| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PC läuft nicht mehr richtig, Programme werden nicht gestartet &&Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
24.02.2014, 14:37
| #1 |
 |  PC läuft nicht mehr richtig, Programme werden nicht gestartet && Guten Tag, und zwar startet mein PC einige Programme nicht wie z.B iTunes, Origin (iTunes z.B öffnet der wenn ich drauf klicke nach mehreren Stunden WENN iTunes sich mal öffnen sollte zu bemerken ist aber dass der Prozess im Task Manager geöffnet ist..) und beim Windows Media Player wenn ich da einen Song abspielen will oder Video läuft der Song oder das Video zwar aber der Media Player ist eingefroren und ich muss ihn per Task Manager beenden. Genauso wie wenn ich Dateien von meinem Handy auf den PC kopieren will geht dies nicht stattdessen kommt die Meldung "Ein an das System angeschlossene Gerät funktioniert nicht." Oder beispielsweise auch wenn ich was installieren will (z.B Grafiktreiber) friert dies ein.. Auch Gestern als ich in Chrome war ist die ganze Zeit (200x die Minute geschätzt)  das Developer Tool aufgeploppt.Auch so von der Performance her ist er nicht so wie er vor 2 Wochen war und lässt sich nur schwer Herunterfahren. Da ich schon alles denkenswerte ausprobiert habe vom Neuinstallieren des Grafiktreibers (Wobei wie gesagt ich ihn dann nicht wieder installieren konnte, musste ich wiederum eine Systemwiederherstellung machen) bis hin zu BIOS Update weiß ich nicht mehr was ich sonst noch tun kann und hoffe hier vielleicht auf Hilfe. Danke schon mal im Voraus. FRST.txt Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-02-2014 02
Ran by Droneberg (administrator) on DANIEL-PC on 24-02-2014 15:11:22
Running from C:\Users\Droneberg\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIUE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Spotify Ltd) C:\Users\Droneberg\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\system32\mspaint.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\system32\mspaint.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [THXCfg64] - C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-01-31] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] - C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863400 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [502952 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [ASRockXTU] - [X]
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [zASRockInstantBoot] - [X]
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoSimpleNetIDList] 1
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\MountPoints2: E - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\MountPoints2: {12cd7cab-cb6d-11e1-bbf2-806e6f6e6963} - D:\InstallNavi.exe
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\MountPoints2: {1a39b00d-512a-11e2-b3e6-bc5ff43b5014} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\MountPoints2: {777ffc82-7b2b-11e3-a71e-806e6f6e6963} - D:\Autorun.exe
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\MountPoints2: {d7ca9bcd-5763-11e3-84a7-c3be330aff2b} - F:\Setup.exe
AppInit_DLLs: C:\Windows\system32\appinit_dll.dll => C:\Windows\system32\appinit_dll.dll [475424 2012-02-05] (Lucidlogix Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyServer: 211.212.238.218:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x05851551EB86CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM-x32 - DefaultScope {48650A3A-887E-4EAA-9854-CFF425051EEB} URL =
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10005&barid={3B2B4ABE-0D4D-11E2-AF87-BC5FF43B5014}
SearchScopes: HKCU - DefaultScope {48650A3A-887E-4EAA-9854-CFF425051EEB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3297265&CUI=UN37956263851543828&UM=2
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119370&babsrc=SP_ss&mntrId=28050a52000000000000801f026e5967
SearchScopes: HKCU - {19B94D72-1CB9-4bb6-9607-952942DEAC97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {48650A3A-887E-4EAA-9854-CFF425051EEB} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3297265&CUI=UN37956263851543828&UM=2
SearchScopes: HKCU - {973B06D6-F28C-4D7F-AB2D-8873448BF7BE} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=HIP&o=102875&src=kw&q={searchTerms}&locale=&apn_ptnrs=6F&apn_dtid=YYYYYYYYDE&apn_uid=f80a4512-a07c-40c2-9f06-f366c035ae7d&apn_sauid=B3544BC7-F387-4D93-9BF4-D1D3DC0EC474
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10005&barid={3B2B4ABE-0D4D-11E2-AF87-BC5FF43B5014}
SearchScopes: HKCU - {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Chrome:
=======
CHR HomePage: hxxp://www1.delta-search.com/?affID=121562&tt=180413_ctrl&babsrc=HP_ss&mntrId=2805801F026E5967
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Google Update) - C:\Users\Droneberg\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (ProxTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-14]
CHR Extension: (Google-Suche) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-14]
CHR Extension: (Stylish) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2012-11-13]
CHR Extension: (Logitech Flow Scroll) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-10-29]
CHR Extension: (AdBlock) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-07-14]
CHR Extension: (Dolce&Gabbana) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpfbmpaebheclpaopjodkelcihldloih [2013-03-08]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-08-27]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2013-11-22]
CHR Extension: (Google Wallet) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKCU\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2013-12-12]
CHR HKLM-x32\...\Chrome\Extension: [dednnpigldgdbpgcdpfppmlcnnbjciel] - C:\Users\Droneberg\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx [2012-10-03]
CHR HKLM-x32\...\Chrome\Extension: [geooogfhpjdpeiphckpbgkhpbeobcaoi] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-10-29]
CHR HKLM-x32\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2013-12-12]
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-10-03]
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx [2012-10-03]
CHR StartMenuInternet: Google Chrome - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703584 2011-09-16] (SEIKO EPSON CORPORATION)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-14] ()
R2 Realtek11nSU; C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek)
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S3 Ctafiltv; C:\Windows\System32\drivers\Ctafiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-20] (DT Soft Ltd)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-01-12] (FNet Co., Ltd.)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3531136 2009-06-23] ()
S3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2012-08-21] (The OpenVPN Project)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-20] ()
S3 ALSysIO; \??\C:\Users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys [X]
S3 cpuz135; \??\C:\Users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X]
S3 MBfilt; system32\drivers\MBfilt64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-24 15:08 - 2014-02-24 15:09 - 00049778 _____ () C:\Users\Droneberg\Desktop\Addition1.txt
2014-02-24 15:00 - 2014-02-24 15:11 - 00023204 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-24 14:59 - 2014-02-24 15:11 - 00000000 ____D () C:\FRST
2014-02-24 14:59 - 2014-02-24 14:59 - 02155520 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000480 _____ () C:\Users\Droneberg\Desktop\defogger_disable.log
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 13:53 - 2014-02-24 13:53 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 13:52 - 2014-02-24 13:53 - 00017799 _____ () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry.aup
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:06 - 2014-02-24 00:08 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-20 19:36 - 2014-02-20 19:40 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 14:43 - 2014-02-20 14:43 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:43 - 2014-02-20 13:45 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-18 18:57 - 2014-02-18 18:57 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:47 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:32 - 2014-02-18 18:42 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:15 - 2014-02-18 18:19 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 16:24 - 2014-02-18 16:27 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 14:58 - 2014-02-18 15:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:23 - 2014-02-17 00:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:57 - 2014-02-16 16:58 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 21:50 - 2014-02-15 22:02 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:42 - 2013-12-04 17:29 - 08658952 _____ (SCS Software) C:\Users\Droneberg\Desktop\eurotrucks2.exe
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 21:26 - 2014-02-23 23:11 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 23:13 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 19:48 - 2014-02-15 20:07 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-14 20:46 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-13 03:59 - 2013-11-27 00:29 - 05693440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-13 03:59 - 2013-11-26 23:49 - 06573056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-12 17:43 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-12 17:43 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-12 17:43 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-12 17:43 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-12 17:43 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-12 17:43 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-12 17:43 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-12 17:39 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:39 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:39 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:39 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:39 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:39 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:39 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:39 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:39 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:39 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:39 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:39 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:39 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:39 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:39 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:39 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:39 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:39 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:39 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:39 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:39 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:39 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:39 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:36 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:36 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:36 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-12 17:36 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-12 17:35 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 17:35 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:35 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:35 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-09 18:29 - 2014-02-18 15:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-06 19:46 - 2014-02-06 19:46 - 00005262 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-01 00:18 - 2014-02-01 00:24 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 21:40 - 2014-01-30 13:30 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-27 04:41 - 2014-01-27 04:42 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 02:53 - 2014-01-27 02:54 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
2014-01-25 01:41 - 2014-01-25 01:41 - 00000836 _____ () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
==================== One Month Modified Files and Folders =======
2014-02-24 15:11 - 2014-02-24 15:00 - 00023204 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-24 15:11 - 2014-02-24 14:59 - 00000000 ____D () C:\FRST
2014-02-24 15:09 - 2014-02-24 15:08 - 00049778 _____ () C:\Users\Droneberg\Desktop\Addition1.txt
2014-02-24 14:59 - 2014-02-24 14:59 - 02155520 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000480 _____ () C:\Users\Droneberg\Desktop\defogger_disable.log
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 14:58 - 2012-07-11 16:17 - 00000000 ____D () C:\Users\Droneberg
2014-02-24 14:54 - 2012-07-11 16:17 - 01852680 _____ () C:\Windows\WindowsUpdate.log
2014-02-24 14:42 - 2012-09-11 16:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Spotify
2014-02-24 14:42 - 2012-08-26 22:50 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-24 14:32 - 2013-04-03 02:06 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-24 14:30 - 2012-07-14 18:29 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-24 14:25 - 2012-08-20 16:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-24 13:54 - 2012-08-05 02:45 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Audacity
2014-02-24 13:53 - 2014-02-24 13:53 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 13:53 - 2014-02-24 13:52 - 00017799 _____ () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry.aup
2014-02-24 10:40 - 2012-09-11 16:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Spotify
2014-02-24 06:42 - 2012-08-26 22:50 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:08 - 2014-02-24 00:06 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-23 23:32 - 2013-04-03 02:06 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-23 23:11 - 2014-02-15 21:26 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-23 21:30 - 2012-07-14 18:29 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-23 19:29 - 2014-01-12 01:58 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-02-23 17:56 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-23 17:56 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-23 16:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-23 03:23 - 2013-07-28 05:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-22 19:20 - 2011-04-12 08:43 - 08475738 _____ () C:\Windows\system32\perfh007.dat
2014-02-22 19:20 - 2011-04-12 08:43 - 02570432 _____ () C:\Windows\system32\perfc007.dat
2014-02-22 19:20 - 2009-07-14 06:13 - 00006444 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-21 21:50 - 2012-03-08 10:30 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\CrashDumps
2014-02-21 19:25 - 2012-08-20 16:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:25 - 2012-08-20 16:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 19:25 - 2012-08-20 16:47 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 20:19 - 2012-11-06 23:46 - 00000000 ____D () C:\FFOutput
2014-02-20 19:40 - 2014-02-20 19:36 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 17:38 - 2012-07-14 18:58 - 00000000 ____D () C:\ProgramData\Origin
2014-02-20 17:17 - 2012-10-29 17:29 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-20 14:43 - 2014-02-20 14:43 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-20 14:43 - 2014-01-12 01:58 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-02-20 14:43 - 2012-07-11 16:33 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-02-20 14:43 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-20 14:42 - 2010-11-21 04:47 - 01263252 _____ () C:\Windows\PFRO.log
2014-02-20 14:42 - 2009-07-14 05:51 - 02055612 _____ () C:\Windows\setupact.log
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:45 - 2014-02-20 13:43 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-20 01:18 - 2013-04-20 22:12 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 22:53 - 2012-08-31 00:13 - 00008192 _____ () C:\Users\Droneberg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-19 19:05 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Apple Computer
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-19 01:20 - 2012-12-27 04:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\vlc
2014-02-18 18:57 - 2014-02-18 18:57 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:57 - 2014-02-18 18:47 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:42 - 2014-02-18 18:32 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:42 - 2012-10-29 17:25 - 00000000 ____D () C:\AMD
2014-02-18 18:19 - 2014-02-18 18:15 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 18:19 - 2013-08-26 21:10 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Razer
2014-02-18 18:19 - 2013-08-26 21:09 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-02-18 18:11 - 2012-10-03 12:26 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Mozilla
2014-02-18 16:27 - 2014-02-18 16:24 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-18 15:45 - 2012-07-14 18:51 - 00000000 ____D () C:\Windows\pss
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 15:22 - 2014-02-18 14:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 15:22 - 2014-02-09 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-18 15:22 - 2013-12-27 18:03 - 00000000 ____D () C:\Program Files\AMD
2014-02-18 15:22 - 2013-12-09 14:09 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Raptr
2014-02-18 15:22 - 2013-05-16 16:46 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-18 15:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-18 15:21 - 2014-01-12 03:21 - 00000000 ____D () C:\Program Files\ATI
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-18 14:42 - 2012-07-14 18:57 - 00000000 ____D () C:\ProgramData\AMD
2014-02-17 00:23 - 2014-02-16 19:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:58 - 2014-02-16 16:57 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 23:13 - 2014-02-15 20:22 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 22:02 - 2014-02-15 21:50 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:43 - 2013-02-26 20:27 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\SKIDROW
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 20:07 - 2014-02-15 19:48 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 18:51 - 2012-07-14 18:58 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-14 21:19 - 2013-12-17 19:59 - 00000000 ____D () C:\ProgramData\Conduit
2014-02-13 22:05 - 2013-12-13 19:51 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-02-12 20:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 17:44 - 2013-07-18 16:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-12 17:43 - 2012-07-15 09:32 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-11 06:37 - 2012-08-26 22:50 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 06:37 - 2012-08-26 22:50 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-10 21:25 - 2012-07-14 18:29 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA
2014-02-10 21:25 - 2012-07-14 18:29 - 00003718 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-07 17:24 - 2013-12-13 19:50 - 00000000 ____D () C:\Program Files (x86)\epson
2014-02-07 17:24 - 2013-12-13 19:43 - 00000000 ____D () C:\ProgramData\EPSON
2014-02-06 19:54 - 2012-11-15 19:38 - 00000000 ____D () C:\Users\Droneberg\.gimp-2.8
2014-02-06 19:46 - 2014-02-06 19:46 - 00005262 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-06 13:16 - 2014-02-12 17:39 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 17:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 17:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 17:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 17:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 17:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 17:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 17:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 17:39 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 17:39 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 17:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 17:39 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 17:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 17:39 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 17:39 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 17:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 17:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 17:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 17:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 17:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 17:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-12 17:39 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 17:39 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 17:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 17:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 17:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 17:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 17:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 17:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 17:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 17:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-01 00:25 - 2012-08-11 03:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\DivX
2014-02-01 00:24 - 2014-02-01 00:18 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 22:07 - 2013-12-06 23:02 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-01-31 22:07 - 2013-12-06 23:01 - 01106360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-01-31 22:07 - 2013-12-06 23:00 - 10171456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-01-31 22:07 - 2013-12-06 22:59 - 10145128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-01-31 22:07 - 2013-11-29 18:55 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07 - 2013-11-29 18:52 - 01328328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-01-31 22:06 - 2013-12-06 22:58 - 06716264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-01-31 22:06 - 2013-12-06 22:57 - 10899624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06 - 2013-12-06 22:56 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:06 - 2013-12-06 21:53 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:30 - 2013-12-06 21:22 - 01148416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-30 13:30 - 2014-01-27 21:40 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 04:42 - 2014-01-27 04:41 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 04:39 - 2013-03-05 21:03 - 00000000 ____D () C:\Program Files (x86)\ROCCAT
2014-01-27 04:10 - 2014-01-03 18:12 - 00000000 ____D () C:\Program Files (x86)\Sapphire TRIXX
2014-01-27 02:54 - 2014-01-27 02:53 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
2014-01-26 18:37 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Apple Computer
2014-01-26 18:33 - 2013-08-25 02:29 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\uTorrent
2014-01-26 05:02 - 2013-09-14 02:06 - 00003668 _____ () C:\Windows\System32\Tasks\Wecker - WE
2014-01-25 01:41 - 2014-01-25 01:41 - 00000836 _____ () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-01-25 01:31 - 2012-07-17 22:33 - 00000000 ____D () C:\ProgramData\Apple
Files to move or delete:
====================
C:\Users\Droneberg\AppData\Roaming\Camdata.ini
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini
Some content of TEMP:
====================
C:\Users\Droneberg\AppData\Local\Temp\12-10_vista_win7_win8_64_dd_ccc_whql_net4.exe
C:\Users\Droneberg\AppData\Local\Temp\AskPIP_FF_.exe
C:\Users\Droneberg\AppData\Local\Temp\CTPBSeq.exe
C:\Users\Droneberg\AppData\Local\Temp\DEL2BC1.EXE
C:\Users\Droneberg\AppData\Local\Temp\DivXSetup.exe
C:\Users\Droneberg\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Droneberg\AppData\Local\Temp\DSETUP.dll
C:\Users\Droneberg\AppData\Local\Temp\dsetup32.dll
C:\Users\Droneberg\AppData\Local\Temp\DXSETUP.exe
C:\Users\Droneberg\AppData\Local\Temp\fp_pl_pfs_installer-1.exe
C:\Users\Droneberg\AppData\Local\Temp\fp_pl_pfs_installer-2.exe
C:\Users\Droneberg\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Droneberg\AppData\Local\Temp\HC2Set64Pvt.exe
C:\Users\Droneberg\AppData\Local\Temp\icqsetup.exe
C:\Users\Droneberg\AppData\Local\Temp\installerdll15594998.dll
C:\Users\Droneberg\AppData\Local\Temp\installerdll201288.dll
C:\Users\Droneberg\AppData\Local\Temp\installerdll2614342.dll
C:\Users\Droneberg\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Droneberg\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Droneberg\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Droneberg\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Droneberg\AppData\Local\Temp\LMkRstPt.exe
C:\Users\Droneberg\AppData\Local\Temp\ose00000.exe
C:\Users\Droneberg\AppData\Local\Temp\raptrpatch.exe
C:\Users\Droneberg\AppData\Local\Temp\raptr_stub.exe
C:\Users\Droneberg\AppData\Local\Temp\setpointdeu.exe
C:\Users\Droneberg\AppData\Local\Temp\Setup.exe
C:\Users\Droneberg\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Droneberg\AppData\Local\Temp\sfextra.dll
C:\Users\Droneberg\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Droneberg\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Droneberg\AppData\Local\Temp\sonarinst.exe
C:\Users\Droneberg\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Droneberg\AppData\Local\Temp\swt-win32-3740.dll
C:\Users\Droneberg\AppData\Local\Temp\tmp1DAD.exe
C:\Users\Droneberg\AppData\Local\Temp\uninst1.exe
C:\Users\Droneberg\AppData\Local\Temp\Uninstall.exe
C:\Users\Droneberg\AppData\Local\Temp\UninstallRC-8876480.dll
C:\Users\Droneberg\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Droneberg\AppData\Local\Temp\utt8DB0.tmp.exe
C:\Users\Droneberg\AppData\Local\Temp\_is5BA7.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
Addition.txt ist im Anhang. Geändert von daniel4453 (24.02.2014 um 15:36 Uhr) |
|
24.02.2014, 16:24
| #2 |
| /// the machine /// TB-Ausbilder    | PC läuft nicht mehr richtig, Programme werden nicht gestartet && hi,
__________________Scan mit Combofix
__________________ |
|
24.02.2014, 16:38
| #3 |
| | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Hier bitte:
__________________Code:
ATTFilter ComboFix 14-02-24.01 - Droneberg 24.02.2014 16:30:15.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.16270.13839 [GMT 1:00]
ausgeführt von:: c:\users\Droneberg\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\tmp1056.tmp
c:\windows\SysWow64\tmp1066.tmp
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-01-24 bis 2014-02-24 ))))))))))))))))))))))))))))))
.
.
2014-02-24 15:35 . 2014-02-24 15:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-02-24 15:13 . 2014-02-24 15:13 94656 ----a-w- c:\windows\system32\WPRO_41_2001woem.tmp
2014-02-24 15:04 . 2014-02-24 15:04 -------- d-----w- c:\windows\ERUNT
2014-02-24 14:42 . 2014-02-24 15:01 -------- d-----w- C:\AdwCleaner
2014-02-24 13:59 . 2014-02-24 15:00 -------- d-----w- C:\FRST
2014-02-24 13:53 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F4A6AF89-B659-4D7F-B2C7-12F3FF710D48}\mpengine.dll
2014-02-23 13:54 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-21 13:54 . 2014-02-21 13:54 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DFD195D0-C3A7-4DD3-A2FB-485B60BA4BD6}\gapaengine.dll
2014-02-18 17:56 . 2014-02-18 17:56 -------- d-----w- c:\program files\iPod
2014-02-18 17:56 . 2014-02-18 17:57 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 17:56 . 2014-02-18 17:57 -------- d-----w- c:\program files\iTunes
2014-02-18 17:47 . 2014-02-18 17:57 -------- d-----w- c:\program files (x86)\iTunes
2014-02-18 14:27 . 2014-02-18 14:27 -------- d-----w- c:\programdata\ATI
2014-02-18 13:53 . 2014-02-18 13:53 -------- d-----w- c:\program files\ATI Technologies
2014-02-15 19:22 . 2014-02-15 22:13 -------- d-----w- c:\program files (x86)\Euro Truck Simulator 2
2014-02-14 19:46 . 2012-08-21 12:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2014-02-13 02:59 . 2013-11-26 23:29 5693440 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-02-13 02:59 . 2013-11-26 22:49 6573056 ----a-w- c:\windows\system32\mstscax.dll
2014-02-12 16:39 . 2013-12-21 09:53 548864 ----a-w- c:\windows\system32\vbscript.dll
2014-02-12 16:36 . 2013-12-04 02:27 485888 ----a-w- c:\windows\system32\secproc_isv.dll
2014-02-12 16:35 . 2013-12-24 23:09 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2014-02-12 16:35 . 2013-12-24 22:48 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2014-02-12 16:35 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2014-02-12 16:35 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2014-02-09 17:29 . 2014-02-18 14:22 -------- d-----w- c:\program files (x86)\AMD AVT
2014-01-31 21:07 . 2014-01-31 21:07 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-01-31 21:07 . 2014-01-31 21:07 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-01-31 21:07 . 2014-01-31 21:07 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-01-31 21:07 . 2014-01-31 21:07 116024 ----a-w- c:\windows\system32\atiu9p64.dll
2014-01-31 21:07 . 2014-01-31 21:07 8760320 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-01-31 20:57 . 2014-01-31 20:57 13929472 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-01-31 20:43 . 2014-01-31 20:43 230912 ----a-w- c:\windows\system32\clinfo.exe
2014-01-31 20:43 . 2014-01-31 20:43 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-01-31 20:43 . 2014-01-31 20:43 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-01-31 20:43 . 2014-01-31 20:43 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-01-31 20:43 . 2014-01-31 20:43 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-01-31 20:42 . 2014-01-31 20:42 28424704 ----a-w- c:\windows\system32\amdocl64.dll
2014-01-31 20:40 . 2014-01-31 20:40 23903232 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-01-31 20:38 . 2014-01-31 20:38 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-01-31 20:38 . 2014-01-31 20:38 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-01-31 20:26 . 2014-01-31 20:26 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-01-31 20:26 . 2014-01-31 20:26 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-01-31 20:26 . 2014-01-31 20:26 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-01-31 20:26 . 2014-01-31 20:26 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-01-31 20:26 . 2014-01-31 20:26 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-01-31 20:26 . 2014-01-31 20:26 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-01-31 20:24 . 2014-01-31 20:24 126464 ----a-w- c:\windows\system32\mantle64.dll
2014-01-31 20:24 . 2014-01-31 20:24 113152 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-01-31 20:23 . 2014-01-31 20:23 5350400 ----a-w- c:\windows\system32\amdmantle64.dll
2014-01-31 20:22 . 2014-01-31 20:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-01-31 20:22 . 2014-01-31 20:22 27152384 ----a-w- c:\windows\system32\atio6axx.dll
2014-01-31 20:10 . 2014-01-31 20:10 4286976 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-01-31 20:06 . 2014-01-31 20:06 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-01-31 20:06 . 2014-01-31 20:06 586240 ----a-w- c:\windows\system32\atieclxx.exe
2014-01-31 20:05 . 2014-01-31 20:05 240128 ----a-w- c:\windows\system32\atiesrxx.exe
2014-01-31 20:03 . 2014-01-31 20:03 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-01-31 20:03 . 2014-01-31 20:03 22834688 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-01-31 19:59 . 2014-01-31 19:59 81920 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-01-31 19:59 . 2014-01-31 19:59 79360 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-01-31 19:48 . 2014-01-31 19:48 44544 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-01-31 19:47 . 2014-01-31 19:47 35840 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-01-31 19:37 . 2014-01-31 19:37 806912 ----a-w- c:\windows\system32\coinst_13.350.dll
2014-01-31 19:30 . 2014-01-31 19:30 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-01-31 19:29 . 2014-01-31 19:29 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 146432 ----a-w- c:\windows\system32\atig6txx.dll
2014-01-31 19:29 . 2014-01-31 19:29 133120 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-01-31 19:28 . 2014-01-31 19:28 636928 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-01-31 19:25 . 2014-01-31 19:25 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-01-31 19:23 . 2014-01-31 19:23 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-01-31 19:23 . 2014-01-31 19:23 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-01-31 19:23 . 2014-01-31 19:23 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-01-31 19:23 . 2014-01-31 19:23 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-01-31 14:53 . 2014-01-31 14:53 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-01-31 14:49 . 2014-01-31 14:49 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-24 15:13 . 2012-07-11 15:33 34752 ----a-w- c:\windows\system32\drivers\WPRO_41_2001.sys
2014-02-21 18:25 . 2012-08-20 15:47 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-21 18:25 . 2012-08-20 15:47 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-02-12 16:43 . 2012-07-15 08:32 88567024 ----a-w- c:\windows\system32\MRT.exe
2014-01-31 21:07 . 2013-11-29 17:55 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-01-31 21:07 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-01-31 21:07 . 2013-11-29 17:52 1328328 ----a-w- c:\windows\system32\aticfx64.dll
2014-01-31 21:07 . 2013-12-06 22:01 1106360 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-01-31 21:07 . 2013-12-06 22:00 10171456 ----a-w- c:\windows\system32\atidxx64.dll
2014-01-31 21:07 . 2013-12-06 21:59 10145128 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-01-31 21:06 . 2013-12-06 21:58 6716264 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-01-31 21:06 . 2013-12-06 21:57 10899624 ----a-w- c:\windows\system32\atiumd6a.dll
2014-01-31 21:06 . 2013-12-06 21:56 7892000 ----a-w- c:\windows\system32\atiumd64.dll
2014-01-31 20:06 . 2013-12-06 20:53 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-01-31 19:30 . 2013-12-06 20:22 1148416 ----a-w- c:\windows\system32\atiadlxx.dll
2014-01-19 07:33 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-12 01:07 . 2014-01-12 01:07 16648 ----a-w- c:\windows\system32\drivers\FNETURPX.SYS
2013-12-19 16:45 . 2013-12-19 16:45 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-12-19 16:44 . 2013-12-19 16:44 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-12-18 20:09 . 2014-01-18 19:30 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 06:11 . 2013-12-18 06:11 354656 ----a-w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
2013-12-17 14:00 . 2012-07-16 01:04 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-12-14 17:45 . 2012-07-14 18:27 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-12-14 14:01 . 2012-07-16 00:16 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-12-03 22:45 . 2012-07-16 00:13 3123272 ----a-w- c:\windows\SysWow64\pbsvc.exe
2013-12-02 18:54 . 2012-07-15 16:40 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-11-27 12:36 . 2013-11-27 12:36 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 12:36 . 2013-11-27 12:36 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-27 12:36 . 2013-11-27 12:36 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-27 12:36 . 2013-11-27 12:36 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-27 12:36 . 2013-11-27 12:36 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-27 12:36 . 2013-11-27 12:36 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-27 12:36 . 2013-11-27 12:36 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-27 12:36 . 2013-11-27 12:36 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-27 12:36 . 2013-11-27 12:36 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-27 12:36 . 2013-11-27 12:36 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-27 12:36 . 2013-11-27 12:36 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-27 12:36 . 2013-11-27 12:36 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 12:36 . 2013-11-27 12:36 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-27 12:36 . 2013-11-27 12:36 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-27 12:36 . 2013-11-27 12:36 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-27 12:36 . 2013-11-27 12:36 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-27 12:36 . 2013-11-27 12:36 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-27 12:36 . 2013-11-27 12:36 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-27 12:36 . 2013-11-27 12:36 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-27 12:36 . 2013-11-27 12:36 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-27 12:36 . 2013-11-27 12:36 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-27 12:36 . 2013-11-27 12:36 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-27 12:36 . 2013-11-27 12:36 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-27 12:36 . 2013-11-27 12:36 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-27 12:36 . 2013-11-27 12:36 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-27 12:36 . 2013-11-27 12:36 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-27 12:36 . 2013-11-27 12:36 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-27 12:36 . 2013-11-27 12:36 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-27 12:36 . 2013-11-27 12:36 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-27 12:36 . 2013-11-27 12:36 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-27 12:36 . 2013-11-27 12:36 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-27 12:36 . 2013-11-27 12:36 413696 ----a-w- c:\windows\system32\html.iec
2013-11-27 12:36 . 2013-11-27 12:36 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 12:36 . 2013-11-27 12:36 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-27 12:36 . 2013-11-27 12:36 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-27 12:36 . 2013-11-27 12:36 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-27 12:36 . 2013-11-27 12:36 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-27 12:36 . 2013-11-27 12:36 235520 ----a-w- c:\windows\system32\url.dll
2013-11-27 12:36 . 2013-11-27 12:36 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-27 12:36 . 2013-11-27 12:36 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-27 12:36 . 2013-11-27 12:36 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-27 12:36 . 2013-11-27 12:36 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-27 12:36 . 2013-11-27 12:36 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-27 12:36 . 2013-11-27 12:36 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-27 12:36 . 2013-11-27 12:36 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-27 12:36 . 2013-11-27 12:36 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-27 12:36 . 2013-11-27 12:36 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-27 12:36 . 2013-11-27 12:36 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-27 12:36 . 2013-11-27 12:36 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-27 12:36 . 2013-11-27 12:36 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-27 12:36 . 2013-11-27 12:36 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-27 12:36 . 2013-11-27 12:36 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-11-27 01:41 . 2014-01-15 18:34 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-11-27 01:41 . 2014-01-15 18:34 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-11-27 01:41 . 2014-01-15 18:34 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-11-27 01:41 . 2014-01-15 18:34 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-11-27 01:41 . 2014-01-15 18:34 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-11-27 01:41 . 2014-01-15 18:34 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-11-27 01:41 . 2014-01-15 18:34 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2014-01-31 389120]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE" [2012-02-28 283232]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-02-05 43848]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-26 291608]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"THX TruStudio NB Settings"="c:\program files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" [2011-05-19 909824]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-01-31 767200]
"ROCCAT Savu Gaming Mouse"="c:\program files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" [2012-09-10 872048]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-09-12 56128]
"FUFAXSTM"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe" [2012-07-09 863400]
"FUFAXRCV"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe" [2012-07-09 502952]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2012-04-02 1058912]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-11-15 1861968]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2014-02-06 152392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleNetIDList"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ALSysIO;ALSysIO;c:\users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys;c:\users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys [x]
R3 cpuz135;cpuz135;c:\users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys;c:\users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]
R3 cpuz136;cpuz136;c:\windows\TEMP\cpuz136\cpuz136_x64.sys;c:\windows\TEMP\cpuz136\cpuz136_x64.sys [x]
R3 Ctafiltv;Ctafiltv;c:\windows\system32\drivers\Ctafiltv.sys;c:\windows\SYSNATIVE\drivers\Ctafiltv.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\SysWOW64\FsUsbExDisk.SYS;c:\windows\SysWOW64\FsUsbExDisk.SYS [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys;c:\windows\SYSNATIVE\DRIVERS\netaapl64.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 tap0901_openvpn_accl;TAP-Win32 Adapter V9 for OpenVPN Accelerator;c:\windows\system32\DRIVERS\tap0901_openvpn_accl.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901_openvpn_accl.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS;c:\windows\SYSNATIVE\drivers\FNETURPX.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 EPSON_PM_RPCV4_05;EPSON V3 Service4(05);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage-Technologie;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [x]
S2 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 MyEpson Portal Service;MyEpson Portal Service;c:\program files (x86)\EPSON\MyEpson Portal\mepService.exe;c:\program files (x86)\EPSON\MyEpson Portal\mepService.exe [x]
S2 Realtek11nSU;Realtek11nSU;c:\program files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe;c:\program files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys;c:\windows\SYSNATIVE\DRIVERS\RTL8192su.sys [x]
S3 VirtuWDDM;VirtuWDDM;c:\windows\system32\DRIVERS\VirtuWDDM.sys;c:\windows\SYSNATIVE\DRIVERS\VirtuWDDM.sys [x]
S3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys;c:\windows\SYSNATIVE\drivers\WPRO_41_2001.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2014-02-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-20 18:25]
.
2014-02-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
- c:\users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-03 21:27]
.
2014-02-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
- c:\users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-03 21:27]
.
2014-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-26 21:50]
.
2014-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-26 21:50]
.
2014-02-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
- c:\users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 17:29]
.
2014-02-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
- c:\users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 17:29]
.
2014-02-24 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16 10:54]
.
2014-02-23 c:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- c:\program files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16 10:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"THXCfg64"="c:\windows\system32\THXCfg64.dll" [2011-05-13 26624]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-10-24 13662936]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-11-15 391152]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-11-15 771056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\appinit_dll.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 211.212.238.218:3128
TCP: DhcpNameServer = 192.168.0.1
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-ASRockXTU - (no file)
Wow6432Node-HKCU-Run-zASRockInstantBoot - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-175748367-2924991802-3135039626-1000\Software\SecuROM\License information*]
"datasecu"=hex:95,9d,62,ce,0a,94,bb,a7,26,5c,50,57,74,c4,40,3d,7c,2c,01,83,08,
c3,f1,16,f3,da,bb,4d,e1,e3,a8,ba,7a,26,bb,9b,d4,57,cf,ad,61,30,8d,13,92,3f,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_USERS\S-1-5-21-175748367-2924991802-3135039626-1000_Classes\CLSID]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_70.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-02-24 16:37:00
ComboFix-quarantined-files.txt 2014-02-24 15:37
.
Vor Suchlauf: 16 Verzeichnis(se), 472.387.575.808 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 493.138.022.400 Bytes frei
.
- - End Of File - - 379EA0F7D7E5DA834744BB655DB3B91C
|
|
25.02.2014, 13:04
| #4 |
| /// the machine /// TB-Ausbilder | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
25.02.2014, 14:51
| #5 |
| | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Mbam-Log: Code:
ATTFilter Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.02.25.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16518 Droneberg :: DANIEL-PC [Administrator] Schutz: Aktiviert 25.02.2014 14:11:45 mbam-log-2014-02-25 (14-11-45).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 246903 Laufzeit: 2 Minute(n), 39 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) JRT.txt Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 7 Home Premium x64
Ran by Droneberg on 24.02.2014 at 16:04:13,36
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Successfully stopped: [Service] wcuservice_stc_ie
Successfully deleted: [Service] wcuservice_stc_ie
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-175748367-2924991802-3135039626-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{48650A3A-887E-4EAA-9854-CFF425051EEB}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{973B06D6-F28C-4D7F-AB2D-8873448BF7BE}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Droneberg\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\Droneberg\appdata\local\cre"
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{256EAD95-C419-4618-A981-1EA34A79BE85}
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{3EAD4043-2B25-4A04-8FC1-9E96066E6005}
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{66EEF971-4857-476A-9AF2-92F9B6D21C31}
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{A789D541-4A18-43A8-AA53-5F5CBDA97763}
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{BB53DC32-EEEC-42BC-BBB1-27008EE71451}
Successfully deleted: [Empty Folder] C:\Users\Droneberg\appdata\local\{F1BF4C6F-DD47-4C03-A7B9-04594CE7F47F}
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24.02.2014 at 16:07:42,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter # AdwCleaner v3.019 - Bericht erstellt am 24/02/2014 um 15:43:29
# Aktualisiert 17/02/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Droneberg - DANIEL-PC
# Gestartet von : C:\Users\Droneberg\Desktop\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\Users\DRONEB~1\AppData\Local\Temp\Uninstall.exe
Datei Gefunden : C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
Datei Gefunden : C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
Datei Gefunden : C:\Windows\System32\Tasks\BackgroundContainer Startup Task
Ordner Gefunden C:\Program Files (x86)\ICQ6Toolbar
Ordner Gefunden C:\Program Files (x86)\Iminent
Ordner Gefunden C:\Program Files (x86)\myfree codec
Ordner Gefunden C:\Program Files (x86)\Splashtop
Ordner Gefunden C:\Program Files (x86)\TechSmith
Ordner Gefunden C:\ProgramData\Ask
Ordner Gefunden C:\ProgramData\Babylon
Ordner Gefunden C:\ProgramData\Conduit
Ordner Gefunden C:\ProgramData\DeviceVM
Ordner Gefunden C:\ProgramData\ICQ\ICQToolbar
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Ordner Gefunden C:\ProgramData\Splashtop
Ordner Gefunden C:\ProgramData\TechSmith
Ordner Gefunden C:\Users\DRONEB~1\AppData\Local\Temp\AskSearch
Ordner Gefunden C:\Users\DRONEB~1\AppData\Local\Temp\Conduit
Ordner Gefunden C:\Users\DRONEB~1\AppData\Local\Temp\NativeMessaging
Ordner Gefunden C:\Users\DRONEB~1\AppData\Local\Temp\OCS
Ordner Gefunden C:\Users\Droneberg\AppData\Local\apn
Ordner Gefunden C:\Users\Droneberg\AppData\Local\eSupport.com
Ordner Gefunden C:\Users\Droneberg\AppData\Local\NativeMessaging
Ordner Gefunden C:\Users\Droneberg\AppData\Local\SwvUpdater
Ordner Gefunden C:\Users\Droneberg\AppData\Local\TechSmith
Ordner Gefunden C:\Users\Droneberg\AppData\LocalLow\boost_interprocess
Ordner Gefunden C:\Users\Droneberg\AppData\LocalLow\Conduit
Ordner Gefunden C:\Users\Droneberg\AppData\Roaming\Babylon
Ordner Gefunden C:\Users\Droneberg\AppData\Roaming\DeviceVM
Ordner Gefunden C:\Users\Droneberg\AppData\Roaming\Media Finder
Ordner Gefunden C:\Users\Droneberg\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Ordner Gefunden C:\Users\Droneberg\AppData\Roaming\registry mechanic
Ordner Gefunden C:\Windows\SysWOW64\AI_RecycleBin
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKCU\Software\59ededcb46de943
Schlüssel Gefunden : HKCU\Software\APN PIP
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\MediaFinder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Schlüssel Gefunden : HKCU\Software\Myfree Codec
Schlüssel Gefunden : HKCU\Software\OCS
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\APN PIP
Schlüssel Gefunden : [x64] HKCU\Software\Conduit
Schlüssel Gefunden : [x64] HKCU\Software\MediaFinder
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}
Schlüssel Gefunden : [x64] HKCU\Software\Myfree Codec
Schlüssel Gefunden : [x64] HKCU\Software\OCS
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : HKLM\Software\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\MF
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Toolbar.CT3297265
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\Software\DataMngr
Schlüssel Gefunden : HKLM\Software\Freeze.com
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Schlüssel Gefunden : HKLM\Software\ICQ\ICQToolbar
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_camstudio_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_camstudio_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_flashphoenix-photo-recovery_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_flashphoenix-photo-recovery_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gefunden : HKLM\Software\Myfree Codec
Schlüssel Gefunden : HKLM\Software\PIP
Schlüssel Gefunden : HKLM\Software\Splashtop Inc.
Schlüssel Gefunden : HKLM\Software\systweak
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16518
-\\ Google Chrome v
[ Datei : C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gefunden : homepage
*************************
AdwCleaner[R0].txt - [19458 octets] - [24/02/2014 15:43:29]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [19519 octets] ##########
FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-02-2014 01
Ran by Droneberg (administrator) on DANIEL-PC on 25-02-2014 15:01:43
Running from C:\Users\Droneberg\Desktop
Windows 7 Ultimate (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIUE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\Droneberg\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [THXCfg64] - C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-01-31] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] - C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863400 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [502952 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoSimpleNetIDList] 1
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll => C:\Windows\System32\appinit_dll.dll [475424 2012-02-05] (Lucidlogix Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyServer: 211.212.238.218:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x05851551EB86CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
SearchScopes: HKCU - {19B94D72-1CB9-4bb6-9607-952942DEAC97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Chrome:
=======
CHR HomePage: hxxp://www1.delta-search.com/?affID=121562&tt=180413_ctrl&babsrc=HP_ss&mntrId=2805801F026E5967
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Google Update) - C:\Users\Droneberg\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (ProxTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-14]
CHR Extension: (Google-Suche) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-14]
CHR Extension: (Stylish) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2012-11-13]
CHR Extension: (Logitech Flow Scroll) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-10-29]
CHR Extension: (AdBlock) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-07-14]
CHR Extension: (Dolce&Gabbana) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpfbmpaebheclpaopjodkelcihldloih [2013-03-08]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-08-27]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2013-11-22]
CHR Extension: (Google Wallet) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKCU\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [geooogfhpjdpeiphckpbgkhpbeobcaoi] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-10-29]
CHR HKLM-x32\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2012-10-29]
CHR StartMenuInternet: Google Chrome - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703584 2011-09-16] (SEIKO EPSON CORPORATION)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-14] ()
R2 Realtek11nSU; C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek)
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S3 Ctafiltv; C:\Windows\System32\drivers\Ctafiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-20] (DT Soft Ltd)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-01-12] (FNet Co., Ltd.)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3531136 2009-06-23] ()
S3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2012-08-21] (The OpenVPN Project)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-24] ()
S3 ALSysIO; \??\C:\Users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
U3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz135; \??\C:\Users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X]
S3 MBfilt; system32\drivers\MBfilt64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-25 15:01 - 2014-02-25 15:01 - 00019628 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-25 14:56 - 2014-02-25 14:56 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner (2)
2014-02-25 14:31 - 2014-02-25 14:31 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-02-24 22:32 - 2014-02-24 22:33 - 00615470 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:28 - 2014-02-24 16:37 - 00000000 ____D () C:\ComboFix
2014-02-24 16:28 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-24 16:28 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-24 16:28 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-24 16:27 - 2014-02-24 16:37 - 00000000 ____D () C:\Qoobox
2014-02-24 16:27 - 2014-02-24 16:36 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:13 - 2014-02-24 16:13 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 16:03 - 2014-02-24 16:03 - 01037734 _____ (Thisisu) C:\Users\Droneberg\Desktop\JRT.exe
2014-02-24 15:42 - 2014-02-25 14:19 - 00000000 ____D () C:\AdwCleaner
2014-02-24 15:42 - 2014-02-24 15:42 - 01241834 _____ () C:\Users\Droneberg\Desktop\adwcleaner.exe
2014-02-24 15:34 - 2014-02-24 15:34 - 00012488 _____ () C:\Users\Droneberg\Desktop\Addition.zip
2014-02-24 14:59 - 2014-02-25 15:01 - 00000000 ____D () C:\FRST
2014-02-24 14:59 - 2014-02-25 14:31 - 02156032 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 13:53 - 2014-02-24 15:17 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:06 - 2014-02-24 00:08 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-20 19:36 - 2014-02-20 19:40 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:43 - 2014-02-20 13:45 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:47 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:32 - 2014-02-18 18:42 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:15 - 2014-02-18 18:19 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 16:24 - 2014-02-18 16:27 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 14:58 - 2014-02-18 15:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:23 - 2014-02-17 00:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:57 - 2014-02-16 16:58 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 21:50 - 2014-02-15 22:02 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:42 - 2013-12-04 17:29 - 08658952 _____ (SCS Software) C:\Users\Droneberg\Desktop\eurotrucks2.exe
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 21:26 - 2014-02-23 23:11 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 23:13 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 19:48 - 2014-02-15 20:07 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-14 20:46 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-13 03:59 - 2013-11-27 00:29 - 05693440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-13 03:59 - 2013-11-26 23:49 - 06573056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-12 17:43 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-12 17:43 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-12 17:43 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-12 17:43 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-12 17:43 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-12 17:43 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-12 17:43 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-12 17:39 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:39 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:39 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:39 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:39 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:39 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:39 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:39 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:39 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:39 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:39 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:39 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:39 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:39 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:39 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:39 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:39 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:39 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:39 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:39 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:39 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:39 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:39 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:36 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:36 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:36 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-12 17:36 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-12 17:35 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 17:35 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:35 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:35 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-09 18:29 - 2014-02-18 15:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-01 00:18 - 2014-02-01 00:24 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 21:40 - 2014-01-30 13:30 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-27 04:41 - 2014-01-27 04:42 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 02:53 - 2014-01-27 02:54 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
==================== One Month Modified Files and Folders =======
2014-02-25 15:03 - 2014-02-25 15:01 - 00019628 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-25 15:01 - 2014-02-24 14:59 - 00000000 ____D () C:\FRST
2014-02-25 14:56 - 2014-02-25 14:56 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner (2)
2014-02-25 14:42 - 2012-08-26 22:50 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-25 14:32 - 2013-04-03 02:06 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-25 14:31 - 2014-02-25 14:31 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-02-25 14:31 - 2014-02-24 14:59 - 02156032 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-25 14:30 - 2012-07-14 18:29 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-25 14:28 - 2012-09-11 16:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Spotify
2014-02-25 14:25 - 2012-08-20 16:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-25 14:19 - 2014-02-24 15:42 - 00000000 ____D () C:\AdwCleaner
2014-02-25 07:32 - 2012-07-11 16:17 - 01879182 _____ () C:\Windows\WindowsUpdate.log
2014-02-25 06:42 - 2012-08-26 22:50 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-24 23:32 - 2013-04-03 02:06 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-24 22:33 - 2014-02-24 22:32 - 00615470 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 22:28 - 2012-11-15 19:38 - 00000000 ____D () C:\Users\Droneberg\.gimp-2.8
2014-02-24 21:30 - 2012-07-14 18:29 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-24 19:29 - 2014-01-12 01:58 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-02-24 17:14 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:37 - 2014-02-24 16:28 - 00000000 ____D () C:\ComboFix
2014-02-24 16:37 - 2014-02-24 16:27 - 00000000 ____D () C:\Qoobox
2014-02-24 16:37 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-24 16:36 - 2014-02-24 16:27 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:36 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:20 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-24 16:20 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-24 16:13 - 2014-02-24 16:13 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-24 16:13 - 2014-01-12 01:58 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-02-24 16:13 - 2012-07-11 16:33 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-02-24 16:13 - 2010-11-21 04:47 - 01263920 _____ () C:\Windows\PFRO.log
2014-02-24 16:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-24 16:13 - 2009-07-14 05:51 - 02055724 _____ () C:\Windows\setupact.log
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 16:03 - 2014-02-24 16:03 - 01037734 _____ (Thisisu) C:\Users\Droneberg\Desktop\JRT.exe
2014-02-24 15:44 - 2013-01-14 19:20 - 00000000 ____D () C:\ProgramData\ICQ
2014-02-24 15:42 - 2014-02-24 15:42 - 01241834 _____ () C:\Users\Droneberg\Desktop\adwcleaner.exe
2014-02-24 15:34 - 2014-02-24 15:34 - 00012488 _____ () C:\Users\Droneberg\Desktop\Addition.zip
2014-02-24 15:17 - 2014-02-24 13:53 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 14:58 - 2012-07-11 16:17 - 00000000 ____D () C:\Users\Droneberg
2014-02-24 13:54 - 2012-08-05 02:45 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Audacity
2014-02-24 10:40 - 2012-09-11 16:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Spotify
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:08 - 2014-02-24 00:06 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-23 23:11 - 2014-02-15 21:26 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-23 03:23 - 2013-07-28 05:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-22 19:20 - 2011-04-12 08:43 - 08475738 _____ () C:\Windows\system32\perfh007.dat
2014-02-22 19:20 - 2011-04-12 08:43 - 02570432 _____ () C:\Windows\system32\perfc007.dat
2014-02-22 19:20 - 2009-07-14 06:13 - 00006444 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-21 21:50 - 2012-03-08 10:30 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\CrashDumps
2014-02-21 19:25 - 2012-08-20 16:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:25 - 2012-08-20 16:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 19:25 - 2012-08-20 16:47 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 20:19 - 2012-11-06 23:46 - 00000000 ____D () C:\FFOutput
2014-02-20 19:40 - 2014-02-20 19:36 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 17:38 - 2012-07-14 18:58 - 00000000 ____D () C:\ProgramData\Origin
2014-02-20 17:17 - 2012-10-29 17:29 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:45 - 2014-02-20 13:43 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-20 01:18 - 2013-04-20 22:12 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 22:53 - 2012-08-31 00:13 - 00008192 _____ () C:\Users\Droneberg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-19 19:05 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Apple Computer
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-19 01:20 - 2012-12-27 04:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\vlc
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:57 - 2014-02-18 18:47 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:42 - 2014-02-18 18:32 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:42 - 2012-10-29 17:25 - 00000000 ____D () C:\AMD
2014-02-18 18:19 - 2014-02-18 18:15 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 18:19 - 2013-08-26 21:10 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Razer
2014-02-18 18:19 - 2013-08-26 21:09 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-02-18 18:11 - 2012-10-03 12:26 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Mozilla
2014-02-18 16:27 - 2014-02-18 16:24 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-18 15:45 - 2012-07-14 18:51 - 00000000 ____D () C:\Windows\pss
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 15:22 - 2014-02-18 14:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 15:22 - 2014-02-09 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-18 15:22 - 2013-12-27 18:03 - 00000000 ____D () C:\Program Files\AMD
2014-02-18 15:22 - 2013-12-09 14:09 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Raptr
2014-02-18 15:22 - 2013-05-16 16:46 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-18 15:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-18 15:21 - 2014-01-12 03:21 - 00000000 ____D () C:\Program Files\ATI
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-18 14:42 - 2012-07-14 18:57 - 00000000 ____D () C:\ProgramData\AMD
2014-02-17 00:23 - 2014-02-16 19:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:58 - 2014-02-16 16:57 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 23:13 - 2014-02-15 20:22 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 22:02 - 2014-02-15 21:50 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:43 - 2013-02-26 20:27 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\SKIDROW
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 20:07 - 2014-02-15 19:48 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 18:51 - 2012-07-14 18:58 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-13 22:05 - 2013-12-13 19:51 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-02-12 20:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 17:44 - 2013-07-18 16:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-12 17:43 - 2012-07-15 09:32 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-11 06:37 - 2012-08-26 22:50 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 06:37 - 2012-08-26 22:50 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-10 21:25 - 2012-07-14 18:29 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA
2014-02-10 21:25 - 2012-07-14 18:29 - 00003718 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-07 17:24 - 2013-12-13 19:50 - 00000000 ____D () C:\Program Files (x86)\epson
2014-02-07 17:24 - 2013-12-13 19:43 - 00000000 ____D () C:\ProgramData\EPSON
2014-02-06 13:16 - 2014-02-12 17:39 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 17:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 17:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 17:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 17:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 17:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 17:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 17:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 17:39 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 17:39 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 17:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 17:39 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 17:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 17:39 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 17:39 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 17:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 17:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 17:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 17:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 17:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 17:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-12 17:39 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 17:39 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 17:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 17:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 17:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 17:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 17:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 17:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 17:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 17:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-01 00:25 - 2012-08-11 03:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\DivX
2014-02-01 00:24 - 2014-02-01 00:18 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 22:07 - 2013-12-06 23:02 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-01-31 22:07 - 2013-12-06 23:01 - 01106360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-01-31 22:07 - 2013-12-06 23:00 - 10171456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-01-31 22:07 - 2013-12-06 22:59 - 10145128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-01-31 22:07 - 2013-11-29 18:55 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07 - 2013-11-29 18:52 - 01328328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-01-31 22:06 - 2013-12-06 22:58 - 06716264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-01-31 22:06 - 2013-12-06 22:57 - 10899624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06 - 2013-12-06 22:56 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:06 - 2013-12-06 21:53 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:30 - 2013-12-06 21:22 - 01148416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-30 13:30 - 2014-01-27 21:40 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 04:42 - 2014-01-27 04:41 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 04:39 - 2013-03-05 21:03 - 00000000 ____D () C:\Program Files (x86)\ROCCAT
2014-01-27 04:10 - 2014-01-03 18:12 - 00000000 ____D () C:\Program Files (x86)\Sapphire TRIXX
2014-01-27 02:54 - 2014-01-27 02:53 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
2014-01-26 18:37 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Apple Computer
2014-01-26 18:33 - 2013-08-25 02:29 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\uTorrent
2014-01-26 05:02 - 2013-09-14 02:06 - 00003668 _____ () C:\Windows\System32\Tasks\Wecker - WE
Files to move or delete:
====================
C:\Users\Droneberg\AppData\Roaming\Camdata.ini
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-18 00:56
==================== End Of Log ============================
--- --- --- Addition.txt im Anhang Geändert von daniel4453 (25.02.2014 um 15:49 Uhr) |
|
26.02.2014, 12:23
| #6 |
| /// the machine /// TB-Ausbilder | PC läuft nicht mehr richtig, Programme werden nicht gestartet &&ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ --> PC läuft nicht mehr richtig, Programme werden nicht gestartet && |
|
26.02.2014, 20:05
| #7 |
| | PC läuft nicht mehr richtig, Programme werden nicht gestartet && ESET Scan (Hatte aber Firewall an und Microsoft Security Essentials.. Macht das was aus?) log.txt Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=4c9552e8c1f8ae47aa13e23eb84cb345
# engine=17238
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-26 06:50:07
# local_time=2014-02-26 07:50:07 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 19816187 145070457 0 0
# scanned=246496
# found=0
# cleaned=0
# scan_time=6638
checkup.txt Code:
ATTFilter UNSUPPORTED OPERATING SYSTEM! ABORTED!
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014 01
Ran by Droneberg (administrator) on DANIEL-PC on 26-02-2014 19:59:23
Running from C:\Users\Droneberg\Desktop
Windows 7 Ultimate (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIUE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\Droneberg\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft Corporation) C:\Windows\system32\mspaint.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [THXCfg64] - C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-01-31] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] - C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863400 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [502952 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoSimpleNetIDList] 1
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll => C:\Windows\System32\appinit_dll.dll [475424 2012-02-05] (Lucidlogix Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyServer: 211.212.238.218:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x05851551EB86CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
SearchScopes: HKCU - {19B94D72-1CB9-4bb6-9607-952942DEAC97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Chrome:
=======
CHR HomePage: hxxp://www1.delta-search.com/?affID=121562&tt=180413_ctrl&babsrc=HP_ss&mntrId=2805801F026E5967
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Google Update) - C:\Users\Droneberg\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (ProxTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-14]
CHR Extension: (Google-Suche) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-14]
CHR Extension: (Stylish) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2012-11-13]
CHR Extension: (Logitech Flow Scroll) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-10-29]
CHR Extension: (AdBlock) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-07-14]
CHR Extension: (Dolce&Gabbana) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpfbmpaebheclpaopjodkelcihldloih [2013-03-08]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-08-27]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2013-11-22]
CHR Extension: (Google Wallet) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKCU\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [geooogfhpjdpeiphckpbgkhpbeobcaoi] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-10-29]
CHR HKLM-x32\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2012-10-29]
CHR StartMenuInternet: Google Chrome - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703584 2011-09-16] (SEIKO EPSON CORPORATION)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-14] ()
R2 Realtek11nSU; C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek)
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S3 Ctafiltv; C:\Windows\System32\drivers\Ctafiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-20] (DT Soft Ltd)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-01-12] (FNet Co., Ltd.)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3531136 2009-06-23] ()
S3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2012-08-21] (The OpenVPN Project)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-24] ()
S3 ALSysIO; \??\C:\Users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
U3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz135; \??\C:\Users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X]
S3 MBfilt; system32\drivers\MBfilt64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-26 19:59 - 2014-02-26 19:59 - 00020063 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-26 19:54 - 2014-02-26 19:54 - 00987425 _____ () C:\Users\Droneberg\Desktop\SecurityCheck.exe
2014-02-25 14:56 - 2014-02-25 15:48 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner (2)
2014-02-25 14:31 - 2014-02-26 19:58 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-02-24 22:32 - 2014-02-24 22:33 - 00615470 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:28 - 2014-02-24 16:37 - 00000000 ____D () C:\ComboFix
2014-02-24 16:28 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-24 16:28 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-24 16:28 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-24 16:27 - 2014-02-24 16:37 - 00000000 ____D () C:\Qoobox
2014-02-24 16:27 - 2014-02-24 16:36 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:13 - 2014-02-24 16:13 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 16:03 - 2014-02-24 16:03 - 01037734 _____ (Thisisu) C:\Users\Droneberg\Desktop\JRT.exe
2014-02-24 15:42 - 2014-02-25 14:19 - 00000000 ____D () C:\AdwCleaner
2014-02-24 15:42 - 2014-02-24 15:42 - 01241834 _____ () C:\Users\Droneberg\Desktop\adwcleaner.exe
2014-02-24 14:59 - 2014-02-26 19:59 - 00000000 ____D () C:\FRST
2014-02-24 14:59 - 2014-02-26 19:58 - 02155008 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 13:53 - 2014-02-24 15:17 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:06 - 2014-02-24 00:08 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-20 19:36 - 2014-02-20 19:40 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:43 - 2014-02-20 13:45 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:56 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:47 - 2014-02-18 18:57 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:32 - 2014-02-18 18:42 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:15 - 2014-02-18 18:19 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 16:24 - 2014-02-18 16:27 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 14:58 - 2014-02-18 15:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:23 - 2014-02-17 00:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:57 - 2014-02-16 16:58 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 21:50 - 2014-02-15 22:02 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:42 - 2013-12-04 17:29 - 08658952 _____ (SCS Software) C:\Users\Droneberg\Desktop\eurotrucks2.exe
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 21:26 - 2014-02-23 23:11 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 23:13 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 19:48 - 2014-02-15 20:07 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-14 20:46 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-13 03:59 - 2013-11-27 00:29 - 05693440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-13 03:59 - 2013-11-26 23:49 - 06573056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-12 17:43 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-12 17:43 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-12 17:43 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-12 17:43 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-12 17:43 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-12 17:43 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-12 17:43 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-12 17:39 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:39 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:39 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:39 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:39 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:39 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:39 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:39 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:39 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:39 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:39 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:39 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:39 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:39 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:39 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:39 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:39 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:39 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:39 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:39 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:39 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:39 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:39 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:36 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:36 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:36 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-12 17:36 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-12 17:35 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 17:35 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:35 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:35 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-09 18:29 - 2014-02-18 15:22 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-01 00:18 - 2014-02-01 00:24 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 21:40 - 2014-01-30 13:30 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-27 04:41 - 2014-01-27 04:42 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 02:53 - 2014-01-27 02:54 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
==================== One Month Modified Files and Folders =======
2014-02-26 20:00 - 2014-02-26 19:59 - 00020063 _____ () C:\Users\Droneberg\Desktop\FRST.txt
2014-02-26 19:59 - 2014-02-24 14:59 - 00000000 ____D () C:\FRST
2014-02-26 19:58 - 2014-02-25 14:31 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-02-26 19:58 - 2014-02-24 14:59 - 02155008 _____ (Farbar) C:\Users\Droneberg\Desktop\FRST64.exe
2014-02-26 19:56 - 2012-09-11 16:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Spotify
2014-02-26 19:54 - 2014-02-26 19:54 - 00987425 _____ () C:\Users\Droneberg\Desktop\SecurityCheck.exe
2014-02-26 19:54 - 2013-07-28 05:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-26 19:42 - 2012-08-26 22:50 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-26 19:30 - 2012-07-14 18:29 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-26 19:29 - 2014-01-12 01:58 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-02-26 19:25 - 2012-08-20 16:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-26 17:32 - 2013-04-03 02:06 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-02-26 17:14 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-26 16:24 - 2012-07-11 16:17 - 01936047 _____ () C:\Windows\WindowsUpdate.log
2014-02-26 06:42 - 2012-08-26 22:50 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-26 01:40 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-26 01:40 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-25 23:32 - 2013-04-03 02:06 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-25 21:30 - 2012-07-14 18:29 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-02-25 15:48 - 2014-02-25 14:56 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner (2)
2014-02-25 14:19 - 2014-02-24 15:42 - 00000000 ____D () C:\AdwCleaner
2014-02-24 22:33 - 2014-02-24 22:32 - 00615470 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 22:28 - 2012-11-15 19:38 - 00000000 ____D () C:\Users\Droneberg\.gimp-2.8
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:37 - 2014-02-24 16:28 - 00000000 ____D () C:\ComboFix
2014-02-24 16:37 - 2014-02-24 16:27 - 00000000 ____D () C:\Qoobox
2014-02-24 16:37 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-24 16:36 - 2014-02-24 16:27 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:36 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:13 - 2014-02-24 16:13 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-24 16:13 - 2014-01-12 01:58 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-02-24 16:13 - 2012-07-11 16:33 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-02-24 16:13 - 2010-11-21 04:47 - 01263920 _____ () C:\Windows\PFRO.log
2014-02-24 16:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-24 16:13 - 2009-07-14 05:51 - 02055724 _____ () C:\Windows\setupact.log
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 16:03 - 2014-02-24 16:03 - 01037734 _____ (Thisisu) C:\Users\Droneberg\Desktop\JRT.exe
2014-02-24 15:44 - 2013-01-14 19:20 - 00000000 ____D () C:\ProgramData\ICQ
2014-02-24 15:42 - 2014-02-24 15:42 - 01241834 _____ () C:\Users\Droneberg\Desktop\adwcleaner.exe
2014-02-24 15:17 - 2014-02-24 13:53 - 00000000 ____D () C:\Users\Droneberg\Desktop\Dark Horse (ft. Juicy J) - Katy Perry_data
2014-02-24 14:58 - 2014-02-24 14:58 - 00050477 _____ () C:\Users\Droneberg\Desktop\Defogger.exe
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 14:58 - 2012-07-11 16:17 - 00000000 ____D () C:\Users\Droneberg
2014-02-24 13:54 - 2012-08-05 02:45 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Audacity
2014-02-24 10:40 - 2012-09-11 16:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Spotify
2014-02-24 00:20 - 2014-02-24 00:20 - 00000000 ____D () C:\Users\Droneberg\Desktop\cd
2014-02-24 00:08 - 2014-02-24 00:06 - 149384804 _____ () C:\Users\Droneberg\Desktop\SuammCemBabasBarbiBargd2013.rar
2014-02-23 23:11 - 2014-02-15 21:26 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-22 19:20 - 2011-04-12 08:43 - 08475738 _____ () C:\Windows\system32\perfh007.dat
2014-02-22 19:20 - 2011-04-12 08:43 - 02570432 _____ () C:\Windows\system32\perfc007.dat
2014-02-22 19:20 - 2009-07-14 06:13 - 00006444 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-21 21:50 - 2012-03-08 10:30 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\CrashDumps
2014-02-21 19:25 - 2012-08-20 16:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:25 - 2012-08-20 16:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 19:25 - 2012-08-20 16:47 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 20:19 - 2012-11-06 23:46 - 00000000 ____D () C:\FFOutput
2014-02-20 19:40 - 2014-02-20 19:36 - 45269345 _____ () C:\Users\Droneberg\Desktop\Pegboard Nerds - Bassline Kickin (The Remixes).zip
2014-02-20 17:38 - 2012-07-14 18:58 - 00000000 ____D () C:\ProgramData\Origin
2014-02-20 17:17 - 2012-10-29 17:29 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-20 13:45 - 2014-02-20 13:45 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-02-20 13:45 - 2014-02-20 13:43 - 154601931 _____ () C:\Users\Droneberg\Desktop\MichaelWenDler.7z
2014-02-20 01:18 - 2013-04-20 22:12 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-02-19 22:53 - 2014-02-19 22:53 - 222781440 _____ () C:\Users\Droneberg\Desktop\aadwgw.camrec
2014-02-19 22:53 - 2012-08-31 00:13 - 00008192 _____ () C:\Users\Droneberg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-19 19:05 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Apple Computer
2014-02-19 18:26 - 2014-02-19 18:26 - 22845208 _____ () C:\Users\Droneberg\Desktop\Koven - Another Home.zip
2014-02-19 01:20 - 2012-12-27 04:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\vlc
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-18 18:57 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iTunes
2014-02-18 18:57 - 2014-02-18 18:47 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-18 18:56 - 2014-02-18 18:56 - 00000000 ____D () C:\Program Files\iPod
2014-02-18 18:42 - 2014-02-18 18:32 - 299767515 _____ (AMD Inc.) C:\Users\Droneberg\Desktop\amd_catalyst_14.1_betav1.6.exe
2014-02-18 18:42 - 2012-10-29 17:25 - 00000000 ____D () C:\AMD
2014-02-18 18:19 - 2014-02-18 18:15 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Desktop\iTunes64Setup.exe
2014-02-18 18:19 - 2013-08-26 21:10 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Razer
2014-02-18 18:19 - 2013-08-26 21:09 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-02-18 18:11 - 2012-10-03 12:26 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Mozilla
2014-02-18 16:27 - 2014-02-18 16:24 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Droneberg\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-18 15:45 - 2012-07-14 18:51 - 00000000 ____D () C:\Windows\pss
2014-02-18 15:27 - 2014-02-18 15:27 - 00000000 ____D () C:\ProgramData\ATI
2014-02-18 15:22 - 2014-02-18 14:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 15:22 - 2014-02-09 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-18 15:22 - 2013-12-27 18:03 - 00000000 ____D () C:\Program Files\AMD
2014-02-18 15:22 - 2013-12-09 14:09 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Raptr
2014-02-18 15:22 - 2013-05-16 16:46 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-18 15:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-18 15:21 - 2014-01-12 03:21 - 00000000 ____D () C:\Program Files\ATI
2014-02-18 14:53 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-18 14:42 - 2012-07-14 18:57 - 00000000 ____D () C:\ProgramData\AMD
2014-02-17 00:23 - 2014-02-16 19:23 - 194662400 _____ () C:\Users\Droneberg\Desktop\fränkert.camrec
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Desktop\öfsch.odg
2014-02-16 19:21 - 2014-02-16 19:21 - 395759616 _____ () C:\Users\Droneberg\Desktop\frigge.camrec
2014-02-16 16:58 - 2014-02-16 16:57 - 226963456 _____ () C:\Users\Droneberg\Desktop\feist.camrec
2014-02-16 16:55 - 2014-02-16 16:55 - 86720512 _____ () C:\Users\Droneberg\Desktop\denise.camrec
2014-02-15 23:13 - 2014-02-15 20:22 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 22:02 - 2014-02-15 21:50 - 516368904 _____ () C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_7_0_patch.exe
2014-02-15 21:43 - 2013-02-26 20:27 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\SKIDROW
2014-02-15 21:41 - 2014-02-15 21:41 - 02549934 _____ () C:\Users\Droneberg\Desktop\sr-ets2170uincldlc.7z
2014-02-15 21:36 - 2014-02-15 21:36 - 03895154 _____ () C:\Users\Droneberg\Desktop\EURO.TRUCK.SIMULATOR.2.V1.8.2.3S.ALL.NODVD.ZIP
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-15 20:07 - 2014-02-15 19:48 - 671664336 _____ (SCS Software ) C:\Users\Droneberg\Desktop\EuroTruckSimulator2_1_8_2_5_setup.exe
2014-02-15 18:51 - 2012-07-14 18:58 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-02-15 00:15 - 2014-02-15 00:15 - 45023232 _____ () C:\Users\Droneberg\Desktop\kinga.camrec
2014-02-13 22:05 - 2013-12-13 19:51 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-02-12 20:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 17:44 - 2013-07-18 16:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-12 17:43 - 2012-07-15 09:32 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-11 06:37 - 2012-08-26 22:50 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 06:37 - 2012-08-26 22:50 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-10 21:25 - 2012-07-14 18:29 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA
2014-02-10 21:25 - 2012-07-14 18:29 - 00003718 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-07 17:24 - 2013-12-13 19:50 - 00000000 ____D () C:\Program Files (x86)\epson
2014-02-07 17:24 - 2013-12-13 19:43 - 00000000 ____D () C:\ProgramData\EPSON
2014-02-06 13:16 - 2014-02-12 17:39 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 17:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 17:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 17:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 17:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 17:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 17:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 17:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 17:39 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 17:39 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 17:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 17:39 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 17:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 17:39 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 17:39 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 17:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 17:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 17:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 17:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 17:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 17:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-12 17:39 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 17:39 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 17:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 17:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 17:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 17:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 17:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 17:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 17:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 17:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-01 00:25 - 2012-08-11 03:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\DivX
2014-02-01 00:24 - 2014-02-01 00:18 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 22:07 - 2014-01-31 22:07 - 08760320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-01-31 22:07 - 2014-01-31 22:07 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-01-31 22:07 - 2013-12-06 23:02 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-01-31 22:07 - 2013-12-06 23:01 - 01106360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-01-31 22:07 - 2013-12-06 23:00 - 10171456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-01-31 22:07 - 2013-12-06 22:59 - 10145128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-01-31 22:07 - 2013-11-29 18:55 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07 - 2013-11-29 18:52 - 01328328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-01-31 22:06 - 2013-12-06 22:58 - 06716264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-01-31 22:06 - 2013-12-06 22:57 - 10899624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06 - 2013-12-06 22:56 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-01-31 21:57 - 2014-01-31 21:57 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-01-31 21:43 - 2014-01-31 21:43 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-01-31 21:43 - 2014-01-31 21:43 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-01-31 21:43 - 2014-01-31 21:43 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-01-31 21:42 - 2014-01-31 21:42 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-01-31 21:40 - 2014-01-31 21:40 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-01-31 21:38 - 2014-01-31 21:38 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-01-31 21:27 - 2014-01-31 21:27 - 00576040 _____ () C:\Windows\system32\atiapfxx.blb
2014-01-31 21:26 - 2014-01-31 21:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26 - 2014-01-31 21:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-01-31 21:26 - 2014-01-31 21:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-01-31 21:24 - 2014-01-31 21:24 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-01-31 21:23 - 2014-01-31 21:23 - 05350400 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-01-31 21:22 - 2014-01-31 21:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-01-31 21:10 - 2014-01-31 21:10 - 04286976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-01-31 21:06 - 2014-01-31 21:06 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-01-31 21:06 - 2014-01-31 21:06 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-01-31 21:06 - 2013-12-06 21:53 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-01-31 21:05 - 2014-01-31 21:05 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03 - 2014-01-31 21:03 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-01-31 21:03 - 2014-01-31 21:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59 - 2014-01-31 20:59 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-01-31 20:48 - 2014-01-31 20:48 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47 - 2014-01-31 20:47 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-01-31 20:43 - 2014-01-31 20:43 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-01-31 20:37 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:32 - 2014-01-31 20:32 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-01-31 20:30 - 2014-01-31 20:30 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-01-31 20:30 - 2013-12-06 21:22 - 01148416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-01-31 20:29 - 2014-01-31 20:29 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-01-31 20:28 - 2014-01-31 20:28 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-01-31 20:25 - 2014-01-31 20:25 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-01-31 20:23 - 2014-01-31 20:23 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
2014-01-31 15:53 - 2014-01-31 15:53 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49 - 2014-01-31 15:49 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-01-30 13:30 - 2014-01-27 21:40 - 00000000 ____D () C:\Users\Droneberg\Documents\Deine Bestellung Nr. 2530306_files
2014-01-28 19:38 - 2014-01-28 19:38 - 00138949 _____ () C:\Users\Droneberg\Documents\t3t.xps
2014-01-27 04:42 - 2014-01-27 04:41 - 00000029 _____ () C:\Users\Droneberg\Documents\hah.txt
2014-01-27 04:40 - 2014-01-27 04:40 - 00000000 ____D () C:\Users\Droneberg\Documents\ROCCAT
2014-01-27 04:39 - 2013-03-05 21:03 - 00000000 ____D () C:\Program Files (x86)\ROCCAT
2014-01-27 04:10 - 2014-01-03 18:12 - 00000000 ____D () C:\Program Files (x86)\Sapphire TRIXX
2014-01-27 02:54 - 2014-01-27 02:53 - 00000124 _____ () C:\Users\Droneberg\Documents\hahq.txt
Files to move or delete:
====================
C:\Users\Droneberg\AppData\Roaming\Camdata.ini
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-18 00:56
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- Probleme bestehen weiterhin anzumerken ist auch noch dass mein PC keine Elemente aktualisiert wenn ich sie z.B lösche, ich muss immer selbst aktualisieren damit es verschwindet. Anbei hab ich vor paar Tagen auch noch einen Neuen Schlüssel bzw. DWORD Eintrag in der Registry erstellt mit dem Namen "NoSimpleNetIDList" und den Wert auf 1 gestellt damit der Explorer sich wieder aktualisiert, ging auch einige Stunden jedoch dann wieder nicht..  Geändert von daniel4453 (26.02.2014 um 20:14 Uhr) |
|
27.02.2014, 18:12
| #8 |
| /// the machine /// TB-Ausbilder | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter AppInit_DLLs: C:\Windows\System32\appinit_dll.dll => C:\Windows\System32\appinit_dll.dll [475424 2012-02-05] (Lucidlogix Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
ProxyServer: 211.212.238.218:3128
C:\Users\Droneberg\AppData\Roaming\Camdata.ini
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.02.2014, 23:55
| #9 |
| | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Fixlog.txt Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-02-2014 02
Ran by Droneberg at 2014-02-27 23:21:08 Run:1
Running from C:\Users\Droneberg\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll => C:\Windows\System32\appinit_dll.dll [475424 2012-02-05] (Lucidlogix Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
ProxyServer: 211.212.238.218:3128
C:\Users\Droneberg\AppData\Roaming\Camdata.ini
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini
*****************
"C:\\Windows\\System32\\appinit_dll.dll" => Value Data removed successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => Value deleted successfully.
C:\Users\Droneberg\AppData\Roaming\Camdata.ini => Moved successfully.
C:\Users\Droneberg\AppData\Roaming\CamLayout.ini => Moved successfully.
C:\Users\Droneberg\AppData\Roaming\CamShapes.ini => Moved successfully.
The system needs a manual reboot.
==== End of Fixlog ====
kann man davon ausgehen dass es möglicherweise an der Hardware liegt?Gruß |
|
28.02.2014, 15:29
| #10 |
| |  PC läuft nicht mehr richtig, Programme werden nicht gestartet && Hab es geschafft die Probleme zu lösen, das Problem war ein falsch angeschlossenes Kabel am Mainboard, da ich vor 3 Wochen ein neues gekauft habe habe ich das SATA - Kabel von der Festplatte am falschen Steckplatz gesteckt. Nun habe ich es wieder umgesteckt wie es zuvor war und siehe da  Alles funktioniert wieder einwandfrei sogar noch mehr als zuvor da die Dateien die entfernt worden sind wohl auch was ausgemacht haben. Danke für die Hilfe  |
|
01.03.2014, 12:05
| #11 |
| /// the machine /// TB-Ausbilder | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Dann poste zum Abschluss mal ein frisches FRST log, ich schau nochmal drüber.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.03.2014, 00:19
| #12 |
| | PC läuft nicht mehr richtig, Programme werden nicht gestartet && FRST.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-03-2014
Ran by Droneberg (administrator) on DANIEL-PC on 02-03-2014 00:17:31
Running from C:\Users\Droneberg\Desktop\FRST-OlderVersion
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
(Seiko Epson Corporation) C:\Windows\system32\EscSvc64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIUE.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Spotify Ltd) C:\Users\Droneberg\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [THXCfg64] - C:\Windows\system32\THXCfg64.dll [26624 2011-05-13] (Creative Technology Ltd.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-26] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] - C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX TruStudio NB Settings] - C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824 2011-05-19] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] - C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863400 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [502952 2012-07-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058912 2012-04-02] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-02-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-01-31] (AMD)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Run: [EPLTarget\P0000000000000000] - C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-175748367-2924991802-3135039626-1000\...\Policies\Explorer: [NoSimpleNetIDList] 1
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x05851551EB86CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
SearchScopes: HKCU - {19B94D72-1CB9-4bb6-9607-952942DEAC97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5480255188&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)
BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Logitech Flow Scroll - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Chrome:
=======
CHR HomePage: hxxp://www1.delta-search.com/?affID=121562&tt=180413_ctrl&babsrc=HP_ss&mntrId=2805801F026E5967
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\gcswf32.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Google Update) - C:\Users\Droneberg\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (ProxTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2013-11-13]
CHR Extension: (YouTube) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-07-14]
CHR Extension: (Google-Suche) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-07-14]
CHR Extension: (Stylish) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2012-11-13]
CHR Extension: (Logitech Flow Scroll) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-10-29]
CHR Extension: (AdBlock) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-07-14]
CHR Extension: (Dolce&Gabbana) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpfbmpaebheclpaopjodkelcihldloih [2013-03-08]
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-08-27]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2013-11-22]
CHR Extension: (Google Wallet) - C:\Users\Droneberg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKCU\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [geooogfhpjdpeiphckpbgkhpbeobcaoi] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-10-29]
CHR HKLM-x32\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\Droneberg\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx [2012-10-29]
CHR StartMenuInternet: Google Chrome - C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703584 2011-09-16] (SEIKO EPSON CORPORATION)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-14] ()
R2 Realtek11nSU; C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek)
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S3 Ctafiltv; C:\Windows\System32\drivers\Ctafiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-20] (DT Soft Ltd)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-01-12] (FNet Co., Ltd.)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-03-20] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-09-01] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3531136 2009-06-23] ()
S3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2012-08-21] (The OpenVPN Project)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-02-28] ()
S3 ALSysIO; \??\C:\Users\DRONEB~1\AppData\Local\Temp\ALSysIO64.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz135; \??\C:\Users\DRONEB~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X]
S3 MBfilt; system32\drivers\MBfilt64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-01 18:57 - 2014-03-01 20:27 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Awesomium
2014-03-01 18:05 - 2014-03-01 18:05 - 00000000 ____D () C:\Users\Droneberg\Documents\Elder Scrolls Online
2014-03-01 18:05 - 2014-03-01 18:05 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-03-01 02:02 - 2014-03-01 02:23 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-03-01 01:14 - 2014-03-01 01:14 - 00002257 _____ () C:\Users\Droneberg\Desktop\The Elder Scrolls Online (Beta).lnk
2014-03-01 01:12 - 2014-03-01 01:14 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-03-01 01:12 - 2014-03-01 01:12 - 00001399 _____ () C:\Users\Droneberg\Desktop\The Elder Scrolls Online Beta.lnk
2014-03-01 01:11 - 2014-03-01 01:11 - 55903624 _____ ( ) C:\Users\Droneberg\Desktop\Install_ESO_Beta.exe
2014-02-28 17:08 - 2014-02-28 17:14 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-28 15:34 - 2014-01-09 03:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-28 15:34 - 2014-01-03 23:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 14:50 - 2014-02-28 14:50 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402281450025077.log
2014-02-28 14:50 - 2014-02-28 14:50 - 00000000 ____D () C:\ProgramData\ATI
2014-02-28 14:50 - 2014-02-28 14:50 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-27 23:36 - 2014-02-27 23:36 - 00000000 ____D () C:\Users\Droneberg\C0E8FE43C35B451DB35FD4BD056D70E7.TMP
2014-02-27 23:29 - 2014-02-27 23:32 - 00000000 ____D () C:\Users\Droneberg\Desktop\Virenprogramme
2014-02-27 22:14 - 2014-02-27 22:36 - 134364287 _____ () C:\Users\Droneberg\Desktop\gwh.odt
2014-02-25 14:31 - 2014-03-02 00:17 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-02-24 22:32 - 2014-02-27 21:51 - 00735601 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:28 - 2014-02-24 16:37 - 00000000 ____D () C:\ComboFix
2014-02-24 16:28 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-24 16:28 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-24 16:28 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-24 16:28 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-24 16:27 - 2014-02-24 16:37 - 00000000 ____D () C:\Qoobox
2014-02-24 16:27 - 2014-02-24 16:36 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 15:42 - 2014-02-25 14:19 - 00000000 ____D () C:\AdwCleaner
2014-02-24 14:59 - 2014-03-02 00:17 - 00000000 ____D () C:\FRST
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 05:08 - 2014-02-24 05:08 - 08759296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-02-24 05:07 - 2014-02-24 05:07 - 10899624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-02-24 05:07 - 2014-02-24 05:07 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-02-24 05:01 - 2014-02-24 05:01 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-02-24 04:48 - 2014-02-24 04:48 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-02-24 04:48 - 2014-02-24 04:48 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-02-24 04:45 - 2014-02-24 04:45 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-02-24 04:42 - 2014-02-24 04:42 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-24 04:42 - 2014-02-24 04:42 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-24 04:28 - 2014-02-24 04:28 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-02-24 04:28 - 2014-02-24 04:28 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-02-24 04:27 - 2014-02-24 04:27 - 05392896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-02-24 04:27 - 2014-02-24 04:27 - 00575744 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-02-24 04:27 - 2014-02-24 04:27 - 00575744 _____ () C:\Windows\system32\atiapfxx.blb
2014-02-24 04:27 - 2014-02-24 04:27 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-02-24 04:27 - 2014-02-24 04:27 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-02-24 04:22 - 2014-02-24 04:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-02-24 04:13 - 2014-02-24 04:13 - 04319232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-02-24 04:07 - 2014-02-24 04:07 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-02-24 04:05 - 2014-02-24 04:05 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-02-24 04:05 - 2014-02-24 04:05 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-02-24 04:05 - 2014-02-24 04:05 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-02-24 04:04 - 2014-02-24 04:04 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-02-24 04:02 - 2014-02-24 04:02 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-02-24 04:00 - 2014-02-24 04:00 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-02-24 04:00 - 2014-02-24 04:00 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-02-24 03:50 - 2014-02-24 03:50 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-02-24 03:50 - 2014-02-24 03:50 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-02-24 03:46 - 2014-02-24 03:46 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-02-24 03:35 - 2014-02-24 03:35 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-02-24 03:28 - 2014-02-24 03:28 - 01148416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-02-24 03:27 - 2014-02-24 03:27 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-02-24 03:27 - 2014-02-24 03:27 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-02-24 03:23 - 2014-02-24 03:23 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-02-23 22:58 - 2014-02-23 22:58 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-02-23 22:53 - 2014-02-23 22:53 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-02-18 18:15 - 2014-02-18 18:19 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Downloads\iTunes64Setup.exe
2014-02-18 14:58 - 2014-02-18 15:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 14:53 - 2014-02-28 14:49 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Documents\öfsch.odg
2014-02-15 21:26 - 2014-02-23 23:11 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 23:13 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-14 20:46 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-12 17:43 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-12 17:43 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-12 17:43 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-12 17:43 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-12 17:43 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-12 17:43 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-12 17:43 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-12 17:43 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-12 17:43 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-12 17:43 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-12 17:43 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-12 17:39 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:39 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:39 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:39 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:39 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:39 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:39 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:39 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:39 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:39 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:39 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:39 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:39 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:39 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:39 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:39 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:39 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:39 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:39 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:39 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:39 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:39 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:39 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:39 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 17:39 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:39 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:36 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 17:36 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 17:36 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 17:36 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 17:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 17:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 17:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 17:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 17:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 17:36 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-12 17:36 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-12 17:35 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 17:35 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 17:35 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 17:35 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-01 00:18 - 2014-02-01 00:24 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 20:37 - 2014-02-24 03:40 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
==================== One Month Modified Files and Folders =======
2014-03-02 00:17 - 2014-02-25 14:31 - 00000000 ____D () C:\Users\Droneberg\Desktop\FRST-OlderVersion
2014-03-02 00:17 - 2014-02-24 14:59 - 00000000 ____D () C:\FRST
2014-03-01 23:42 - 2012-08-26 22:50 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-01 23:32 - 2013-04-03 02:06 - 00000944 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-03-01 23:32 - 2013-04-03 02:06 - 00000922 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-03-01 23:32 - 2012-09-11 16:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Spotify
2014-03-01 23:30 - 2012-07-14 18:29 - 00001136 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job
2014-03-01 23:25 - 2012-08-20 16:47 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-01 21:30 - 2012-07-14 18:29 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job
2014-03-01 20:58 - 2009-07-14 05:51 - 02057563 _____ () C:\Windows\setupact.log
2014-03-01 20:54 - 2012-03-08 10:30 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\CrashDumps
2014-03-01 20:27 - 2014-03-01 18:57 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Awesomium
2014-03-01 19:29 - 2014-01-12 01:58 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-03-01 18:05 - 2014-03-01 18:05 - 00000000 ____D () C:\Users\Droneberg\Documents\Elder Scrolls Online
2014-03-01 18:05 - 2014-03-01 18:05 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-03-01 17:26 - 2012-07-11 16:17 - 02085201 _____ () C:\Windows\WindowsUpdate.log
2014-03-01 17:16 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-03-01 06:42 - 2012-08-26 22:50 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-01 03:56 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-03-01 03:24 - 2012-07-17 09:10 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Skype
2014-03-01 02:23 - 2014-03-01 02:02 - 00000000 ____D () C:\Users\Droneberg\Desktop\Neuer Ordner
2014-03-01 02:04 - 2013-07-28 05:03 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-01 01:14 - 2014-03-01 01:14 - 00002257 _____ () C:\Users\Droneberg\Desktop\The Elder Scrolls Online (Beta).lnk
2014-03-01 01:14 - 2014-03-01 01:12 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-03-01 01:12 - 2014-03-01 01:12 - 00001399 _____ () C:\Users\Droneberg\Desktop\The Elder Scrolls Online Beta.lnk
2014-03-01 01:11 - 2014-03-01 01:11 - 55903624 _____ ( ) C:\Users\Droneberg\Desktop\Install_ESO_Beta.exe
2014-02-28 19:30 - 2012-07-16 02:04 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-02-28 19:29 - 2012-07-14 19:27 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-02-28 17:46 - 2012-10-29 17:29 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-28 17:22 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-28 17:22 - 2009-07-14 05:45 - 00022544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-28 17:15 - 2014-01-12 01:58 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-02-28 17:14 - 2014-02-28 17:08 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-02-28 17:14 - 2012-07-11 16:33 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-02-28 17:14 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-28 17:07 - 2010-11-21 04:47 - 01268036 _____ () C:\Windows\PFRO.log
2014-02-28 16:53 - 2012-07-14 18:58 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 14:58 - 2014-02-28 14:58 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 14:50 - 2014-02-28 14:50 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402281450025077.log
2014-02-28 14:50 - 2014-02-28 14:50 - 00000000 ____D () C:\ProgramData\ATI
2014-02-28 14:50 - 2014-02-28 14:50 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-02-28 14:50 - 2012-07-14 18:57 - 00000000 ____D () C:\ProgramData\AMD
2014-02-28 14:49 - 2014-02-18 14:53 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-28 14:41 - 2012-08-29 14:25 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-02-27 23:44 - 2012-10-29 17:25 - 00000000 ____D () C:\AMD
2014-02-27 23:37 - 2013-09-14 02:06 - 00003670 _____ () C:\Windows\System32\Tasks\Wecker - WE
2014-02-27 23:36 - 2014-02-27 23:36 - 00000000 ____D () C:\Users\Droneberg\C0E8FE43C35B451DB35FD4BD056D70E7.TMP
2014-02-27 23:36 - 2012-07-11 16:17 - 00000000 ____D () C:\Users\Droneberg
2014-02-27 23:32 - 2014-02-27 23:29 - 00000000 ____D () C:\Users\Droneberg\Desktop\Virenprogramme
2014-02-27 23:21 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-27 22:36 - 2014-02-27 22:14 - 134364287 _____ () C:\Users\Droneberg\Desktop\gwh.odt
2014-02-27 21:51 - 2014-02-24 22:32 - 00735601 _____ () C:\Users\Droneberg\Desktop\deckblatt.odt
2014-02-25 14:19 - 2014-02-24 15:42 - 00000000 ____D () C:\AdwCleaner
2014-02-24 22:28 - 2014-02-24 22:28 - 00006538 _____ () C:\Users\Droneberg\AppData\Local\recently-used.xbel
2014-02-24 22:28 - 2012-11-15 19:38 - 00000000 ____D () C:\Users\Droneberg\.gimp-2.8
2014-02-24 16:37 - 2014-02-24 16:37 - 00035641 _____ () C:\ComboFix.txt
2014-02-24 16:37 - 2014-02-24 16:28 - 00000000 ____D () C:\ComboFix
2014-02-24 16:37 - 2014-02-24 16:27 - 00000000 ____D () C:\Qoobox
2014-02-24 16:37 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-24 16:36 - 2014-02-24 16:27 - 00000000 ____D () C:\Windows\erdnt
2014-02-24 16:36 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-24 16:25 - 2014-02-24 16:25 - 05184582 ____R (Swearware) C:\Users\Droneberg\Desktop\ComboFix.exe
2014-02-24 16:04 - 2014-02-24 16:04 - 00000000 ____D () C:\Windows\ERUNT
2014-02-24 15:44 - 2013-01-14 19:20 - 00000000 ____D () C:\ProgramData\ICQ
2014-02-24 14:58 - 2014-02-24 14:58 - 00000000 _____ () C:\Users\Droneberg\defogger_reenable
2014-02-24 13:54 - 2012-08-05 02:45 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Audacity
2014-02-24 10:40 - 2012-09-11 16:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Spotify
2014-02-24 05:08 - 2014-02-24 05:08 - 08759296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00127872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00117560 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00116024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-02-24 05:08 - 2014-02-24 05:08 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-02-24 05:08 - 2013-12-06 23:02 - 00098496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-02-24 05:08 - 2013-12-06 23:01 - 01106360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-02-24 05:08 - 2013-12-06 23:00 - 10169896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-02-24 05:08 - 2013-11-29 18:55 - 00143304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-02-24 05:08 - 2013-11-29 18:52 - 01328328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-02-24 05:07 - 2014-02-24 05:07 - 10899624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-02-24 05:07 - 2014-02-24 05:07 - 07892000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-02-24 05:07 - 2013-12-06 22:59 - 10145128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-02-24 05:07 - 2013-12-06 22:58 - 06716264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-02-24 05:01 - 2014-02-24 05:01 - 13929472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-02-24 04:48 - 2014-02-24 04:48 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-02-24 04:48 - 2014-02-24 04:48 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 28424704 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-02-24 04:47 - 2014-02-24 04:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-02-24 04:45 - 2014-02-24 04:45 - 23903232 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-02-24 04:42 - 2014-02-24 04:42 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-24 04:42 - 2014-02-24 04:42 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-02-24 04:28 - 2014-02-24 04:28 - 27152384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-02-24 04:28 - 2014-02-24 04:28 - 00126464 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-02-24 04:27 - 2014-02-24 04:27 - 05392896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-02-24 04:27 - 2014-02-24 04:27 - 00575744 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-02-24 04:27 - 2014-02-24 04:27 - 00575744 _____ () C:\Windows\system32\atiapfxx.blb
2014-02-24 04:27 - 2014-02-24 04:27 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-02-24 04:27 - 2014-02-24 04:27 - 00113152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-02-24 04:26 - 2014-02-24 04:26 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-02-24 04:22 - 2014-02-24 04:22 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-02-24 04:13 - 2014-02-24 04:13 - 04319232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-02-24 04:07 - 2014-02-24 04:07 - 22834688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-02-24 04:05 - 2014-02-24 04:05 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-02-24 04:05 - 2014-02-24 04:05 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-02-24 04:05 - 2014-02-24 04:05 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-02-24 04:04 - 2014-02-24 04:04 - 00240128 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-02-24 04:02 - 2014-02-24 04:02 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-02-24 04:00 - 2014-02-24 04:00 - 00081920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-02-24 04:00 - 2014-02-24 04:00 - 00079360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-02-24 03:50 - 2014-02-24 03:50 - 00044544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-02-24 03:50 - 2014-02-24 03:50 - 00035840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-02-24 03:46 - 2014-02-24 03:46 - 03434288 _____ () C:\Windows\system32\atiumd6a.cap
2014-02-24 03:40 - 2014-01-31 20:37 - 00806912 _____ (AMD) C:\Windows\system32\coinst_13.350.dll
2014-02-24 03:35 - 2014-02-24 03:35 - 03468336 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-02-24 03:28 - 2014-02-24 03:28 - 01148416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00828416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00146432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-02-24 03:28 - 2014-02-24 03:28 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-02-24 03:27 - 2014-02-24 03:27 - 00636928 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-02-24 03:27 - 2014-02-24 03:27 - 00133120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-02-24 03:26 - 2014-02-24 03:26 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-02-24 03:23 - 2014-02-24 03:23 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-02-23 23:11 - 2014-02-15 21:26 - 00000000 ____D () C:\Users\Droneberg\Documents\Euro Truck Simulator 2
2014-02-23 22:58 - 2014-02-23 22:58 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-02-23 22:53 - 2014-02-23 22:53 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-02-22 19:20 - 2011-04-12 08:43 - 08475738 _____ () C:\Windows\system32\perfh007.dat
2014-02-22 19:20 - 2011-04-12 08:43 - 02570432 _____ () C:\Windows\system32\perfc007.dat
2014-02-22 19:20 - 2009-07-14 06:13 - 00006444 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-21 19:25 - 2012-08-20 16:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 19:25 - 2012-08-20 16:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 19:25 - 2012-08-20 16:47 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 20:19 - 2012-11-06 23:46 - 00000000 ____D () C:\FFOutput
2014-02-20 17:38 - 2012-07-14 18:58 - 00000000 ____D () C:\ProgramData\Origin
2014-02-20 01:18 - 2013-04-20 22:12 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-02-19 22:53 - 2012-08-31 00:13 - 00008192 _____ () C:\Users\Droneberg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-19 19:05 - 2012-07-17 22:34 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Apple Computer
2014-02-19 01:20 - 2012-12-27 04:59 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\vlc
2014-02-18 18:19 - 2014-02-18 18:15 - 148896080 _____ (Apple Inc.) C:\Users\Droneberg\Downloads\iTunes64Setup.exe
2014-02-18 18:19 - 2013-08-26 21:10 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\Razer
2014-02-18 18:19 - 2013-08-26 21:09 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-02-18 18:11 - 2012-10-03 12:26 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Mozilla
2014-02-18 15:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-02-18 15:45 - 2012-07-14 18:51 - 00000000 ____D () C:\Windows\pss
2014-02-18 15:22 - 2014-02-18 14:58 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-02-18 15:22 - 2013-12-27 18:03 - 00000000 ____D () C:\Program Files\AMD
2014-02-18 15:22 - 2013-12-09 14:09 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\Raptr
2014-02-18 15:22 - 2013-05-16 16:46 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-02-18 15:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-02-18 15:21 - 2014-01-12 03:21 - 00000000 ____D () C:\Program Files\ATI
2014-02-16 23:30 - 2014-02-16 23:30 - 00020339 _____ () C:\Users\Droneberg\Documents\öfsch.odg
2014-02-15 23:13 - 2014-02-15 20:22 - 00000000 ____D () C:\Program Files (x86)\Euro Truck Simulator 2
2014-02-15 21:43 - 2013-02-26 20:27 - 00000000 ____D () C:\Users\Droneberg\AppData\Local\SKIDROW
2014-02-15 20:22 - 2014-02-15 20:22 - 00001332 _____ () C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk
2014-02-13 22:05 - 2013-12-13 19:51 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-02-12 17:44 - 2013-07-18 16:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-12 17:43 - 2012-07-15 09:32 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-11 06:37 - 2012-08-26 22:50 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-11 06:37 - 2012-08-26 22:50 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-10 21:25 - 2012-07-14 18:29 - 00004116 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA
2014-02-10 21:25 - 2012-07-14 18:29 - 00003718 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core
2014-02-09 18:29 - 2014-02-09 18:29 - 00055617 _____ () C:\Windows\SysWOW64\CCCInstall_201402091829029836.log
2014-02-07 17:24 - 2013-12-13 19:50 - 00000000 ____D () C:\Program Files (x86)\epson
2014-02-07 17:24 - 2013-12-13 19:43 - 00000000 ____D () C:\ProgramData\EPSON
2014-02-06 13:16 - 2014-02-12 17:39 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-12 17:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-12 17:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-12 17:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-12 17:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-12 17:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-12 17:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-12 17:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-12 17:39 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-12 17:39 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-12 17:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-12 17:39 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-12 17:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-12 17:39 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-12 17:39 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-12 17:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-12 17:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-12 17:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-12 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-12 17:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-12 17:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-12 17:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-12 17:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-12 17:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-12 17:39 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-12 17:39 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-12 17:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-12 17:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-12 17:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-12 17:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-12 17:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-12 17:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-12 17:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-12 17:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-01 00:25 - 2012-08-11 03:22 - 00000000 ____D () C:\Users\Droneberg\AppData\Roaming\DivX
2014-02-01 00:24 - 2014-02-01 00:18 - 388901048 _____ () C:\Users\Droneberg\Desktop\Hardwell On Air 152.avi
2014-01-31 19:17 - 2014-01-31 19:17 - 00009216 ____H () C:\Users\Droneberg\Desktop\photothumb.db
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-28 01:52
==================== End Of Log ============================
Addition.txt Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-03-2014
Ran by Droneberg at 2014-03-02 00:18:13
Running from C:\Users\Droneberg\Desktop\FRST-OlderVersion
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30303 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKCU\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
AMD Accelerated Video Transcoding (Version: 13.30.100.40223 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0223.2239.40626 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{A081D35B-0AF0-588A-D0D6-259D25C03E50}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Profiles (HKLM-x32\...\{63059735-CA97-FDFB-0E7A-3B8D81572EFD}) (Version: 2.0.4888.34279 - Advanced Micro Devices, Inc.)
Application Profiles (HKLM-x32\...\{EBBE64F6-7E23-5857-891F-045560AECC7F}) (Version: 2.0.4674.34053 - Advanced Micro Devices, Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.)
ASRock eXtreme Tuner v0.1.257 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
ASRock InstantBoot v1.29 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
Assassin’s Creed® III (HKLM-x32\...\Steam App 208480) (Version: - Ubisoft Montreal)
Assassins Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.4.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.1.0.1 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version: - Irrational Games)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 7 (HKLM-x32\...\{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}) (Version: 7.1.1 - TechSmith Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0223.2239.40626 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0223.2239.40626 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0223.2239.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0223.2238.40626 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0223.2239.40626 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Core Temp 1.0 RC4 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version: - Techland)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.90 - DivX, LLC)
Edimax Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0142 - Edimax Technology Co.)
Epson Benutzerhandbuch WF-2540 Series (HKLM-x32\...\WF-2540 Series Useg) (Version: - )
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.1 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8F01524C-0676-4CC1-B4AE-64753C723391}) (Version: 3.01.0005 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{CEC98C2A-9ED5-49DA-9F3A-92434E0A4FA3}) (Version: 1.19.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.31.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - )
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON WF-2540 Series Printer Uninstall (HKLM\...\EPSON WF-2540 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.8.2.5 - SCS Software)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
FormatFactory 3.0.1 (HKLM-x32\...\FormatFactory) (Version: 3.0.1 - Free Time)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Gameforge Live 1.9.0 "Legend" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 1.9.0 - Gameforge)
GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (HKLM-x32\...\{086BADF8-9B1F-4E89-B207-2EDA520972D6}) (Version: 1.00.00001 - Rockstar Games)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36354 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) Smart Connect Technology 2.0 x64 (HKLM\...\{54F8B6C7-9B25-4E85-A1E0-26CFB80DE787}) (Version: 2.0.1083.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.738.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
K-Lite Codec Pack 9.3.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
Logitech Flow Scroll 4.0 (HKLM\...\Sn1) (Version: 4.00.33 - Logitech)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version: - Rockstar Studios)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
MyEpson Portal (x32 Version: 1.0.0.12 - SEIKO EPSON CORPORATION) Hidden
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.0.0 (HKLM-x32\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.15.65 - Electronic Arts, Inc.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
PLEOMAX 1.3MP UVC Webcam (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.53004.1 - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform)
ROCCAT Power-Grid Version 0.459 (HKLM-x32\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.459 - ROCCAT GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version: - Volition)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.0.12094_28 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.0.12094_28 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Savu Mouse (HKLM-x32\...\{6F4B8EA6-4546-4160-A05F-0706F7DC1EFF}) (Version: 1.1.9 - ROCCAT GmbH)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{6DFBE8A2-CDBF-453E-B34C-32F202FCEE4C}) (Version: 4.2.1 - SEIKO EPSON CORPORATION)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Square Enix Secure Launcher (HKCU\...\Square Enix Secure Launcher) (Version: 1.0.0.106 - Square Enix)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.9.1 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
THX TruStudio (HKLM-x32\...\{AFB907F5-C0E6-4753-8284-DE955EF86AC2}) (Version: 1.00.01 - Creative Technology Limited)
Tom Clancy's Splinter Cell® Blacklist™ (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}) (Version: 1.02 - Ubisoft)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (HKLM-x32\...\{6BE7495E-8DF1-11E1-BB7D-F04DA23A5C58}) (Version: 11.0.682 - Sony)
VLC media player 1.0.1 (HKLM-x32\...\VLC media player) (Version: 1.0.1 - VideoLAN Team)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wise Registry Cleaner 7.94 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 7.94 - WiseCleaner.com, Inc.)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)
==================== Restore Points =========================
28-02-2014 13:43:20 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
28-02-2014 13:44:27 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
28-02-2014 13:46:47 Gerätetreiber-Paketinstallation: Advanced Micro Devices, Inc. Grafikkarte
28-02-2014 14:37:00 Windows Update
01-03-2014 00:12:45 DirectX wurde installiert
==================== Hosts content: ==========================
2009-07-14 03:34 - 2014-02-24 16:35 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1303D341-8C21-4E2E-8228-546EE6206B4F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core => C:\Users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-05] (Facebook Inc.)
Task: {35CF3ACC-1354-4DAD-B240-EBA3BED84419} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3BA95D3D-BAA2-404A-A3D0-2DAE121B358A} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {4B58EABB-46E7-4F90-ACB6-8A99B7824BF0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core => C:\Users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14] (Google Inc.)
Task: {654769C4-F986-4D23-832D-47CBEB35F205} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA => C:\Users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14] (Google Inc.)
Task: {669F6474-8A31-40AC-8794-24B5B1FEFBCA} - \BackgroundContainer Startup Task No Task File
Task: {8FCADF2B-893D-4B6E-BE0D-418F9F5381F9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {9A26B9A1-3073-43A7-841E-52AF8A8AAEE9} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {AF3D8956-07DF-4FAD-AF57-A90D209C8AD7} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {AFC14EC2-FC27-4794-A3BB-09EE80EBF065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-26] (Google Inc.)
Task: {CE048E0A-85D7-45F1-A7F5-CF3AA4760BE6} - System32\Tasks\{69807AFE-0C90-4CD2-8BFC-0E2077DE8C7D} => C:\Program Files (x86)\iTunes\iTunes.exe [2014-02-21] (Apple Inc.)
Task: {D7CC78A1-3EAE-4698-9A39-2CAE12FF03A7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA => C:\Users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-05] (Facebook Inc.)
Task: {DB9C30C4-31D6-4C14-9B8F-8E20FCC74C6A} - System32\Tasks\{74DEFC23-20E1-4D7B-BCF6-16816F2CA5D5} => C:\Program Files (x86)\iTunes\iTunes.exe [2014-02-21] (Apple Inc.)
Task: {F8E9695E-1C6F-44FE-814C-E124CE8CDE08} - System32\Tasks\Wecker - WE => C:\Users\Droneberg\Music\Musik\Bob Marley and The Wailers - Kaya [35th Anniversary Edition] CD1 (2013)\07 - Misty Morning.mp3 [2013-04-25] ()
Task: {FF04689A-AF65-47CE-B0CD-C7D5D2ED7C4A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-26] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job => C:\Users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job => C:\Users\Droneberg\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000Core.job => C:\Users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-175748367-2924991802-3135039626-1000UA.job => C:\Users\Droneberg\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
==================== Loaded Modules (whitelisted) =============
2012-02-09 15:26 - 2012-02-09 15:26 - 00133632 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2012-02-09 15:26 - 2012-02-09 15:26 - 00048128 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2012-02-09 15:26 - 2012-02-09 15:26 - 00036864 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetDetect.dll
2012-07-16 01:16 - 2013-12-14 15:01 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2012-03-08 10:18 - 2011-05-19 09:58 - 00246784 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2012-07-11 16:25 - 2012-01-05 10:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-11-15 01:48 - 2013-11-15 01:48 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2013-09-28 18:50 - 2014-01-16 17:54 - 00603648 _____ () C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-11-21 18:01 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-01-12 02:10 - 2011-05-04 16:32 - 00094208 ____N () C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\de-DE\THXAudNB.resources.dll
2013-11-15 01:49 - 2013-11-15 01:49 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 00237384 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2014-02-12 17:45 - 2014-02-12 17:45 - 00017920 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\7fb509dd6887788f670fac03bb2f996d\PSIClient.ni.dll
2012-07-11 16:29 - 2012-07-18 06:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-09-11 16:59 - 2014-01-16 17:54 - 36967424 _____ () C:\Users\Droneberg\AppData\Roaming\Spotify\Data\libcef.dll
2014-02-21 18:31 - 2014-02-20 02:02 - 00051016 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll
2014-02-21 18:31 - 2014-02-20 02:02 - 00716616 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\libglesv2.dll
2014-02-21 18:31 - 2014-02-20 02:02 - 00100168 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\libegl.dll
2014-02-21 18:31 - 2014-02-20 02:03 - 04060488 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll
2014-02-21 18:31 - 2014-02-20 02:03 - 00394568 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll
2014-02-21 18:31 - 2014-02-20 02:02 - 01647432 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll
2014-02-21 18:31 - 2014-02-20 02:03 - 13632840 _____ () C:\Users\Droneberg\AppData\Local\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: Futuremark SystemInfo Service => 3
MSCONFIG\Services: WCUService_STC_IE => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FILSHtray.lnk => C:\Windows\pss\FILSHtray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Droneberg^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Droneberg^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk => C:\Windows\pss\Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk.Startup
MSCONFIG\startupreg: AmazonMP3DownloaderHelper => C:\Users\Droneberg\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: CtaMon => Rundll32 CtaMon.dll,RunMonitor
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: icq => C:\Users\Droneberg\AppData\Roaming\ICQM\icq.exe -CU
MSCONFIG\startupreg: iFunBoxConnector => "C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe"
MSCONFIG\startupreg: KiesAirMessage => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LogiScrollApp => C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
MSCONFIG\startupreg: Media Finder => "C:\Program Files (x86)\Media Finder\Media Finder.exe" /opentotray
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: Prime95 => C:\Users\Droneberg\Desktop\Neuer Ordner\prime95.exe
MSCONFIG\startupreg: RazerGameBooster => C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe -autorun
MSCONFIG\startupreg: SearchProtect => C:\Users\Droneberg\AppData\Roaming\SearchProtect\bin\cltmng.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: snp2uvc => C:\Windows\vsnp2uvc.exe
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
MSCONFIG\startupreg: Spotify => "C:\Users\Droneberg\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Droneberg\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: uTorrent => "C:\Users\Droneberg\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: VolPanel => "C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" /r
MSCONFIG\startupreg: XFast LAN => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
MSCONFIG\startupreg: XFastUSB => "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"
==================== Faulty Device Manager Devices =============
Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
Name: Ethernet-Controller
Description: Ethernet-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (03/01/2014 08:54:40 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: eso.exe, Version: 1.0.0.1, Zeitstempel: 0x530b2d69
Name des fehlerhaften Moduls: eso.exe, Version: 1.0.0.1, Zeitstempel: 0x530b2d69
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001117e6
ID des fehlerhaften Prozesses: 0x3718
Startzeit der fehlerhaften Anwendung: 0xeso.exe0
Pfad der fehlerhaften Anwendung: eso.exe1
Pfad des fehlerhaften Moduls: eso.exe2
Berichtskennung: eso.exe3
Error: (03/01/2014 03:52:24 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (03/01/2014 02:04:30 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/28/2014 05:16:06 PM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (02/28/2014 05:14:52 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:11:42 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:08:26 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:04:01 PM) (Source: PerfOS) (User: )
Description:
Error: (02/28/2014 05:03:04 PM) (Source: Microsoft-Windows-WMI) (User: NT-AUTORITÄT)
Description: Der Ereignisfilter mit der Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" aufgrund des Fehlers "0x80041003" nicht reaktiviert werden. Solange dieses Problem besteht, können mit diesem Filter keine Ereignisse übermittelt werden.
Error: (02/28/2014 05:01:52 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
System errors:
=============
Error: (02/28/2014 05:14:44 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Gruppenrichtlinienclient" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/28/2014 05:14:44 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Gruppenrichtlinienclient erreicht.
Error: (02/28/2014 05:14:14 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (02/28/2014 05:12:52 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Error: (02/28/2014 05:12:51 PM) (Source: cdrom) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\CdRom0 gefunden.
Microsoft Office Sessions:
=========================
Error: (03/01/2014 08:54:40 PM) (Source: Application Error)(User: )
Description: eso.exe1.0.0.1530b2d69eso.exe1.0.0.1530b2d69c0000005001117e6371801cf35840bcfd397C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online\game\client\eso.exeC:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online\game\client\eso.exe532ffe26-a17b-11e3-bd3d-a63a29dd5114
Error: (03/01/2014 03:52:24 AM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3
Error: (03/01/2014 02:04:30 AM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/28/2014 05:16:06 PM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/28/2014 05:14:52 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:11:42 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:08:26 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
Error: (02/28/2014 05:04:01 PM) (Source: PerfOS)(User: )
Description:
Error: (02/28/2014 05:03:04 PM) (Source: Microsoft-Windows-WMI)(User: NT-AUTORITÄT)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (02/28/2014 05:01:52 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume ****Error in initialize NetDetect, status = 0x2
CodeIntegrity Errors:
===================================
Date: 2014-02-24 16:35:26.804
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-02-24 16:35:26.758
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:59.460
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:59.439
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:57.169
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:57.147
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:55.013
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:54.991
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:52.948
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-04-10 22:46:52.926
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\FsUsbExDisk.Sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 26%
Total physical RAM: 16269.55 MB
Available physical RAM: 11886.93 MB
Total Pagefile: 32537.29 MB
Available Pagefile: 27542.64 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:432.61 GB) NTFS
Drive d: (GTA IV Disc 1) (CDROM) (Total:7.03 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 4CB1A732)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
03.03.2014, 08:07
| #13 |
| /// the machine /// TB-Ausbilder | PC läuft nicht mehr richtig, Programme werden nicht gestartet && Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu PC läuft nicht mehr richtig, Programme werden nicht gestartet && |
| bios, dateien, friert, funktioniert, guten, handy, itunes, kopieren, manager, media, media player, meldung, nicht mehr, performance, player, programme, startet, system, systemwiederherstellung, task manager, tool, update, video, windows, windows media player |
WARNUNG an die MITLESER: 
Linear-Darstellung
