager (Version: 0.47.3 - Black Tree Gaming) Norton Online Backup (x32 Version: 2.2.3.51r2 - Symantec Corporation) Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden Office Addin (x32 Version: 2.02.2008 - Acer) Office Addin 2003 (x32 Version: 2.02.2008 - Acer) Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.220 - Qualcomm Atheros Communications) Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (x32 Version: 11.41 - Qualcomm Atheros) Realtek High Definition Audio Driver (x32 Version: 6.0.1.7111 - Realtek Semiconductor Corp.) Realtek PCIE Card Reader (x32 Version: 6.2.8400.28124 - Realtek Semiconductor Corp.) Shared C Run-time for x64 (Version: 10.0.0 - McAfee) Show-Password (x32 Version: - Show-Password LTD) <==== ATTENTION Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.) Skyrim NPC Editor (x32 Version: 0.75.1 - foretrenty) Smart Defrag 3 (x32 Version: 3.0 - IObit) Smart Technology Programming Software 7.0.27.13 (Version: 7.0.27.13 - Mad Catz) Sony PC Companion 2.10.188 (x32 Version: 2.10.188 - Sony) Steam (x32 Version: - Valve Corporation) Surfing Protection (x32 Version: 1.0 - IObit) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden Tellurian 2.01 (HKCU Version: - ) The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (x32 Version: 1 - ) Unity (x32 Version: - Unity Technologies ApS) Unity Web Player (HKCU Version: - Unity Technologies ApS) Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation) VLC media player 2.1.3 (x32 Version: 2.1.3 - VideoLAN) WildTangent Games (x32 Version: 1.0.4.0 - WildTangent) WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH) World Machine 2.2 Professional Edition (x32 Version: - ) XMedia Recode Version 3.1.7.9 (x32 Version: 3.1.7.9 - XMedia Recode) ZBrush 4 (x32 Version: 4.0 - Pixologic) ZBrush 4 (x32 Version: 4.0 - Pixologic) Hidden ZBrush 4R6 (x32 Version: 4R6 - Pixologic) ==================== Restore Points ========================= 05-02-2014 21:02:26 Windows Modules Installer 13-02-2014 20:33:04 Geplanter Prüfpunkt 16-02-2014 20:47:04 Windows Modules Installer 19-02-2014 16:57:44 Installed Java 7 Update 51 20-02-2014 20:39:06 Windows Modules Installer ==================== Hosts content: ========================== 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {003589F6-38C8-4CCB-B220-296FE7C8A82B} - \iWebar-enabler No Task File Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {166DAEA0-B3A5-4598-9728-4C22480A9AFF} - \iWebar-updater No Task File Task: {188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} - \iWebar-firefoxinstaller No Task File Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {23F1ADC9-0E5C-458D-8C87-CD34BA1C052D} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-01-09] (IObit) Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {34B5F279-7DA5-4330-87BD-89D99E9ECCBA} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-02-08] () Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation) Task: {3866453C-18F1-44A8-B7D0-97DF63B19F53} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {42794B70-F362-48C7-AA45-8F164C6462AA} - System32\Tasks\ASC7_SkipUac_Tom => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe [2013-12-10] (IObit) Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {4A72EE9A-EE7D-4213-B9E6-565FD449A374} - \MySearchDial No Task File Task: {4C2C58FD-27CF-4716-9155-732CAE308F5E} - \iWebar-codedownloader No Task File Task: {5226A5B0-C414-49C7-93E8-AEEC31B82D17} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe [2013-12-03] (IObit) Task: {5282C51F-DEA4-4C07-8612-825B685533F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-08] (Google Inc.) Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {73829F72-FE6D-4CB3-ABD0-DFF65B88B905} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {83D3EA2F-52F1-46C0-BA7D-28A805B49940} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8B83415D-78E4-4E87-9D6C-05D9E4301DDA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd) Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {A1CD3E5A-854B-4C06-9702-C242B7B62FAF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation) Task: {C8C808B0-F4AF-4F07-BB70-71C0E8E1ED0F} - \iWebar-chromeinstaller No Task File Task: {CD455373-9569-46E1-ADE8-3B7BF21EFCA6} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated) Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D5E06250-3270-4D27-950B-32A884018B46} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-09-01] (Dolby Laboratories Inc.) Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {D94CFF4C-A713-4825-9F9E-09DA961ED5B8} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-03-13] () Task: {D9B313DA-8103-4F47-A417-147527C4920C} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-02-08] () Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {DE03735A-F195-456F-89CD-8EC4BE44AF32} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated) Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: {EB59083F-5271-45BA-99B7-A47BB1015FAD} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe Task: {F445B4EE-FF5C-412F-B093-3A387E8AF118} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] () Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job => C:\Program Files (x86)\IObit\Advance SystemCare 7\ASC.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-07-27 05:25 - 2013-02-21 06:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll 2013-10-03 23:42 - 2013-10-03 23:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2014-02-17 21:14 - 2013-10-31 11:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe 2013-02-08 22:24 - 2013-02-08 22:24 - 00044616 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe 2013-02-08 22:24 - 2013-02-08 22:24 - 00025672 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe 2014-01-23 06:57 - 2014-01-23 06:57 - 00106136 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.2.550.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL 2014-01-12 08:29 - 2013-10-25 11:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\sqlite3.dll 2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll 2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll 2014-01-12 08:29 - 2013-01-15 17:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madExcept_.bpl 2014-01-12 08:29 - 2013-01-15 17:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madBasic_.bpl 2014-01-12 08:29 - 2013-01-15 17:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\madDisAsm_.bpl 2014-01-12 08:29 - 2013-01-15 17:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advance SystemCare 7\webres.dll 2014-02-17 21:14 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll 2014-02-17 21:14 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll 2013-07-27 04:59 - 2012-06-25 03:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2013-07-27 05:25 - 2013-02-21 06:58 - 00089672 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll 2014-02-04 03:20 - 2014-02-02 00:41 - 00715592 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll 2014-02-04 03:20 - 2014-02-02 00:41 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll 2014-02-04 03:20 - 2014-02-02 00:42 - 04055368 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll 2014-02-04 03:20 - 2014-02-02 00:42 - 00399688 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll 2014-02-04 03:20 - 2014-02-02 00:41 - 01634632 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\Temp:373E1720 AlternateDataStreams: C:\Users\Tom\SkyDrive:ms-properties ==================== Safe Mode (whitelisted) =================== ==================== Disabled items from MSCONFIG ============== MSCONFIG\startupreg: Norton Online Backup => c:\program files (x86)\symantec\norton online backup\nobuclient.exe MSCONFIG\startupreg: SunJavaUpdateSched => "c:\program files (x86)\common files\java\java update\jusched.exe" ==================== Faulty Device Manager Devices ============= Name: Programmable Root Enumerator Description: Programming Support Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a} Manufacturer: Mad Catz Service: SaiNtBus Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Programmable Root Enumerator Description: Programming Support Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a} Manufacturer: Mad Catz Service: SaiNtBus Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Programmable Root Enumerator Description: Programming Support Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a} Manufacturer: Mad Catz Service: SaiNtBus Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Programmable Root Enumerator Description: Programming Support Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a} Manufacturer: Mad Catz Service: SaiNtBus Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Bluetooth Audio Device Description: Bluetooth Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Qualcomm Atheros Communications Service: BTATH_A2DP Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Virtual Bluetooth Support (Include Audio) Description: Virtual Bluetooth Support (Include Audio) Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5} Manufacturer: Qualcomm Atheros Communications Service: AthBTPort Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Bluetooth LWFLT Device Description: Bluetooth LWFLT Device Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5} Manufacturer: Qualcomm Atheros Communications Service: BTATH_LWFLT Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Event log errors: ========================= Application errors: ================== Error: (02/21/2014 00:26:29 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (02/21/2014 00:26:29 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (02/21/2014 00:26:29 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (02/21/2014 00:02:55 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: BtvStack.exe, Version: 8.0.0.220, Zeitstempel: 0x51061e13 Name des fehlerhaften Moduls: audio.dll, Version: 8.0.0.220, Zeitstempel: 0x51061de7 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000001aed8 ID des fehlerhaften Prozesses: 0x854 Startzeit der fehlerhaften Anwendung: 0xBtvStack.exe0 Pfad der fehlerhaften Anwendung: BtvStack.exe1 Pfad des fehlerhaften Moduls: BtvStack.exe2 Berichtskennung: BtvStack.exe3 Vollständiger Name des fehlerhaften Pakets: BtvStack.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BtvStack.exe5 Error: (02/21/2014 00:02:40 PM) (Source: ESENT) (User: ) Description: SettingSyncHost (3284) {5D633610-042B-46AC-BF8C-F9A4C1C766BB}: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\Users\Tom\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb00005.log. Error: (02/20/2014 04:10:44 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Unity.exe, Version: 4.3.2.30490, Zeitstempel: 0x52a8de6d Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16502, Zeitstempel: 0x52c35a76 Ausnahmecode: 0xc000041d Fehleroffset: 0x0003ea02 ID des fehlerhaften Prozesses: 0x1260 Startzeit der fehlerhaften Anwendung: 0xUnity.exe0 Pfad der fehlerhaften Anwendung: Unity.exe1 Pfad des fehlerhaften Moduls: Unity.exe2 Berichtskennung: Unity.exe3 Vollständiger Name des fehlerhaften Pakets: Unity.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Unity.exe5 Error: (02/20/2014 04:10:42 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Unity.exe, Version: 4.3.2.30490, Zeitstempel: 0x52a8de6d Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16502, Zeitstempel: 0x52c35a76 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0003ea02 ID des fehlerhaften Prozesses: 0x1260 Startzeit der fehlerhaften Anwendung: 0xUnity.exe0 Pfad der fehlerhaften Anwendung: Unity.exe1 Pfad des fehlerhaften Moduls: Unity.exe2 Berichtskennung: Unity.exe3 Vollständiger Name des fehlerhaften Pakets: Unity.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Unity.exe5 Error: (02/20/2014 03:39:04 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: BtvStack.exe, Version: 8.0.0.220, Zeitstempel: 0x51061e13 Name des fehlerhaften Moduls: audio.dll, Version: 8.0.0.220, Zeitstempel: 0x51061de7 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000001aed8 ID des fehlerhaften Prozesses: 0x1b20 Startzeit der fehlerhaften Anwendung: 0xBtvStack.exe0 Pfad der fehlerhaften Anwendung: BtvStack.exe1 Pfad des fehlerhaften Moduls: BtvStack.exe2 Berichtskennung: BtvStack.exe3 Vollständiger Name des fehlerhaften Pakets: BtvStack.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BtvStack.exe5 Error: (02/20/2014 00:24:37 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (02/20/2014 00:24:37 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. System errors: ============= Error: (02/21/2014 00:16:03 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:16:03 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:16:03 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:16:03 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:05:11 PM) (Source: DCOM) (User: NT-AUTORITÄT) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:02:47 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:02:15 PM) (Source: Service Control Manager) (User: ) Description: Dienst "LiveUpdate" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (02/21/2014 00:02:14 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:02:14 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (02/21/2014 00:02:14 PM) (Source: DCOM) (User: ACER) Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AcerTomS-1-5-21-1714481637-1342907066-1217133146-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Microsoft Office Sessions: ========================= Error: (02/21/2014 00:26:29 PM) (Source: SideBySide)(User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4 Error: (02/21/2014 00:26:29 PM) (Source: SideBySide)(User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4 Error: (02/21/2014 00:26:29 PM) (Source: SideBySide)(User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4 Error: (02/21/2014 00:02:55 PM) (Source: Application Error)(User: ) Description: BtvStack.exe8.0.0.22051061e13audio.dll8.0.0.22051061de7c0000005000000000001aed885401cf2ef460f2088fC:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exeC:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dllb703c439-9ae7-11e3-bebf-24fd52154251 Error: (02/21/2014 00:02:40 PM) (Source: ESENT)(User: ) Description: SettingSyncHost3284{5D633610-042B-46AC-BF8C-F9A4C1C766BB}: C:\Users\Tom\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb00005.log-1811 (0xfffff8ed) Error: (02/20/2014 04:10:44 PM) (Source: Application Error)(User: ) Description: Unity.exe4.3.2.3049052a8de6dntdll.dll6.3.9600.1650252c35a76c000041d0003ea02126001cf2e4ad5cbffcbC:\Program Files (x86)\Unity\Editor\Unity.exeC:\WINDOWS\SYSTEM32\ntdll.dll2abc30e9-9a41-11e3-bebd-24fd52154251 Error: (02/20/2014 04:10:42 PM) (Source: Application Error)(User: ) Description: Unity.exe4.3.2.3049052a8de6dntdll.dll6.3.9600.1650252c35a76c00000050003ea02126001cf2e4ad5cbffcbC:\Program Files (x86)\Unity\Editor\Unity.exeC:\WINDOWS\SYSTEM32\ntdll.dll299480ab-9a41-11e3-bebd-24fd52154251 Error: (02/20/2014 03:39:04 PM) (Source: Application Error)(User: ) Description: BtvStack.exe8.0.0.22051061e13audio.dll8.0.0.22051061de7c0000005000000000001aed81b2001cf2e49690b9508C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exeC:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Audio\audio.dllbe78d552-9a3c-11e3-bebd-24fd52154251 Error: (02/20/2014 00:24:37 PM) (Source: SideBySide)(User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4 Error: (02/20/2014 00:24:37 PM) (Source: SideBySide)(User: ) Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4 ==================== Memory info =========================== Percentage of memory in use: 21% Total physical RAM: 8010.27 MB Available physical RAM: 6271.54 MB Total Pagefile: 16202.27 MB Available Pagefile: 13610.11 MB Total Virtual: 131072 MB Available Virtual: 131071.83 MB ==================== Drives ================================ Drive c: (Acer) (Fixed) (Total:674.48 GB) (Free:430.76 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 699 GB) (Disk ID: A57EFACF) Partition: GPT Partition Type. ==================== End Of Log ============================ FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-02-2014
Ran by Tom (administrator) on ACER on 21-02-2014 18:39:49
Running from C:\Users\Tom\Desktop\Trojaner Board
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool
Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums
==================== Processes (Whitelisted) =================
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\Monitor.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxext.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(IObit) C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe
(Akamai Technologies, Inc.) C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-19] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2874256 2012-12-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\.DEFAULT\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2285344 2013-12-18] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Akamai NetSession Interface] - C:\Users\Tom\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Advanced SystemCare 7] - C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCTray.exe [2285344 2013-12-09] (IObit)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-1714481637-1342907066-1217133146-1001\...\MountPoints2: {81bb0d98-9802-11e3-bebc-24fd52154251} - "F:\Startme.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Eazel search
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzuyB0CtDyDtDyB0F0Czz0BtDzyyEzzzz0AtN0D0Tzu0CyByBzytN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=267277642&ir=
SearchScopes: HKLM - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKCU - DefaultScope {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {6C3D3A72-B126-48D4-B521-9B8AA01081EE} URL = hxxp://en.eazel.com/results.php?id=AAA5500b652def8b67ec854ba7a6607610b&oid=1&cat=web&co=&lg=en&q={searchTerms}
SearchScopes: HKCU - {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://ch.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tom\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-13]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR Extension: (Google Docs) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-14]
CHR Extension: (Google Drive) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-14]
CHR Extension: (YouTube) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-14]
CHR Extension: (Spry this!) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-01-08]
CHR Extension: (Google-Suche) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-14]
CHR Extension: (Easy Video Downloader Express) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbcpmdpjjlhppmhfkcgbeanaanipdjbk [2014-02-13]
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2013-12-14]
CHR Extension: (Video Downloader professional) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2014-02-13]
CHR Extension: (AdBlock) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2013-12-14]
CHR Extension: (Advanced SystemCare Surfing Protection) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd [2014-02-21]
CHR Extension: (Google Wallet) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-14]
CHR Extension: (Google Mail) - C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-14]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-06-28]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2014-02-17]
CHR HKLM-x32\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx [2014-01-21]
==================== Services (Whitelisted) =================
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advance SystemCare 7\ASCService.exe [881440 2013-12-09] (IObit)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-11-13] (Kaspersky Lab ZAO)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-20] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-07-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [41504 2014-01-23] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-23] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-13] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29792 2013-12-19] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2014-02-17] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-11-13] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2014-02-17] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-11-13] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-01-21] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-07-27] (Dritek System Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 SaiK1705; C:\Windows\system32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\drivers\SaiU1705.sys [47208 2012-09-20] (Saitek)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-23] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-21 18:09 - 2014-02-21 18:09 - 210094628 _____ () C:\Users\Tom\Downloads\poe-fighters.mp4.crdownload
2014-02-21 15:54 - 2014-02-21 15:54 - 1162580252 _____ () C:\Users\Tom\Downloads\The.Fighters.2.Beatdown.German.2011.AC3.REPACK.DVDRiP.XViD-ROOR.avi.crdownload
2014-02-21 13:07 - 2014-02-21 13:08 - 13519971 _____ () C:\Users\Tom\Downloads\Lion.rar
2014-02-21 13:07 - 2014-02-21 13:08 - 09807122 _____ () C:\Users\Tom\Downloads\Leopard.rar
2014-02-21 13:07 - 2014-02-21 13:08 - 08964323 _____ () C:\Users\Tom\Downloads\Jaguar.rar
2014-02-21 13:07 - 2014-02-21 13:08 - 05691273 _____ () C:\Users\Tom\Downloads\Puma.rar
2014-02-21 13:07 - 2014-02-21 13:08 - 04592467 _____ () C:\Users\Tom\Downloads\Lynx.rar
2014-02-21 13:07 - 2014-02-21 13:07 - 12455008 _____ () C:\Users\Tom\Downloads\LionF.rar
2014-02-21 12:19 - 2014-02-21 12:22 - 24333534 _____ () C:\Users\Tom\Downloads\GiantForestpig.rar
2014-02-21 12:19 - 2014-02-21 12:21 - 17218360 _____ () C:\Users\Tom\Downloads\BaKu.rar
2014-02-21 12:19 - 2014-02-21 12:20 - 23671178 _____ () C:\Users\Tom\Downloads\Camels.rar
2014-02-21 12:19 - 2014-02-21 12:20 - 15076001 _____ () C:\Users\Tom\Downloads\BlinkDog.rar
2014-02-21 12:19 - 2014-02-21 12:20 - 09172480 _____ () C:\Users\Tom\Downloads\ToothTiger.rar
2014-02-21 12:00 - 2014-02-21 12:00 - 00006034 _____ () C:\WINDOWS\PFRO.log
2014-02-21 12:00 - 2014-02-21 12:00 - 00000000 _____ () C:\asc_rdflag
2014-02-20 21:40 - 2014-02-21 12:04 - 00000000 ____D () C:\Users\Tom\Desktop\PSP
2014-02-20 21:39 - 2014-02-20 21:39 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-20 21:39 - 2014-02-20 21:39 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-19 18:41 - 2014-02-19 18:41 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\XMedia Recode
2014-02-19 18:10 - 2014-02-19 18:10 - 00000000 ____D () C:\Program Files (x86)\XMedia Recode
2014-02-19 18:08 - 2014-02-19 18:08 - 07289062 _____ (XMedia Recode ) C:\Users\Tom\Downloads\XMediaRecode3179_setup.exe
2014-02-19 17:58 - 2014-02-19 17:58 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-19 17:58 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-02-19 17:58 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-02-19 17:58 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-02-19 17:58 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-02-19 17:57 - 2014-02-19 17:57 - 00921000 _____ (Oracle Corporation) C:\Users\Tom\Downloads\chromeinstall-7u51.exe
2014-02-19 15:29 - 2014-02-19 15:29 - 12840299 _____ () C:\Users\Tom\Downloads\wolf.rar
2014-02-19 15:20 - 2014-02-19 15:21 - 56588002 _____ () C:\Users\Tom\Downloads\werewolf_294_MB.rar
2014-02-18 21:20 - 2014-02-18 21:21 - 77794906 _____ () C:\Users\Tom\Downloads\Skeleton Pack.unitypackage
2014-02-18 21:05 - 2014-02-21 18:38 - 00000000 ____D () C:\Users\Tom\Documents\Horror Story`s
2014-02-18 17:08 - 2014-02-18 17:09 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:28 - 2014-02-17 21:30 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:20 - 2014-02-17 21:21 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:15 - 2014-02-17 21:21 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:54 - 2014-02-21 18:39 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-17 17:37 - 2014-02-17 17:38 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:41 - 2014-02-17 12:49 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-16 18:56 - 2014-02-21 18:39 - 00000000 ____D () C:\FRST
2014-02-15 22:33 - 2014-02-15 22:34 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:19 - 2014-02-15 22:20 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-13 20:45 - 2014-02-14 00:40 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 19:06 - 2014-02-18 21:23 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-13 12:59 - 2014-02-14 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:44 - 2014-02-13 13:04 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 12:39 - 2014-02-13 13:02 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:30 - 2014-02-13 12:55 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 20:32 - 2014-02-12 20:35 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 18:19 - 2014-02-12 18:22 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 16:05 - 2014-02-21 12:02 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-12 05:50 - 2014-02-12 13:30 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-11 21:43 - 2014-02-12 17:17 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-11 18:46 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 19:42 - 2014-02-03 03:22 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 18:22 - 2014-02-02 19:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll
2014-02-01 11:32 - 2014-02-01 11:45 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:32 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys
2014-02-01 11:32 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-25 11:06 - 2014-02-20 12:08 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 17:50 - 2014-01-23 18:55 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
==================== One Month Modified Files and Folders =======
2014-02-21 18:39 - 2014-02-17 19:54 - 00000000 ____D () C:\Users\Tom\Desktop\Trojaner Board
2014-02-21 18:39 - 2014-02-16 18:56 - 00000000 ____D () C:\FRST
2014-02-21 18:38 - 2014-02-18 21:05 - 00000000 ____D () C:\Users\Tom\Documents\Horror Story`s
2014-02-21 18:34 - 2014-01-08 13:07 - 00003906 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F415039C-C647-4210-ADE6-78387975FD52}
2014-02-21 18:25 - 2014-01-08 13:08 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-21 18:18 - 2013-12-23 11:18 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-21 18:09 - 2014-02-21 18:09 - 210094628 _____ () C:\Users\Tom\Downloads\poe-fighters.mp4.crdownload
2014-02-21 18:00 - 2013-11-13 15:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-21 17:32 - 2013-11-13 14:01 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1714481637-1342907066-1217133146-1001
2014-02-21 17:13 - 2013-12-23 22:19 - 01159219 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-21 15:54 - 2014-02-21 15:54 - 1162580252 _____ () C:\Users\Tom\Downloads\The.Fighters.2.Beatdown.German.2011.AC3.REPACK.DVDRiP.XViD-ROOR.avi.crdownload
2014-02-21 13:08 - 2014-02-21 13:07 - 13519971 _____ () C:\Users\Tom\Downloads\Lion.rar
2014-02-21 13:08 - 2014-02-21 13:07 - 09807122 _____ () C:\Users\Tom\Downloads\Leopard.rar
2014-02-21 13:08 - 2014-02-21 13:07 - 08964323 _____ () C:\Users\Tom\Downloads\Jaguar.rar
2014-02-21 13:08 - 2014-02-21 13:07 - 05691273 _____ () C:\Users\Tom\Downloads\Puma.rar
2014-02-21 13:08 - 2014-02-21 13:07 - 04592467 _____ () C:\Users\Tom\Downloads\Lynx.rar
2014-02-21 13:07 - 2014-02-21 13:07 - 12455008 _____ () C:\Users\Tom\Downloads\LionF.rar
2014-02-21 12:22 - 2014-02-21 12:19 - 24333534 _____ () C:\Users\Tom\Downloads\GiantForestpig.rar
2014-02-21 12:21 - 2014-02-21 12:19 - 17218360 _____ () C:\Users\Tom\Downloads\BaKu.rar
2014-02-21 12:20 - 2014-02-21 12:19 - 23671178 _____ () C:\Users\Tom\Downloads\Camels.rar
2014-02-21 12:20 - 2014-02-21 12:19 - 15076001 _____ () C:\Users\Tom\Downloads\BlinkDog.rar
2014-02-21 12:20 - 2014-02-21 12:19 - 09172480 _____ () C:\Users\Tom\Downloads\ToothTiger.rar
2014-02-21 12:04 - 2014-02-20 21:40 - 00000000 ____D () C:\Users\Tom\Desktop\PSP
2014-02-21 12:02 - 2014-02-12 16:05 - 00000000 ___RD () C:\Users\Tom\SkyDrive
2014-02-21 12:02 - 2014-01-21 21:34 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-21 12:01 - 2014-01-08 13:08 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-21 12:01 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-21 12:00 - 2014-02-21 12:00 - 00006034 _____ () C:\WINDOWS\PFRO.log
2014-02-21 12:00 - 2014-02-21 12:00 - 00000000 _____ () C:\asc_rdflag
2014-02-21 12:00 - 2014-01-17 17:19 - 70844416 _____ () C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2014-02-21 12:00 - 2014-01-17 17:19 - 00819200 _____ () C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2014-02-21 12:00 - 2014-01-17 17:19 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2014-02-21 12:00 - 2014-01-17 17:19 - 00024576 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-02-21 12:00 - 2013-12-23 22:05 - 00000000 ____D () C:\Users\Tom
2014-02-20 23:21 - 2014-01-12 08:30 - 00000246 _____ () C:\WINDOWS\Tasks\ASC7_SkipUac_Tom.job
2014-02-20 23:21 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-20 23:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-20 22:01 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-20 21:39 - 2014-02-20 21:39 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-20 21:39 - 2014-02-20 21:39 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-20 21:38 - 2013-12-17 18:04 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\BitTorrent
2014-02-20 21:04 - 2014-02-20 20:51 - 35881849 _____ () C:\Users\Tom\Downloads\Sweet teen pleases in solo session - XBabe.mp4
2014-02-20 20:59 - 2014-02-20 20:57 - 20569762 _____ () C:\Users\Tom\Downloads\2 blond girls pee in luxury apartment.mp4
2014-02-20 20:56 - 2014-02-20 20:52 - 41945182 _____ () C:\Users\Tom\Downloads\Abby Anjelica pissing - Fetish sex video - Tube8com.mp4
2014-02-20 20:55 - 2014-02-20 20:54 - 48536318 _____ () C:\Users\Tom\Downloads\FISTING WITH SOPHIE AND SANDY - Outdoor porn tube video at YourLustcom.flv
2014-02-20 20:51 - 2014-02-20 20:50 - 29332757 _____ () C:\Users\Tom\Downloads\Dido pissing and drinking it (1).mp4
2014-02-20 20:50 - 2014-02-20 20:50 - 27120503 _____ () C:\Users\Tom\Downloads\Sweet blonde peeing and drinking her piss.mp4
2014-02-20 20:18 - 2013-12-23 11:18 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-02-20 15:35 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-20 15:35 - 2013-11-14 08:11 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-02-20 15:35 - 2013-11-14 08:11 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-02-20 12:14 - 2013-11-20 14:15 - 00000000 ____D () C:\ProgramData\Unity
2014-02-20 12:08 - 2014-01-25 11:06 - 00000000 ____D () C:\Users\Tom\Desktop\Programme
2014-02-19 18:41 - 2014-02-19 18:41 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\XMedia Recode
2014-02-19 18:22 - 2014-02-19 18:21 - 29332757 _____ () C:\Users\Tom\Downloads\Dido pissing and drinking it.mp4
2014-02-19 18:10 - 2014-02-19 18:10 - 00000000 ____D () C:\Program Files (x86)\XMedia Recode
2014-02-19 18:10 - 2014-02-19 18:06 - 12484391 _____ () C:\Users\Tom\Downloads\scat poopeeshitting.flv
2014-02-19 18:08 - 2014-02-19 18:08 - 07289062 _____ (XMedia Recode ) C:\Users\Tom\Downloads\XMediaRecode3179_setup.exe
2014-02-19 17:58 - 2014-02-19 17:58 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-02-19 17:58 - 2013-12-15 09:49 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-19 17:58 - 2013-12-15 09:49 - 00000000 ____D () C:\Program Files (x86)\Java
2014-02-19 17:57 - 2014-02-19 17:57 - 00921000 _____ (Oracle Corporation) C:\Users\Tom\Downloads\chromeinstall-7u51.exe
2014-02-19 15:29 - 2014-02-19 15:29 - 12840299 _____ () C:\Users\Tom\Downloads\wolf.rar
2014-02-19 15:21 - 2014-02-19 15:20 - 56588002 _____ () C:\Users\Tom\Downloads\werewolf_294_MB.rar
2014-02-18 21:23 - 2014-02-13 19:06 - 00000000 ____D () C:\Users\Tom\Desktop\Unity Packages
2014-02-18 21:21 - 2014-02-18 21:20 - 77794906 _____ () C:\Users\Tom\Downloads\Skeleton Pack.unitypackage
2014-02-18 17:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-18 17:09 - 2014-02-18 17:08 - 02347384 _____ (ESET) C:\Users\Tom\Downloads\esetsmartinstaller_enu.exe
2014-02-17 21:37 - 2014-02-17 21:37 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird (1).apk
2014-02-17 21:36 - 2014-02-17 21:36 - 11107181 _____ () C:\Users\Tom\Downloads\WhatsAppPLUSv5.05D-211152.apk
2014-02-17 21:30 - 2014-02-17 21:28 - 00000000 ____D () C:\Users\Tom\Desktop\Kollegah
2014-02-17 21:21 - 2014-02-17 21:20 - 03403874 _____ () C:\Users\Tom\Downloads\Poweramp Music Player (Full) v2.0.9-build-534 apkmania.com.rar
2014-02-17 21:21 - 2014-02-17 21:15 - 00000000 ____D () C:\Users\Tom\Desktop\Handy
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\ProgramData\Sony
2014-02-17 21:14 - 2014-02-17 21:14 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-02-17 21:14 - 2013-04-18 05:42 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-17 20:15 - 2014-02-17 20:15 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR (1).zip
2014-02-17 19:55 - 2014-01-19 14:12 - 00000000 ____D () C:\Users\Tom\Desktop\Bilder
2014-02-17 19:54 - 2014-02-11 18:46 - 00000000 ____D () C:\Users\Tom\Desktop\ZBrush Projects
2014-02-17 17:38 - 2014-02-17 17:37 - 00087885 _____ () C:\Users\Tom\Downloads\FRST.txt
2014-02-17 17:37 - 2014-02-17 17:37 - 02152448 _____ (Farbar) C:\Users\Tom\Downloads\FRST64.exe
2014-02-17 17:17 - 2014-02-17 17:17 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-02-17 17:14 - 2014-02-17 17:14 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-02-17 17:13 - 2014-01-19 15:19 - 00000000 ____D () C:\AdwCleaner
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-17 17:10 - 2013-11-13 13:56 - 00000000 ___RD () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-17 17:08 - 2013-08-22 15:44 - 00344712 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-17 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Malwarebytes
2014-02-17 16:56 - 2014-02-17 16:56 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-17 16:55 - 2014-02-17 16:55 - 475244249 _____ () C:\Users\Tom\Downloads\3D - GAME DEV - UNITY - 3DEXILE.ORG - EDITOR EXTENSIONS - FX - ENVIROMENTS - ENVIROMENT GATOR.zip
2014-02-17 16:54 - 2014-02-17 16:54 - 01241888 _____ () C:\Users\Tom\Downloads\adwcleaner (1).exe
2014-02-17 16:53 - 2014-02-17 16:53 - 01037530 _____ (Thisisu) C:\Users\Tom\Downloads\JRT_6.1.1.exe
2014-02-17 16:48 - 2014-02-17 16:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tom\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-17 12:53 - 2014-02-17 12:53 - 00003086 _____ () C:\WINDOWS\System32\Tasks\{A0D73CBC-1DD1-40AB-8F96-99085B4EF5E6}
2014-02-17 12:49 - 2014-02-17 12:41 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-02-17 12:42 - 2014-02-17 12:42 - 00000046 _____ () C:\Users\Tom\AppData\Roaming\WB.CFG
2014-02-17 12:06 - 2014-02-17 12:06 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00115296 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2014-02-17 12:06 - 2014-02-17 12:06 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2014-02-17 12:04 - 2014-02-17 12:04 - 131469672 _____ () C:\Users\Tom\Downloads\Top-Down Dungeons Mobile.unitypackage
2014-02-16 21:55 - 2014-02-16 21:55 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-16 21:55 - 2014-02-16 21:55 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-16 21:55 - 2014-02-16 21:55 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-16 21:54 - 2014-02-16 21:54 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-16 21:54 - 2014-02-16 21:54 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-16 21:53 - 2014-02-16 21:53 - 21199256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18643560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 18576384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 13949440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01720560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01530712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00749056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00481944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-02-16 21:53 - 2014-02-16 21:53 - 00381168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-02-16 21:53 - 2014-02-16 21:53 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-02-16 21:53 - 2014-02-16 21:53 - 00131160 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-02-16 21:53 - 2014-02-16 21:53 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-16 21:51 - 2014-02-16 21:51 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-16 21:49 - 2014-02-16 21:49 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-16 21:48 - 2014-02-16 21:48 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-16 21:48 - 2014-02-16 21:48 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-16 21:48 - 2014-02-16 21:48 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-16 21:48 - 2014-02-16 21:48 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-16 21:47 - 2014-02-16 21:47 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-16 18:58 - 2014-02-16 18:58 - 00034261 _____ () C:\Users\Tom\Downloads\Addition.txt
2014-02-15 22:34 - 2014-02-15 22:33 - 1276587574 _____ () C:\Users\Tom\Downloads\BEP3.unitypackage
2014-02-15 22:20 - 2014-02-15 22:19 - 00000000 ____D () C:\Program Files (x86)\GUM7E10.tmp
2014-02-15 22:20 - 2014-01-08 13:08 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 22:20 - 2014-01-08 13:08 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 21:56 - 2013-12-19 20:27 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Skype
2014-02-14 12:01 - 2014-02-13 12:59 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\vlc
2014-02-14 00:40 - 2014-02-13 20:45 - 548012876 _____ () C:\Users\Tom\Downloads\Pakt der Wlfe Stream Film online anschauen und downloaden - Kinoxto Alternative.flv
2014-02-13 13:04 - 2014-02-13 12:44 - 310449694 _____ () C:\Users\Tom\Downloads\sof-sleepy-hollow-s01e03-480p.mkv
2014-02-13 13:02 - 2014-02-13 12:39 - 352801052 _____ () C:\Users\Tom\Downloads\sh102de.mkv
2014-02-13 12:59 - 2014-02-13 12:59 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-02-13 12:58 - 2014-02-13 12:58 - 24677393 _____ () C:\Users\Tom\Downloads\vlc-2.1.3-win32.exe
2014-02-13 12:55 - 2014-02-13 12:30 - 366015003 _____ () C:\Users\Tom\Downloads\sh101de.mkv
2014-02-12 21:18 - 2014-01-11 08:45 - 00000000 ____D () C:\Users\Tom\AppData\Local\backburner
2014-02-12 21:18 - 2014-01-09 19:38 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-12 21:18 - 2014-01-09 16:47 - 00000000 ____D () C:\Spacekace
2014-02-12 21:18 - 2013-07-27 05:24 - 00000000 ____D () C:\ProgramData\install_clap
2014-02-12 21:18 - 2013-07-27 05:07 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-02-12 21:18 - 2013-07-27 05:05 - 00000000 ____D () C:\Dolby PCEE4
2014-02-12 20:35 - 2014-02-12 20:32 - 00000000 ____D () C:\Users\Tom\Desktop\3D Modelle
2014-02-12 20:32 - 2014-02-12 20:32 - 00915558 _____ () C:\Users\Tom\Downloads\com.dotgears.flappybird.apk
2014-02-12 20:28 - 2014-01-19 15:34 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-12 18:42 - 2013-12-27 23:56 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\DAEMON Tools Lite
2014-02-12 18:22 - 2014-02-12 18:19 - 86132083 _____ () C:\Users\Tom\Downloads\Killing Floor 1st person weapons.rar
2014-02-12 17:59 - 2014-02-12 17:59 - 00002986 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (35 animals).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00001493 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (15 animals)(also .obj format).txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000993 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 1.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000872 _____ () C:\Users\Tom\Downloads\Cinema 4D Dragons & Monsters 3D models (rigged, highpoly) Part 2.txt
2014-02-12 17:59 - 2014-02-12 17:59 - 00000090 _____ () C:\Users\Tom\Downloads\Cinema 4D Dinosaurs rigged models (25 animals+2monsters+1Homo habilis) (.c4d, .dae).txt
2014-02-12 17:17 - 2014-02-11 21:43 - 00000000 ____D () C:\Users\Tom\Desktop\The Elder Scrolls V Skyrim
2014-02-12 17:17 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\Skyrim
2014-02-12 13:36 - 2014-02-12 13:36 - 00000908 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-02-12 13:36 - 2013-12-28 03:20 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2014-02-12 13:30 - 2014-02-12 05:50 - 00000000 ____D () C:\Program Files (x86)\Bethesda Softworks
2014-02-12 06:14 - 2014-02-12 06:14 - 00000000 ____D () C:\Users\Tom\AppData\Local\FalloutNV
2014-02-12 06:14 - 2013-12-27 13:42 - 00000000 ____D () C:\Users\Tom\Documents\My Games
2014-02-12 06:02 - 2014-02-12 06:02 - 00001503 _____ () C:\Users\Public\Desktop\Fallout New Vegas.lnk
2014-02-11 21:42 - 2013-12-15 09:49 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\.minecraft
2014-02-11 20:27 - 2014-01-19 14:22 - 00000000 ____D () C:\Users\Tom\Desktop\World Maschine
2014-02-09 10:23 - 2013-11-22 14:56 - 00000000 ____D () C:\Program Files (x86)\Pixologic
2014-02-06 10:33 - 2014-02-06 10:33 - 00000000 ____D () C:\Users\Public\Documents\ZBrushData
2014-02-05 17:25 - 2014-01-03 00:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-04 20:59 - 2014-01-19 20:06 - 00000000 ____D () C:\Users\Tom\AppData\Local\Deployment
2014-02-04 20:52 - 2014-01-21 21:04 - 00165659 _____ () C:\MyXML.xml
2014-02-03 17:18 - 2014-02-03 17:18 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-03 03:22 - 2014-02-02 19:42 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-02-02 21:39 - 2014-02-02 21:39 - 00000000 ____D () C:\Users\Tom\AppData\Local\Cyberlink
2014-02-02 21:39 - 2013-07-27 05:25 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-02 19:42 - 2014-02-02 19:42 - 00000000 ____D () C:\Users\Tom\AppData\Local\LogMeIn
2014-02-02 19:00 - 2014-02-01 18:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-02-01 19:00 - 2014-02-01 19:00 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-01 19:00 - 2014-02-01 19:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-01 19:00 - 2014-02-01 19:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-01 13:45 - 2014-02-01 13:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\World Machine 2.2 Professional
2014-02-01 13:43 - 2014-02-01 13:43 - 00000000 ____D () C:\Program Files (x86)\World Machine 2 Professional
2014-02-01 12:01 - 2014-02-01 12:01 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\MotioninJoy
2014-02-01 11:45 - 2014-02-01 11:32 - 00000000 ____D () C:\Program Files\MotioninJoy
2014-02-01 11:44 - 2014-01-19 15:44 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Users\Tom\AppData\Local\Mixamo
2014-01-29 21:35 - 2014-01-29 21:35 - 00000000 ____D () C:\Program Files (x86)\Mixamo Fuse
2014-01-29 06:59 - 2013-11-20 17:16 - 00000000 ____D () C:\Users\Tom\Neuer Ordner (2)
2014-01-26 22:45 - 2014-01-26 22:45 - 00000000 ____D () C:\Users\Tom\AppData\Roaming\Activision
2014-01-26 22:34 - 2014-01-05 03:47 - 00000000 ____D () C:\Users\Tom\AppData\Local\Activision
2014-01-25 18:39 - 2013-12-28 03:51 - 00000000 ____D () C:\Games
2014-01-25 18:37 - 2014-01-25 18:37 - 00000000 ____D () C:\Users\Tom\AppData\Local\SKIDROW
2014-01-24 15:55 - 2014-01-24 15:55 - 00000000 ____D () C:\Users\Tom\AppData\Local\EA Games
2014-01-23 19:02 - 2014-01-23 19:02 - 00000000 ____D () C:\Users\Tom\AppData\Local\AliensVsPredator
2014-01-23 18:55 - 2014-01-23 17:50 - 00000000 ____D () C:\Program Files (x86)\Aliens vs. Predator
2014-01-23 13:33 - 2014-01-23 13:33 - 00041504 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2014-01-22 10:28 - 2014-01-21 17:07 - 00000000 ____D () C:\Program Files (x86)\Metal Gear Rising Revengance
Some content of TEMP:
====================
C:\Users\Tom\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-21 12:24
==================== End Of Log ============================
--- --- --- |
|
22.02.2014, 17:05
| #14 |
| /// the machine /// TB-Ausbilder | Fehlermeldung beim Start des Laptops Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Task: {003589F6-38C8-4CCB-B220-296FE7C8A82B} - \iWebar-enabler No Task File
Task: {166DAEA0-B3A5-4598-9728-4C22480A9AFF} - \iWebar-updater No Task File
Task: {188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} - \iWebar-firefoxinstaller No Task File
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4A72EE9A-EE7D-4213-B9E6-565FD449A374} - \MySearchDial No Task File
Task: {4C2C58FD-27CF-4716-9155-732CAE308F5E} - \iWebar-codedownloader No Task File
Task: {83D3EA2F-52F1-46C0-BA7D-28A805B49940} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1
C:\PROGRA~1\COMMON~1\System\SysMenu.dll
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.02.2014, 19:36
| #15 |
| | Fehlermeldung beim Start des Laptops Sorry das jetzt erst wieder was kommt, war in den Ferien. So dann hier das Fixlog Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-02-2014 02 Ran by Tom at 2014-02-27 19:34:45 Run:2 Running from C:\Users\Tom\Desktop\Trojaner Board Boot Mode: Normal ============================================== Content of fixlist: ***************** Task: {003589F6-38C8-4CCB-B220-296FE7C8A82B} - \iWebar-enabler No Task File Task: {166DAEA0-B3A5-4598-9728-4C22480A9AFF} - \iWebar-updater No Task File Task: {188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} - \iWebar-firefoxinstaller No Task File Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {4A72EE9A-EE7D-4213-B9E6-565FD449A374} - \MySearchDial No Task File Task: {4C2C58FD-27CF-4716-9155-732CAE308F5E} - \iWebar-codedownloader No Task File Task: {83D3EA2F-52F1-46C0-BA7D-28A805B49940} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 C:\PROGRA~1\COMMON~1\System\SysMenu.dll ***************** HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{003589F6-38C8-4CCB-B220-296FE7C8A82B} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{003589F6-38C8-4CCB-B220-296FE7C8A82B} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iWebar-enabler => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{166DAEA0-B3A5-4598-9728-4C22480A9AFF} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{166DAEA0-B3A5-4598-9728-4C22480A9AFF} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iWebar-updater => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{188CD3E9-5C2F-4F6C-8B79-CAB42A6B8A56} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iWebar-firefoxinstaller => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2085BF56-520D-4951-B7C0-DF34AF90CC6A} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2085BF56-520D-4951-B7C0-DF34AF90CC6A} => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{49754026-21E1-41FC-94FD-727AFE414FE7} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49754026-21E1-41FC-94FD-727AFE414FE7} => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A72EE9A-EE7D-4213-B9E6-565FD449A374} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A72EE9A-EE7D-4213-B9E6-565FD449A374} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MySearchDial => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4C2C58FD-27CF-4716-9155-732CAE308F5E} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C2C58FD-27CF-4716-9155-732CAE308F5E} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iWebar-codedownloader => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{83D3EA2F-52F1-46C0-BA7D-28A805B49940} => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83D3EA2F-52F1-46C0-BA7D-28A805B49940} => Key deleted successfully. C:\Windows\System32\Tasks\SMupdate1 => Moved successfully. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SMupdate1 => Key deleted successfully. "C:\PROGRA~1\COMMON~1\System\SysMenu.dll" => File/Directory not found. ==== End of Fixlog ==== |
|
Linear-Darstellung
