| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen')Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
27.03.2014, 14:12
| #1 |
 |  Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Hallo, Als ich gestern mein Pc angemacht habe hat Avira free antivirus gleich einen neuen Trojaner gefunden  Aber Avira hat den Zugriff verweigert. Das stand unter "Ereignisse" drauf: In der Datei 'C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe' wurde ein Virus oder unerwünschtes Programm 'TR/ATRAPS.Gen' [trojan] gefunden. Ausgeführte Aktion: Zugriff verweigern Als Avira den Zugriff verweigert hat ist der Virus weggegangen? Und wieso ist der Virus in meinem Amd Ordner? |
|
27.03.2014, 14:57
| #2 |
| /// TB-Ausbilder /// Anleitungs-Guru  | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das... 
 Hinweise: Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden. Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert. Adware & Co können wir sehr gut entfernen. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean  bist.Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Das dauert dann zwar ein paar Stunden länger, garantiert aber, dass Du kompetente Hilfe und geprüfte Antworten bekommst. Siehe hier... Ich bedanke mich für Deine Geduld!  Schritt 1 (Scan mit FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
27.03.2014, 15:27
| #3 |
| | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Frst.txt:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by Alessio (administrator) on DIAMONDSTONE on 27-03-2014 15:18:53 Running from C:\Users\Alessio\Desktop Windows 8.1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\WINDOWS\system32\atiesrxx.exe (AMD) C:\WINDOWS\system32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe (Microsoft Corporation) C:\WINDOWS\system32\dashost.exe () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe (Microsoft Corporation) C:\Windows\System32\skydrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHAE.EXE (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Mozilla Corporation) C:\Program Files\Nightly\firefox.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSI_TRAY.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (www.Bandisoft.com) C:\Program Files (x86)\Bandicam\bdcam.exe (www.Bandisoft.com) C:\Program Files (x86)\Bandicam\bdcam64.bin ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-24] (Realtek Semiconductor) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.) HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [GamingKeyboard] - C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPSONEB7433 (Epson Stylus SX430)] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [DrWindows] - C:\Program Files (x86)\DrWindows\DrWindows.exe [2351104 2009-02-27] (DonationCoder.com) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD86800FEA03FCF01 SearchScopes: HKLM - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - DefaultScope {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKCU - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = SearchScopes: HKCU - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll No File BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default FF SelectedSearchEngine: Google FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alessio\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\beemp3.xml FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\mp3-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\artur.dubovoy@gmail.com [2014-03-10] FF Extension: ProxTube - Unblock YouTube - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\ich@maltegoetz.de [2014-03-22] FF Extension: Print pages to PDF - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\printPages2Pdf@reinhold.ripper [2013-08-30] FF Extension: SparPilot - Gutscheine & mehr... - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\sparpilot@sparpilot.com [2014-02-28] FF Extension: YouTube Unblocker - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-22] FF Extension: PrizeRebelBar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{0381d773-9643-436e-8a49-5d0bc6644a22} [2014-03-26] FF Extension: DownloadHelper - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25] FF Extension: MEGA - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\firefox@mega.co.nz.xpi [2013-11-28] FF Extension: betterFox - Make browsing experience 15% faster. - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\multirevenue@googlemail.com.xpi [2013-07-13] FF Extension: XJZ Survey Remover - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\survey-remover@gmx.com.xpi [2013-07-23] FF Extension: All-in-One Sidebar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-06-19] FF Extension: {228790f3-0170-435a-be1f-7511046ea7e9} - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{228790f3-0170-435a-be1f-7511046ea7e9}.xpi [2014-01-11] FF Extension: Video DivX Player Free - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{60270806-64ac-414c-aa17-ca1892b3f1be}.xpi [2014-01-11] FF Extension: NoScript - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20] FF Extension: YouTube High Definition - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-03-22] FF Extension: Update Scanner - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi [2014-03-17] FF Extension: Easy YouTube Video Downloader - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-06-18] FF Extension: Adblock Plus - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-18] FF Extension: DownThemAll! - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-06-18] FF Extension: Greasemonkey - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-11-14] FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2014-03-18] FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-02-25] FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Nightly\firefox.exe Chrome: ======= CHR HomePage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=9609A0F3C1231F1C&affID=123884&tsp=4952 CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (ChromeUtilPlugin) - C:\Users\Alessio_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\19.52819_0\background/ChromeUtilPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (fluxDVD Browser Plugin) - C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll ( ) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll No File CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll No File CHR Plugin: (fluxDVD Placeholder Plugin) - C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll No File CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File CHR Extension: (Google Docs) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-18] CHR Extension: (Google Drive) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-18] CHR Extension: (YouTube) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-18] CHR Extension: (Google-Suche) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-18] CHR Extension: (Tampermonkey) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-11-14] CHR Extension: (Freemake Video Converter) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22] CHR Extension: (Google Wallet) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21] CHR Extension: (Google Mail) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-18] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-12-17] ==================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.) R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [944424 2014-01-15] (AnchorFree Inc.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [78512 2014-01-14] () R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304 2014-01-15] () R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-24] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-22] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems) R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [27648 2012-05-11] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2014-01-14] (AnchorFree Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-23] (Microsoft Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-22] () S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-27] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-23] (Microsoft Corporation) S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-01-14] (Anchorfree Inc.) U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-11-22] (Seiko Epson Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-27 15:18 - 2014-03-27 15:18 - 00000000 ____D () C:\FRST 2014-03-27 15:06 - 2014-03-27 15:19 - 00026403 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-27 15:05 - 2014-03-27 15:05 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-27 14:42 - 2014-03-27 14:42 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 13:53 - 2014-03-27 13:53 - 00000628 _____ () C:\Users\Alessio\Desktop\Ereignisse.txt 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 12:08 - 2014-03-27 14:17 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-27 12:06 - 2014-03-27 12:07 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:46 - 2014-03-26 15:47 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 18:47 - 2014-03-25 19:13 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:32 - 2014-03-26 20:26 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:36 - 2014-03-25 15:38 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:31 - 2014-03-25 18:58 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 15:31 - 2014-03-25 15:35 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:08 - 2014-03-24 19:45 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 17:25 - 2014-03-24 17:25 - 25460555 _____ () C:\Users\Alessio\Desktop\must report thedw,ü .mp4 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:11 - 2014-03-24 14:14 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 14:01 - 2011-01-23 19:25 - 00154119 _____ () C:\Users\Alessio\Desktop\Memtest86+ USB Installer.exe 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:49 - 2014-03-24 13:50 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:46 - 2014-03-24 12:47 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2012-05-11 15:24 - 00027648 _____ () C:\WINDOWS\system32\Drivers\GameKB.sys 2014-03-23 15:49 - 2014-03-23 15:53 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:46 - 2014-03-23 15:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-24 19:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-23 15:19 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:17 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-03-23 15:18 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:18 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2014-03-23 15:18 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esdevapp.exe 2014-03-23 15:18 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxcdev.dll 2014-03-23 15:13 - 2014-03-23 15:34 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-22 13:23 - 2013-11-22 15:34 - 00063096 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\Drivers\TMUSB64.sys 2014-03-21 17:41 - 2014-03-21 17:43 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:01 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 19:00 - 2014-01-14 23:47 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-18 11:10 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2014-03-18 11:10 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:30 - 2014-03-17 15:35 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-16 12:00 - 2014-03-26 15:47 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-15 12:20 - 2014-03-23 15:53 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:13 - 2014-03-14 20:14 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:30 - 2014-03-13 17:31 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-12 17:20 - 2014-03-27 12:26 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-12 12:56 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-12 12:56 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-12 12:56 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-12 12:56 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-12 12:56 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-12 12:56 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-12 12:56 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-12 12:56 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-03-12 12:56 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-03-12 12:56 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2014-03-12 12:56 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2014-03-12 12:56 - 2014-01-31 17:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-03-12 12:56 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-03-12 12:56 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-03-12 12:56 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-03-12 12:56 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-03-12 12:56 - 2014-01-29 10:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2014-03-12 12:56 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2014-03-12 12:56 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2014-03-12 12:56 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-03-12 12:56 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2014-03-12 12:56 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2014-03-12 12:56 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-03-12 12:56 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-03-12 12:56 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2014-03-12 12:56 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-03-12 12:56 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-03-12 12:56 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2014-03-12 12:56 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2014-03-12 12:56 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2014-03-12 12:56 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-03-12 12:56 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-03-12 12:56 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2014-03-12 12:56 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2014-03-12 12:56 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-24 19:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-26 17:22 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-09 17:20 - 2014-03-22 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-09 17:20 - 2014-03-12 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-09 17:20 - 2014-03-12 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:00 - 2014-03-08 15:06 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:47 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:31 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-08 14:29 - 2013-11-27 21:22 - 141519856 _____ () C:\Users\Alessio\Downloads\GMStudio-Installer.exe 2014-03-07 17:47 - 2014-03-26 15:47 - 00000000 ____D () C:\Program Files\Nightly 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:46 - 2014-03-07 17:47 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:46 - 2014-03-07 17:47 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-03 11:13 - 2014-03-03 11:14 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-27 15:05 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-01 17:00 - 2014-03-26 17:05 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:00 - 2014-02-27 15:01 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:44 - 2014-02-27 14:30 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks 2014-02-25 13:37 - 2014-02-25 13:37 - 00000613 _____ () C:\Users\Alessio\Desktop\WindowsAndroid.lnk 2014-02-25 13:37 - 2014-02-25 13:37 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WindowsAndroid 2014-02-25 13:37 - 2014-02-25 13:37 - 00000000 ____D () C:\SocketeQ 2014-02-25 13:36 - 2014-02-25 13:38 - 210097664 _____ () C:\Users\Alessio\Downloads\androVM_vbox86tp_4.1.1_r6.1-20130222-gapps-houdini-flash.ova 2014-02-25 13:36 - 2014-02-25 13:37 - 68006670 _____ (SocketeQ, Inc. ) C:\Users\Alessio\Downloads\Windroy_earlyrelease.exe 2014-02-25 13:34 - 2014-02-25 15:50 - 00000000 ____D () C:\Users\Alessio\.androvm ==================== One Month Modified Files and Folders ======= 2014-03-27 15:19 - 2014-03-27 15:06 - 00026403 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-27 15:18 - 2014-03-27 15:18 - 00000000 ____D () C:\FRST 2014-03-27 15:16 - 2013-10-30 16:29 - 00000000 ____D () C:\Users\Alessio\Documents\AVS4YOU 2014-03-27 15:16 - 2013-07-17 13:09 - 00000000 ____D () C:\Users\Alessio\Documents\Roms 2014-03-27 15:14 - 2013-06-18 18:30 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\vlc 2014-03-27 15:13 - 2014-01-25 18:09 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5AAFE3CE-0AB4-4161-9BA2-01537602E0FD} 2014-03-27 15:08 - 2013-05-31 13:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-27 15:05 - 2014-03-27 15:05 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-27 15:05 - 2014-03-01 17:00 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-27 15:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-03-27 14:56 - 2013-06-24 12:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Skype 2014-03-27 14:55 - 2014-01-23 14:55 - 01687775 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-27 14:42 - 2014-03-27 14:42 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-27 14:37 - 2013-07-12 13:24 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.minecraft 2014-03-27 14:25 - 2013-06-05 15:22 - 00001136 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-27 14:17 - 2014-03-27 12:08 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 14:08 - 2014-01-22 17:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3775792459-901648600-1102063504-1001 2014-03-27 14:06 - 2013-08-26 12:43 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 14:03 - 2014-01-22 19:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-27 14:03 - 2013-08-27 16:17 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2014-03-27 13:53 - 2014-03-27 13:53 - 00000628 _____ () C:\Users\Alessio\Desktop\Ereignisse.txt 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 13:45 - 2014-01-23 14:37 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-03-27 13:34 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-03-27 13:25 - 2014-01-22 20:10 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-27 13:25 - 2013-06-05 15:22 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-27 12:30 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-03-27 12:30 - 2013-11-14 08:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat 2014-03-27 12:30 - 2013-11-14 08:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat 2014-03-27 12:26 - 2014-03-12 17:20 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-27 12:25 - 2014-01-23 17:41 - 00000000 __RDO () C:\Users\Alessio\SkyDrive 2014-03-27 12:25 - 2013-12-03 12:45 - 00000000 ____D () C:\Users\Alessio\AppData\Local\LogMeIn Hamachi 2014-03-27 12:23 - 2013-11-13 23:18 - 00231336 _____ () C:\WINDOWS\PFRO.log 2014-03-27 12:23 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-27 12:23 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-02-13 19:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-27 12:07 - 2014-03-27 12:06 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 20:26 - 2014-03-25 18:32 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-26 20:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp 2014-03-26 17:22 - 2014-03-09 17:20 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-26 17:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-03-26 17:05 - 2014-03-01 17:00 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:47 - 2014-03-26 15:46 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 15:47 - 2014-03-16 12:00 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-26 15:47 - 2014-03-07 17:47 - 00000000 ____D () C:\Program Files\Nightly 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 19:15 - 2014-01-24 15:10 - 00004535 _____ () C:\Users\Alessio\AppData\Roaming\CamStudio.cfg 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamShapes.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamLayout.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\Camdata.ini 2014-03-25 19:14 - 2014-01-24 15:09 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\version2.xml 2014-03-25 19:13 - 2014-03-25 18:47 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:58 - 2014-03-25 15:31 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:55 - 2014-01-22 17:18 - 00000000 ____D () C:\Users\Alessio\AppData\Local\VirtualStore 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:38 - 2014-03-25 15:36 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:35 - 2014-03-25 15:31 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-25 13:19 - 2014-02-12 16:59 - 00000000 ____D () C:\Users\Alessio\AppData\Local\PackageStaging 2014-03-25 13:12 - 2013-07-13 09:49 - 00000000 ____D () C:\Users\Alessio\Tracing 2014-03-24 20:09 - 2013-08-03 10:41 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Notepad++ 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:45 - 2014-03-24 19:08 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:39 - 2013-08-22 15:46 - 00291610 _____ () C:\WINDOWS\setupact.log 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:32 - 2013-08-12 14:05 - 00000000 ____D () C:\AMD 2014-03-24 19:21 - 2014-03-09 17:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:09 - 2014-03-23 15:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-24 19:09 - 2013-07-29 13:08 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 19:07 - 2014-01-02 22:04 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-24 17:25 - 2014-03-24 17:25 - 25460555 _____ () C:\Users\Alessio\Desktop\must report thedw,ü .mp4 2014-03-24 15:32 - 2013-08-22 15:44 - 00376456 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-03-24 15:31 - 2014-01-23 14:42 - 00000000 ____D () C:\Users\Alessio 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:14 - 2014-03-24 14:11 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:50 - 2014-03-24 13:49 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:47 - 2014-03-24 12:46 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-24 12:46 - 2014-02-24 16:43 - 00000000 ____D () C:\WINDOWS\Minidump 2014-03-24 12:45 - 2014-02-24 16:43 - 559958084 _____ () C:\WINDOWS\MEMORY.DMP 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2014-03-23 15:49 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:53 - 2014-03-15 12:20 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-23 15:52 - 2014-03-23 15:46 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:34 - 2014-03-23 15:13 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:25 - 2013-06-01 11:00 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:22 - 2013-06-01 10:59 - 00000000 ____D () C:\ProgramData\UDL 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:21 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:18 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:17 - 2014-03-23 15:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:10 - 2013-05-29 06:27 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-03-22 17:20 - 2014-03-09 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-22 13:00 - 2014-01-23 18:22 - 00000000 ____D () C:\Users\Alessio\Documents\My Games 2014-03-21 17:43 - 2014-03-21 17:41 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-20 12:26 - 2014-01-23 12:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-03-20 12:25 - 2014-01-23 12:12 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-03-20 12:25 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:01 - 2014-03-18 19:00 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-17 20:34 - 2013-06-18 15:13 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Adobe 2014-03-17 20:34 - 2013-05-31 13:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:12 - 2013-10-30 16:10 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-03-17 18:12 - 2013-06-19 10:53 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\DVDVideoSoft 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:35 - 2014-03-17 15:30 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:14 - 2014-03-14 20:13 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 17:38 - 2014-01-23 18:50 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-03-14 17:38 - 2013-05-31 15:44 - 00000000 ____D () C:\ProgramData\Origin 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-03-13 17:31 - 2014-03-13 17:30 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-13 15:58 - 2014-01-25 17:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 15:58 - 2013-06-16 13:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 17:20 - 2014-03-09 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-12 17:20 - 2014-03-09 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-11 12:54 - 2014-01-22 20:29 - 00001088 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:06 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 15:00 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:56 - 2014-03-08 14:47 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:44 - 2013-10-11 15:50 - 00000000 ____D () C:\Users\Alessio\AppData\Local\YoYo_Games_Ltd 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:47 - 2014-03-07 17:46 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:47 - 2014-03-07 17:46 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 14:56 - 2013-08-08 15:03 - 00000000 ____D () C:\Users\Alessio\.gimp-2.8 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-05 09:26 - 2014-03-27 12:08 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-04 23:53 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-03-04 23:53 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-03 11:14 - 2014-03-03 11:13 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-03-01 07:05 - 2014-03-12 12:56 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-01 05:58 - 2014-03-12 12:56 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-01 05:30 - 2014-03-12 12:56 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-01 05:17 - 2014-03-12 12:56 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-01 04:54 - 2014-03-12 12:56 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-01 04:47 - 2014-03-12 12:56 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-01 04:42 - 2014-03-12 12:56 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-01 04:18 - 2014-03-12 12:56 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-01 04:14 - 2014-03-12 12:56 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-01 04:10 - 2014-03-12 12:56 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-01 04:03 - 2014-03-12 12:56 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-01 03:57 - 2014-03-12 12:56 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-01 03:38 - 2014-03-12 12:56 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-01 03:32 - 2014-03-12 12:56 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-01 03:27 - 2014-03-12 12:56 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:01 - 2014-02-27 15:00 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 14:30 - 2014-02-27 09:44 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 14:23 - 2014-02-14 17:00 - 00001306 _____ () C:\Users\Public\Desktop\paint.net.lnk 2014-02-26 14:23 - 2013-06-01 12:06 - 00000000 ____D () C:\Program Files\Paint.NET 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:35 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks 2014-02-26 13:34 - 2014-01-02 18:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup 2014-02-25 15:54 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Resources 2014-02-25 15:50 - 2014-02-25 13:34 - 00000000 ____D () C:\Users\Alessio\.androvm 2014-02-25 13:38 - 2014-02-25 13:36 - 210097664 _____ () C:\Users\Alessio\Downloads\androVM_vbox86tp_4.1.1_r6.1-20130222-gapps-houdini-flash.ova 2014-02-25 13:37 - 2014-02-25 13:37 - 00000613 _____ () C:\Users\Alessio\Desktop\WindowsAndroid.lnk 2014-02-25 13:37 - 2014-02-25 13:37 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WindowsAndroid 2014-02-25 13:37 - 2014-02-25 13:37 - 00000000 ____D () C:\SocketeQ 2014-02-25 13:37 - 2014-02-25 13:36 - 68006670 _____ (SocketeQ, Inc. ) C:\Users\Alessio\Downloads\Windroy_earlyrelease.exe Files to move or delete: ==================== C:\Users\Alessio\AppData\Roaming\Camdata.ini C:\Users\Alessio\AppData\Roaming\CamLayout.ini C:\Users\Alessio\AppData\Roaming\CamShapes.ini C:\Users\Alessio\AppData\Roaming\Network Meter_Usage.ini C:\Users\Alessio\IP_Log_Data.js C:\Users\Alessio\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Alessio\AppData\Local\Temp\avgnt.exe C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.4-R2.0-b2918jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.2-36-g9f75167-b3005jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-2-g85f5776-b3023jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-7-g13c4801-b3030jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-b3020jnks.dll C:\Users\Alessio\AppData\Local\Temp\npp.6.5.5.Installer.exe C:\Users\Alessio\AppData\Local\Temp\OpenComputersMod-native.32.dll C:\Users\Alessio\AppData\Local\Temp\ose00000.exe C:\Users\Alessio\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll C:\Users\Alessio\AppData\Local\Temp\vlc-2.1.3-win32.exe C:\Users\Alessio\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-03-12 12:56] - [2014-01-31 17:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02 LastRegBack: 2014-03-21 13:29 ==================== End Of Log ============================ |
|
27.03.2014, 15:28
| #4 |
| | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Addition.txt: FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-27 15:19:10
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
ArtRage 2 Starter Edition (HKLM-x32\...\{394C2C3E-CA18-4216-B430-ACDD82C26973}) (Version: 2.6.0 - Ambient Design)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Bog) (Version: - )
Benutzerhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Useg) (Version: - )
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{783DCCCB-FBD0-4D1D-928D-7075DA8015E6}) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Citrio (HKCU\...\Citrio) (Version: 31.0.1650.224 - © CATALINA GROUP LTD.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Fun 1.1 (HKLM-x32\...\Desktop Fun 1.1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dr.Windows 1.05.01 (HKLM-x32\...\Dr.Windows_is1) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free 3D Photo Maker version 2.0.27.304 (HKLM-x32\...\Free 3D Photo Maker_is1) (Version: 2.0.27.304 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Game Cam 2.6.1.0 (HKLM-x32\...\Game Cam) (Version: 2.6.1.0 - Game Cam Portal, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Translator 2.5 Build 41 (HKLM-x32\...\Google Translator_is1) (Version: - Daniel Schuhmann)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hotspot Shield 3.32 (HKLM-x32\...\HotspotShield) (Version: 3.32 - AnchorFree Inc.)
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Landwirtschafts Simulator 2011 (HKLM-x32\...\FarmingSimulator2011DE_is1) (Version: 1.0 - GIANTS Software)
LEGO® Harry Potter™: Die Jahre 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Die Jahre 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.2.1.1000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Texturepack Editor (HKLM-x32\...\Minecraft Texturepack Editor) (Version: - )
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Netzwerkhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Netg) (Version: - )
Nightly 31.0a1 (x64 en-US) (HKLM\...\Nightly 31.0a1 (x64 en-US)) (Version: 31.0a1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
s3oc - Sims3 Object Cloner (HKLM-x32\...\s3oc) (Version: 13-1112-2036 - Peter L Jones)
s3pe - Sims3 Package Editor (HKLM-x32\...\s3pe) (Version: 14-0113-1123 - Peter L Jones)
s3pe meshHelper for Blender (HKLM-x32\...\meshHelper-s3m2b) (Version: 12-0601-2217 - Peter L Jones)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SequoiaView (HKLM-x32\...\SequoiaView) (Version: - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
TSR Workshop (HKLM-x32\...\{33100EE2-5EDF-4AB1-BF08-D767E3AED642}) (Version: 2.0.86 - The Sims Resource)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WindowsAndroid version 4.0.3 (HKCU\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 4.0.3 - SocketeQ, Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
26-03-2014 16:11:26 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2013-08-22 14:25 - 2014-03-18 18:47 - 00001032 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0ABBF4D7-8C3E-4147-B530-B14762FF70DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-17] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {1A5DA4A8-080D-4C64-8BAE-102D2C006AC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4623EA34-8B71-4B49-936B-63342F2F88D0} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50FEC0EE-9C80-4519-8E01-ABCA0DE0B145} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {56ACA8A1-C129-4279-BF3B-34A991D00350} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD0EDD2-1762-427B-976B-14ED82F0B407} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {6D1A798C-1AAD-4B5D-99F6-ED997150C518} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {757424EC-7AA1-4C96-A4BD-442AD94E8557} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {84648F59-2545-4414-A995-96E1B7F1C1A4} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {863F14BE-A4CC-46BA-8E96-6381AA40300F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9CC0074F-B9C2-42A1-AB22-FB9C64A0EA9C} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {B053FC77-9B51-4A62-9EE4-EFA8935E8925} - System32\Tasks\Driver Booster SkipUAC (Alessio) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-07] (IObit)
Task: {BACAB916-B833-4DAA-9893-BFCF6D7E91B9} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {CC9BD1E8-8658-4827-B3AB-55C342543CF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D2817AB6-845F-4B05-926D-0315FCCF468D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {D3BEF917-9194-4689-BC9A-CE974E24F77D} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {D6E6724F-5881-4022-AA3B-ECC7CEE556FB} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {D7B707A8-B380-4BE8-9F9F-FC7B85C05ED8} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD12F52E-9505-4A48-9646-D70B0E15D42C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3775792459-901648600-1102063504-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-15 00:29 - 2014-01-15 00:29 - 00555304 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2014-03-07 17:47 - 2014-03-26 15:47 - 04750848 _____ () C:\Program Files\Nightly\mozjs.dll
2014-02-21 16:44 - 2014-02-14 11:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-15 00:23 - 2014-01-15 00:23 - 00937768 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2014-01-15 00:30 - 2014-01-15 00:30 - 00514344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.dll
2014-02-13 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-02-13 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-02-13 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Alessio\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alessio\SkyDrive (2).old:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/27/2014 02:39:46 PM) (Source: Microsoft-Windows-LocationProvider) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database
Error: (03/27/2014 02:04:01 PM) (Source: MsiInstaller) (User: DIAMONDSTONE)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (03/27/2014 02:02:59 PM) (Source: MsiInstaller) (User: DIAMONDSTONE)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (03/27/2014 01:58:49 PM) (Source: MsiInstaller) (User: DIAMONDSTONE)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (03/26/2014 08:16:29 PM) (Source: Application Hang) (User: )
Description: Programm wwahost.exe, Version 6.3.9600.16431 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ce8
Startzeit: 01cf49279ed4c42e
Endzeit: 4294967295
Anwendungspfad: C:\WINDOWS\system32\wwahost.exe
Berichts-ID: e83b28b5-b51a-11e3-be93-94de80712bbd
Vollständiger Name des fehlerhaften Pakets: Microsoft.BingNews_3.0.2.233_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexNews
Error: (03/26/2014 08:15:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: DIAMONDSTONE)
Description: Bei der Aktivierung der App „Microsoft.BingNews_8wekyb3d8bbwe!AppexNews“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (03/26/2014 08:14:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: DIAMONDSTONE)
Description: Die App „Microsoft.BingNews_3.0.2.233_x64__8wekyb3d8bbwe+AppexNews“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.
Error: (03/26/2014 04:26:14 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 31.0.0.5198, Zeitstempel: 0x5332b1df
Name des fehlerhaften Moduls: mozalloc.dll, Version: 31.0.0.5198, Zeitstempel: 0x5332a915
Ausnahmecode: 0x80000003
Fehleroffset: 0x000000000000135f
ID des fehlerhaften Prozesses: 0x38c
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (03/26/2014 04:06:05 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 31.0.0.5198, Zeitstempel: 0x5332b1df
Name des fehlerhaften Moduls: mozalloc.dll, Version: 31.0.0.5198, Zeitstempel: 0x5332a915
Ausnahmecode: 0x80000003
Fehleroffset: 0x000000000000135f
ID des fehlerhaften Prozesses: 0x1118
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (03/26/2014 03:02:28 PM) (Source: Application Hang) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20413 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: f30
Startzeit: 01cf48f731d647b6
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 2488ae97-b4eb-11e3-be93-94de80712bbd
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (03/27/2014 01:45:09 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/27/2014 01:45:09 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/27/2014 01:45:09 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (03/27/2014 01:44:25 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
Description: 4
Error: (03/27/2014 01:44:24 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/27/2014 01:44:24 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (03/27/2014 01:44:24 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/27/2014 00:08:27 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/26/2014 08:14:13 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/26/2014 08:14:13 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 40%
Total physical RAM: 8138.64 MB
Available physical RAM: 4857.48 MB
Total Pagefile: 16330.64 MB
Available Pagefile: 12201.2 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:416.93 GB) (Free:244.48 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Volume) (Fixed) (Total:48.83 GB) (Free:45.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D98CD4DC)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
28.03.2014, 11:18
| #5 |
| /// TB-Ausbilder /// Anleitungs-Guru | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Hallo! Schauen wir mal genau nach... Schritt 1 Bitte lasse die Datei aus der Code-Box bei Virustotal überprüfen.
Schritt 2
Schritt 3 ESET Online Scanner
Schritt 4 Bitte starte  FRST erneut und drücke auf Scan.Bitte poste mir den Link von virustotal und die Inhalte der Logs von MBAM, ESET und FRST hier in den Thread.
__________________ Gruß deeprybka  Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
28.03.2014, 16:48
| #6 |
| | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen')Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ad2300e87c4159419cd899194b915278
# engine=17657
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-28 01:33:11
# local_time=2014-03-28 02:33:11 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=1799 16775165 100 94 13002 3645145 5760 0
# compatibility_mode=5893 16776574 100 94 1288744 13329888 0 0
# scanned=312183
# found=0
# cleaned=0
# scan_time=6817
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ad2300e87c4159419cd899194b915278
# engine=17660
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-28 03:26:10
# local_time=2014-03-28 04:26:10 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=1799 16775165 100 94 19781 3651924 12539 0
# compatibility_mode=5893 16776574 100 94 1295523 13336667 0 0
# scanned=313348
# found=0
# cleaned=0
# scan_time=6540
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 28.03.2014 Suchlauf-Zeit: 12:30:19 Logdatei: Administrator: Ja Version: 2.00.0.1000 Malware Datenbank: v2014.03.28.03 Rootkit Datenbank: v2014.03.27.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Chameleon: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Alessio Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 281666 Verstrichene Zeit: 22 Min, 25 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Shuriken: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 25 PUP.Optional.OpenCandy, C:\Users\Alessio\AppData\Local\Temp\60377607-a0fb-49b0-adba-9c435df33687\winamp563_full_emusic-7plus_de-de.exe, In Quarantäne, [916f51af5aa646ba163242eaba4a857b], PUP.Optional.Conduit.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("CT3251747.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT3251747&octid=CT3251747&ISID=ISID_ID&SearchSource=15&CUI=UN27212270721234829&SSPV=&Lay=1&UM=1\"}");), Ersetzt,[3fc198689c64d62ac522ae84dc28b14f] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.admin", false);), Ersetzt,[f01037c99868c23efc3d66cd32d26799] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.aflt", "babsst");), Ersetzt,[a858c23eb24e58a83ffa8da6cd37ac54] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");), Ersetzt,[b24ef60a14ec9b651425231009fb36ca] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.autoRvrt", "false");), Ersetzt,[a858916fd42c659b43f6cd66b64ef20e] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.dfltLng", "de");), Ersetzt,[53ad2ad6be42d72970c96fc4a262cc34] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.excTlbr", false);), Ersetzt,[ef110bf5d42c31cf15241a19ea1a43bd] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.ffxUnstlRst", true);), Ersetzt,[bd434eb213ed44bcd86186ad0400867a] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.id", "96092d74000000000000a0f3c1231f1c");), Ersetzt,[f40c8d731de315ebbe7b0c27dd27649c] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlDay", "15909");), Ersetzt,[cf3130d0de22aa5650e936fdee16728e] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlRef", "sst");), Ersetzt,[a35d8f710ef257a9d76269ca5aaaca36] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.newTab", false);), Ersetzt,[40c06d93f60aa957e851c76cf212bb45] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prdct", "delta");), Ersetzt,[05fbe11f22de7a86c4750e25887c956b] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prtnrId", "delta");), Ersetzt,[c838f40c5da3728eb188db58a46045bb] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.rvrt", "false");), Ersetzt,[53adb749b44c3ec255e4ad860301a957] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.smplGrp", "none");), Ersetzt,[a858ea16ff01f10faa8ffb389f6553ad] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrId", "base");), Ersetzt,[d12fac54659b35cbe85173c031d30bf5] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrSrchUrl", "");), Ersetzt,[4fb16d93e51bac54241574bf08fc8d73] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsn", "1.8.21.5");), Ersetzt,[1de321dff709b14f0c2d84af699b37c9] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsnTs", "1.8.21.512:04:38");), Ersetzt,[f30dbc44f60abe4207322c073cc87a86] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsni", "1.8.21.5");), Ersetzt,[1ee2a65a22ded62afd3cdd5655affb05] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babExt", "");), Ersetzt,[4eb2857bae523cc42d0c7cb748bc10f0] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babTrack", "affID=123884&tsp=4952");), Ersetzt,[fd037c846e9249b7b584d65d966eda26] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.srcExt", "ss");), Ersetzt,[5ea234ccfe0241bf7abfc76c63a1cc34] Physische Sektoren: 0 (No malicious items detected) (end) https://www.virustotal.com/de/file/ac9a40e541e201f0d021581978b0ff5b6bc6a4b43889009fe100485e256cbfa2/analysis/1396004458/ ADDITION.txt: Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-28 16:44:17
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
ArtRage 2 Starter Edition (HKLM-x32\...\{394C2C3E-CA18-4216-B430-ACDD82C26973}) (Version: 2.6.0 - Ambient Design)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Bog) (Version: - )
Benutzerhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Useg) (Version: - )
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{783DCCCB-FBD0-4D1D-928D-7075DA8015E6}) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Citrio (HKCU\...\Citrio) (Version: 31.0.1650.224 - © CATALINA GROUP LTD.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Fun 1.1 (HKLM-x32\...\Desktop Fun 1.1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dr.Windows 1.05.01 (HKLM-x32\...\Dr.Windows_is1) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free 3D Photo Maker version 2.0.27.304 (HKLM-x32\...\Free 3D Photo Maker_is1) (Version: 2.0.27.304 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Game Cam 2.6.1.0 (HKLM-x32\...\Game Cam) (Version: 2.6.1.0 - Game Cam Portal, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Translator 2.5 Build 41 (HKLM-x32\...\Google Translator_is1) (Version: - Daniel Schuhmann)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hotspot Shield 3.32 (HKLM-x32\...\HotspotShield) (Version: 3.32 - AnchorFree Inc.)
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Landwirtschafts Simulator 2011 (HKLM-x32\...\FarmingSimulator2011DE_is1) (Version: 1.0 - GIANTS Software)
LEGO® Harry Potter™: Die Jahre 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Die Jahre 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.2.1.1000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Texturepack Editor (HKLM-x32\...\Minecraft Texturepack Editor) (Version: - )
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Netzwerkhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Netg) (Version: - )
Nightly 31.0a1 (x64 en-US) (HKLM\...\Nightly 31.0a1 (x64 en-US)) (Version: 31.0a1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
s3oc - Sims3 Object Cloner (HKLM-x32\...\s3oc) (Version: 13-1112-2036 - Peter L Jones)
s3pe - Sims3 Package Editor (HKLM-x32\...\s3pe) (Version: 14-0113-1123 - Peter L Jones)
s3pe meshHelper for Blender (HKLM-x32\...\meshHelper-s3m2b) (Version: 12-0601-2217 - Peter L Jones)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SequoiaView (HKLM-x32\...\SequoiaView) (Version: - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
TSR Workshop (HKLM-x32\...\{33100EE2-5EDF-4AB1-BF08-D767E3AED642}) (Version: 2.0.86 - The Sims Resource)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WindowsAndroid version 4.0.3 (HKCU\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 4.0.3 - SocketeQ, Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
26-03-2014 16:11:26 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2013-08-22 14:25 - 2014-03-18 18:47 - 00001032 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {05F2A1CF-10BE-438B-BA5C-B8B3A4B4D445} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {0ABBF4D7-8C3E-4147-B530-B14762FF70DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-17] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {1A5DA4A8-080D-4C64-8BAE-102D2C006AC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4623EA34-8B71-4B49-936B-63342F2F88D0} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50FEC0EE-9C80-4519-8E01-ABCA0DE0B145} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {56ACA8A1-C129-4279-BF3B-34A991D00350} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD0EDD2-1762-427B-976B-14ED82F0B407} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {6D1A798C-1AAD-4B5D-99F6-ED997150C518} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {757424EC-7AA1-4C96-A4BD-442AD94E8557} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {84648F59-2545-4414-A995-96E1B7F1C1A4} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {863F14BE-A4CC-46BA-8E96-6381AA40300F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9CC0074F-B9C2-42A1-AB22-FB9C64A0EA9C} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {B053FC77-9B51-4A62-9EE4-EFA8935E8925} - System32\Tasks\Driver Booster SkipUAC (Alessio) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-07] (IObit)
Task: {BACAB916-B833-4DAA-9893-BFCF6D7E91B9} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {CC9BD1E8-8658-4827-B3AB-55C342543CF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D2817AB6-845F-4B05-926D-0315FCCF468D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {D3BEF917-9194-4689-BC9A-CE974E24F77D} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {D6E6724F-5881-4022-AA3B-ECC7CEE556FB} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD12F52E-9505-4A48-9646-D70B0E15D42C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3775792459-901648600-1102063504-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-15 00:29 - 2014-01-15 00:29 - 00555304 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2014-03-07 17:47 - 2014-03-28 15:48 - 04754944 _____ () C:\Program Files\Nightly\mozjs.dll
2014-02-21 16:44 - 2014-02-14 11:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-15 00:23 - 2014-01-15 00:23 - 00937768 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2014-01-15 00:30 - 2014-01-15 00:30 - 00514344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.dll
2014-02-13 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-02-13 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-02-13 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Alessio\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alessio\SkyDrive (2).old:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/28/2014 04:43:15 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 3.3.10.2 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1a90
Startzeit: 01cf4a9c6618621f
Endzeit: 4294967295
Anwendungspfad: C:\Users\Alessio\Desktop\FRST64.exe
Berichts-ID: ac70b7c3-b68f-11e3-be95-94de80712bbd
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/28/2014 04:37:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:36:20 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:36:20 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:35:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:23 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:22 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
System errors:
=============
Error: (03/28/2014 11:57:48 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/28/2014 11:54:44 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/28/2014 11:54:44 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/28/2014 11:54:44 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/27/2014 08:03:06 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst MBAMScheduler erreicht.
Error: (03/27/2014 08:02:35 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/27/2014 08:02:35 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (03/27/2014 08:02:35 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/27/2014 04:23:22 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/27/2014 01:45:09 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 42%
Total physical RAM: 8138.64 MB
Available physical RAM: 4656.29 MB
Total Pagefile: 16330.64 MB
Available Pagefile: 11926.66 MB
Total Virtual: 131072 MB
Available Virtual: 131071.81 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:416.93 GB) (Free:234.6 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Volume) (Fixed) (Total:48.83 GB) (Free:45.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D98CD4DC)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
28.03.2014, 16:50
| #7 |
| | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') FRST.TXT: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by Alessio (administrator) on DIAMONDSTONE on 28-03-2014 16:43:57 Running from C:\Users\Alessio\Desktop Windows 8.1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\WINDOWS\system32\atiesrxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe (Microsoft Corporation) C:\WINDOWS\system32\dashost.exe () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (AMD) C:\WINDOWS\system32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\skydrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHAE.EXE (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Frontend.exe (Mozilla Corporation) C:\Program Files\Nightly\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-24] (Realtek Semiconductor) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.) HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [GamingKeyboard] - C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] - "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe" "C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware " [54072 2014-03-05] (Malwarebytes Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPSONEB7433 (Epson Stylus SX430)] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [DrWindows] - C:\Program Files (x86)\DrWindows\DrWindows.exe [2351104 2009-02-27] (DonationCoder.com) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD86800FEA03FCF01 SearchScopes: HKLM - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - DefaultScope {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKCU - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = SearchScopes: HKCU - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll No File BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default FF SelectedSearchEngine: Google FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alessio\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\beemp3.xml FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\mp3-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\artur.dubovoy@gmail.com [2014-03-10] FF Extension: ProxTube - Unblock YouTube - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\ich@maltegoetz.de [2014-03-22] FF Extension: Print pages to PDF - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\printPages2Pdf@reinhold.ripper [2013-08-30] FF Extension: SparPilot - Gutscheine & mehr... - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\sparpilot@sparpilot.com [2014-02-28] FF Extension: YouTube Unblocker - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-22] FF Extension: PrizeRebelBar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{0381d773-9643-436e-8a49-5d0bc6644a22} [2014-03-27] FF Extension: DownloadHelper - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25] FF Extension: MEGA - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\firefox@mega.co.nz.xpi [2013-11-28] FF Extension: betterFox - Make browsing experience 15% faster. - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\multirevenue@googlemail.com.xpi [2013-07-13] FF Extension: XJZ Survey Remover - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\survey-remover@gmx.com.xpi [2013-07-23] FF Extension: All-in-One Sidebar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-06-19] FF Extension: {228790f3-0170-435a-be1f-7511046ea7e9} - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{228790f3-0170-435a-be1f-7511046ea7e9}.xpi [2014-01-11] FF Extension: Video DivX Player Free - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{60270806-64ac-414c-aa17-ca1892b3f1be}.xpi [2014-01-11] FF Extension: NoScript - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20] FF Extension: YouTube High Definition - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-03-22] FF Extension: Update Scanner - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi [2014-03-17] FF Extension: Easy YouTube Video Downloader - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-06-18] FF Extension: Adblock Plus - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-18] FF Extension: DownThemAll! - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-06-18] FF Extension: Greasemonkey - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-11-14] FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2014-03-18] FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-02-25] FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Nightly\firefox.exe Chrome: ======= CHR HomePage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=9609A0F3C1231F1C&affID=123884&tsp=4952 CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (ChromeUtilPlugin) - C:\Users\Alessio_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\19.52819_0\background/ChromeUtilPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (fluxDVD Browser Plugin) - C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll ( ) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll No File CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll No File CHR Plugin: (fluxDVD Placeholder Plugin) - C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll No File CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File CHR Extension: (Google Docs) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-18] CHR Extension: (Google Drive) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-18] CHR Extension: (YouTube) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-18] CHR Extension: (Google-Suche) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-18] CHR Extension: (Tampermonkey) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-11-14] CHR Extension: (Freemake Video Converter) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22] CHR Extension: (Google Wallet) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21] CHR Extension: (Google Mail) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-18] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-12-17] ==================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.) R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [944424 2014-01-15] (AnchorFree Inc.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [78512 2014-01-14] () R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304 2014-01-15] () R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-24] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-22] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems) R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [27648 2012-05-11] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2014-01-14] (AnchorFree Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-23] (Microsoft Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-22] () S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-28] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) U0 rmtoh; C:\Windows\System32\drivers\ammgo.sys [79064 2014-03-28] (Malwarebytes Corporation) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-23] (Microsoft Corporation) S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-01-14] (Anchorfree Inc.) U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-11-22] (Seiko Epson Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-28 16:43 - 2014-03-28 16:43 - 00026609 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 12:37 - 2014-03-28 12:37 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-03-28 12:30 - 2014-03-28 12:30 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\ammgo.sys 2014-03-28 12:30 - 2014-03-28 12:30 - 00006644 _____ () C:\ad.txt 2014-03-28 12:08 - 2014-03-28 12:08 - 02347384 _____ (ESET) C:\Users\Alessio\Desktop\esetsmartinstaller_enu.exe 2014-03-27 15:18 - 2014-03-28 16:43 - 00000000 ____D () C:\FRST 2014-03-27 15:05 - 2014-03-27 15:05 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-27 14:42 - 2014-03-28 16:19 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 12:08 - 2014-03-28 16:24 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-27 12:06 - 2014-03-27 12:07 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:46 - 2014-03-26 15:47 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 18:47 - 2014-03-25 19:13 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:32 - 2014-03-26 20:26 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:36 - 2014-03-25 15:38 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:31 - 2014-03-25 18:58 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 15:31 - 2014-03-25 15:35 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:08 - 2014-03-24 19:45 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:11 - 2014-03-24 14:14 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 14:01 - 2011-01-23 19:25 - 00154119 _____ () C:\Users\Alessio\Desktop\Memtest86+ USB Installer.exe 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:49 - 2014-03-24 13:50 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:46 - 2014-03-24 12:47 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2012-05-11 15:24 - 00027648 _____ () C:\WINDOWS\system32\Drivers\GameKB.sys 2014-03-23 15:49 - 2014-03-23 15:53 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:46 - 2014-03-23 15:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-24 19:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-23 15:19 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:17 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-03-23 15:18 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:18 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2014-03-23 15:18 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esdevapp.exe 2014-03-23 15:18 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxcdev.dll 2014-03-23 15:13 - 2014-03-23 15:34 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-22 13:23 - 2013-11-22 15:34 - 00063096 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\Drivers\TMUSB64.sys 2014-03-21 17:41 - 2014-03-21 17:43 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:01 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 19:00 - 2014-01-14 23:47 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-18 11:10 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2014-03-18 11:10 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:30 - 2014-03-17 15:35 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-16 12:00 - 2014-03-27 20:04 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-15 12:20 - 2014-03-23 15:53 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:13 - 2014-03-14 20:14 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:30 - 2014-03-13 17:31 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-12 17:20 - 2014-03-28 11:58 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-12 12:56 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-12 12:56 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-12 12:56 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-12 12:56 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-12 12:56 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-12 12:56 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-12 12:56 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-12 12:56 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-03-12 12:56 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-03-12 12:56 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2014-03-12 12:56 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2014-03-12 12:56 - 2014-01-31 17:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-03-12 12:56 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-03-12 12:56 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-03-12 12:56 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-03-12 12:56 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-03-12 12:56 - 2014-01-29 10:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2014-03-12 12:56 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2014-03-12 12:56 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2014-03-12 12:56 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-03-12 12:56 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2014-03-12 12:56 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2014-03-12 12:56 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-03-12 12:56 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-03-12 12:56 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2014-03-12 12:56 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-03-12 12:56 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-03-12 12:56 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2014-03-12 12:56 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2014-03-12 12:56 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2014-03-12 12:56 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-03-12 12:56 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-03-12 12:56 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2014-03-12 12:56 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2014-03-12 12:56 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-24 19:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-26 17:22 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-09 17:20 - 2014-03-22 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-09 17:20 - 2014-03-12 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-09 17:20 - 2014-03-12 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:00 - 2014-03-08 15:06 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:47 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:31 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-08 14:29 - 2013-11-27 21:22 - 141519856 _____ () C:\Users\Alessio\Downloads\GMStudio-Installer.exe 2014-03-07 17:47 - 2014-03-28 15:48 - 00000000 ____D () C:\Program Files\Nightly 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:46 - 2014-03-07 17:47 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:46 - 2014-03-07 17:47 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-03 11:13 - 2014-03-03 11:14 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-28 16:05 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-01 17:00 - 2014-03-26 17:05 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:00 - 2014-02-27 15:01 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:44 - 2014-02-27 14:30 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks ==================== One Month Modified Files and Folders ======= 2014-03-28 16:43 - 2014-03-28 16:43 - 00026609 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 16:43 - 2014-03-27 15:18 - 00000000 ____D () C:\FRST 2014-03-28 16:37 - 2014-01-25 18:09 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5AAFE3CE-0AB4-4161-9BA2-01537602E0FD} 2014-03-28 16:34 - 2013-06-24 12:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Skype 2014-03-28 16:25 - 2013-06-05 15:22 - 00001136 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-28 16:24 - 2014-03-27 12:08 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-28 16:19 - 2014-03-27 14:42 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-28 16:08 - 2013-05-31 13:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-28 16:05 - 2014-03-01 17:00 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-28 16:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-03-28 15:53 - 2014-01-22 17:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3775792459-901648600-1102063504-1001 2014-03-28 15:48 - 2014-03-07 17:47 - 00000000 ____D () C:\Program Files\Nightly 2014-03-28 15:14 - 2013-07-12 13:24 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.minecraft 2014-03-28 14:30 - 2013-06-18 18:30 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\vlc 2014-03-28 13:44 - 2014-01-23 14:55 - 01717342 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-28 13:36 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-03-28 13:25 - 2014-01-22 20:10 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-28 13:25 - 2013-06-05 15:22 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-28 12:37 - 2014-03-28 12:37 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-03-28 12:30 - 2014-03-28 12:30 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\ammgo.sys 2014-03-28 12:30 - 2014-03-28 12:30 - 00006644 _____ () C:\ad.txt 2014-03-28 12:30 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-03-28 12:08 - 2014-03-28 12:08 - 02347384 _____ (ESET) C:\Users\Alessio\Desktop\esetsmartinstaller_enu.exe 2014-03-28 11:58 - 2014-03-12 17:20 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-28 11:58 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp 2014-03-28 11:55 - 2014-01-23 17:41 - 00000000 __RDO () C:\Users\Alessio\SkyDrive 2014-03-28 11:55 - 2013-12-03 12:45 - 00000000 ____D () C:\Users\Alessio\AppData\Local\LogMeIn Hamachi 2014-03-28 11:54 - 2014-01-23 14:37 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-03-27 20:06 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-03-27 20:06 - 2013-11-14 08:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat 2014-03-27 20:06 - 2013-11-14 08:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat 2014-03-27 20:04 - 2014-03-16 12:00 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-27 15:16 - 2013-10-30 16:29 - 00000000 ____D () C:\Users\Alessio\Documents\AVS4YOU 2014-03-27 15:16 - 2013-07-17 13:09 - 00000000 ____D () C:\Users\Alessio\Documents\Roms 2014-03-27 15:05 - 2014-03-27 15:05 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-27 14:06 - 2013-08-26 12:43 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 14:03 - 2014-01-22 19:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-27 14:03 - 2013-08-27 16:17 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 12:23 - 2013-11-13 23:18 - 00231336 _____ () C:\WINDOWS\PFRO.log 2014-03-27 12:23 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-27 12:23 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-02-13 19:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-27 12:07 - 2014-03-27 12:06 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 20:26 - 2014-03-25 18:32 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-26 17:22 - 2014-03-09 17:20 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-26 17:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-03-26 17:05 - 2014-03-01 17:00 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:47 - 2014-03-26 15:46 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 19:15 - 2014-01-24 15:10 - 00004535 _____ () C:\Users\Alessio\AppData\Roaming\CamStudio.cfg 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamShapes.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamLayout.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\Camdata.ini 2014-03-25 19:14 - 2014-01-24 15:09 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\version2.xml 2014-03-25 19:13 - 2014-03-25 18:47 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:58 - 2014-03-25 15:31 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:55 - 2014-01-22 17:18 - 00000000 ____D () C:\Users\Alessio\AppData\Local\VirtualStore 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:38 - 2014-03-25 15:36 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:35 - 2014-03-25 15:31 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-25 13:19 - 2014-02-12 16:59 - 00000000 ____D () C:\Users\Alessio\AppData\Local\PackageStaging 2014-03-25 13:12 - 2013-07-13 09:49 - 00000000 ____D () C:\Users\Alessio\Tracing 2014-03-24 20:09 - 2013-08-03 10:41 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Notepad++ 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:45 - 2014-03-24 19:08 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:39 - 2013-08-22 15:46 - 00291610 _____ () C:\WINDOWS\setupact.log 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:32 - 2013-08-12 14:05 - 00000000 ____D () C:\AMD 2014-03-24 19:21 - 2014-03-09 17:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:09 - 2014-03-23 15:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-24 19:09 - 2013-07-29 13:08 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 19:07 - 2014-01-02 22:04 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-24 15:32 - 2013-08-22 15:44 - 00376456 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-03-24 15:31 - 2014-01-23 14:42 - 00000000 ____D () C:\Users\Alessio 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:14 - 2014-03-24 14:11 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:50 - 2014-03-24 13:49 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:47 - 2014-03-24 12:46 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-24 12:46 - 2014-02-24 16:43 - 00000000 ____D () C:\WINDOWS\Minidump 2014-03-24 12:45 - 2014-02-24 16:43 - 559958084 _____ () C:\WINDOWS\MEMORY.DMP 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2014-03-23 15:49 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:53 - 2014-03-15 12:20 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-23 15:52 - 2014-03-23 15:46 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:34 - 2014-03-23 15:13 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:25 - 2013-06-01 11:00 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:22 - 2013-06-01 10:59 - 00000000 ____D () C:\ProgramData\UDL 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:21 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:18 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:17 - 2014-03-23 15:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:10 - 2013-05-29 06:27 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-03-22 17:20 - 2014-03-09 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-22 13:00 - 2014-01-23 18:22 - 00000000 ____D () C:\Users\Alessio\Documents\My Games 2014-03-21 17:43 - 2014-03-21 17:41 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-20 12:26 - 2014-01-23 12:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-03-20 12:25 - 2014-01-23 12:12 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-03-20 12:25 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:01 - 2014-03-18 19:00 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-17 20:34 - 2013-06-18 15:13 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Adobe 2014-03-17 20:34 - 2013-05-31 13:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:12 - 2013-10-30 16:10 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-03-17 18:12 - 2013-06-19 10:53 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\DVDVideoSoft 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:35 - 2014-03-17 15:30 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:14 - 2014-03-14 20:13 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 17:38 - 2014-01-23 18:50 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-03-14 17:38 - 2013-05-31 15:44 - 00000000 ____D () C:\ProgramData\Origin 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-03-13 17:31 - 2014-03-13 17:30 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-13 15:58 - 2014-01-25 17:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 15:58 - 2013-06-16 13:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 17:20 - 2014-03-09 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-12 17:20 - 2014-03-09 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-11 12:54 - 2014-01-22 20:29 - 00001088 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:06 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 15:00 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:56 - 2014-03-08 14:47 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:44 - 2013-10-11 15:50 - 00000000 ____D () C:\Users\Alessio\AppData\Local\YoYo_Games_Ltd 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:47 - 2014-03-07 17:46 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:47 - 2014-03-07 17:46 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 14:56 - 2013-08-08 15:03 - 00000000 ____D () C:\Users\Alessio\.gimp-2.8 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-05 09:26 - 2014-03-27 12:08 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-04 23:53 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-03-04 23:53 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-03 11:14 - 2014-03-03 11:13 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-03-01 07:05 - 2014-03-12 12:56 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-01 05:58 - 2014-03-12 12:56 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-01 05:30 - 2014-03-12 12:56 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-01 05:17 - 2014-03-12 12:56 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-01 04:54 - 2014-03-12 12:56 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-01 04:47 - 2014-03-12 12:56 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-01 04:42 - 2014-03-12 12:56 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-01 04:18 - 2014-03-12 12:56 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-01 04:14 - 2014-03-12 12:56 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-01 04:10 - 2014-03-12 12:56 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-01 04:03 - 2014-03-12 12:56 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-01 03:57 - 2014-03-12 12:56 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-01 03:38 - 2014-03-12 12:56 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-01 03:32 - 2014-03-12 12:56 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-01 03:27 - 2014-03-12 12:56 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:01 - 2014-02-27 15:00 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 14:30 - 2014-02-27 09:44 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 14:23 - 2014-02-14 17:00 - 00001306 _____ () C:\Users\Public\Desktop\paint.net.lnk 2014-02-26 14:23 - 2013-06-01 12:06 - 00000000 ____D () C:\Program Files\Paint.NET 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:35 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks 2014-02-26 13:34 - 2014-01-02 18:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup Files to move or delete: ==================== C:\Users\Alessio\AppData\Roaming\Camdata.ini C:\Users\Alessio\AppData\Roaming\CamLayout.ini C:\Users\Alessio\AppData\Roaming\CamShapes.ini C:\Users\Alessio\AppData\Roaming\Network Meter_Usage.ini C:\Users\Alessio\IP_Log_Data.js C:\Users\Alessio\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Alessio\AppData\Local\Temp\avgnt.exe C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.4-R2.0-b2918jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.2-36-g9f75167-b3005jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-2-g85f5776-b3023jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-7-g13c4801-b3030jnks.dll C:\Users\Alessio\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-b3020jnks.dll C:\Users\Alessio\AppData\Local\Temp\npp.6.5.5.Installer.exe C:\Users\Alessio\AppData\Local\Temp\OpenComputersMod-native.32.dll C:\Users\Alessio\AppData\Local\Temp\ose00000.exe C:\Users\Alessio\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll C:\Users\Alessio\AppData\Local\Temp\vlc-2.1.3-win32.exe C:\Users\Alessio\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-03-12 12:56] - [2014-01-31 17:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02 LastRegBack: 2014-03-21 13:29 ==================== End Of Log ============================ --- --- --- Ist der Trojaner noch drinnen? |
|
28.03.2014, 17:13
| #8 |
| /// TB-Ausbilder /// Anleitungs-Guru | Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') Da war nie ein Trojaner drinnen!  Das ist offensichtlich eine Fehlmeldung Deines AVP... Hast Du noch Fragen oder gibt es noch Probleme mit Deinem Rechner? Ansonsten...lade Dir bitte  DelFix herunter.
Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst Du sie bedenkenlos löschen. >>clean<< Wir haben es geschafft! Die Logs sehen für mich im Moment sauber aus. Wenn du möchtest, kannst du das Forum mit einer kleinen Spende unterstützen und hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst....  Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen. Epilog: Tipps, Dos & Don'ts Aktualität von System und SoftwareDas Betriebsystem Windows muss zwingend immer auf dem neusten Stand sein. Stelle sicher, dass die automatischen Updates aktiviert sind:
Auch die installierte Software sollte immer in der aktuellsten Version vorliegen. Speziell gilt das für den Browser, Java, Flash-Player und PDF-Reader, denn bekannte Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim blossen Besuch einer präparierten Website per Drive-by Download Malware zu installieren. Das kann sogar auf normalerweise legitimen Websites geschehen, wenn es einem Angreifer gelungen ist, seinen Code in die Seite einzuschleusen, und ist deshalb relativ unberechenbar.
Sicherheits-SoftwareEine Bemerkung vorneweg: Jede Softwarelösung hat ihre Schwächen. Die gesamte Verantwortung für die Sicherheit auf Software zu übertragen und einen Rundum-Schutz zu erwarten, wäre eine gefährliche Illusion. Bei unbedachtem oder bewusst risikoreichem Verhalten wird auch das beste Programm früher oder später seinen Dienst versagen (z.B. ein Virenscanner, der eine infizierte Datei nicht erkennt). Trotzdem ist entsprechende Software natürlich wichtig und hilft dir in Kombination mit einem gut gewarteten (up-to-date) System und durchdachtem Verhalten, deinen Rechner sauber zu halten.
Es liegt in der Natur der Sache, dass die am weitesten verbreitete Anwendungs-Software auch am häufigsten von Malware-Autoren attackiert wird. Es kann daher bereits einen kleinen Sicherheitsgewinn darstellen, wenn man alternative Software (z.B. einen alternativen PDF Reader) benutzt. Anstelle des Internet Explorers kann man beispielsweise den Mozilla Firefox einsetzen, für welchen es zwei nützliche Addons zur Empfehlung gibt:
(Un-)Sicheres Verhalten im InternetNebst unbemerkten Drive-by Installationen wird Malware aber auch oft mehr oder weniger aktiv vom Benutzer selbst installiert. Der Besuch zwielichtiger Websites kann bereits Risiken bergen. Und Downloads aus dubiosen Quellen sind immer russisches Roulette. Auch wenn der Virenscanner im Moment darin keine Bedrohung erkennt, muss das nichts bedeuten.
Oft wird auch versucht, den Benutzer mit mehr oder weniger trickreichen Methoden dazu zu bringen, eine für ihn verhängnisvolle Handlung selbst auszuführen (Überbegriff Social Engineering).
Nervige Adware (Werbung) und unnötige Toolbars werden auch meist durch den Benutzer selbst mitinstalliert.
Allgemeine HinweiseAbschliessend noch ein paar grundsätzliche Bemerkungen:
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
|
| Themen zu Ich habe einen Trojaner der im Amd Ordner drinnen ist ('TR/ATRAPS.Gen') |
| 'tr/atraps.gen', antivirus, ereignisse, gefunde, neuen, programm, pup.optional.conduit.a, pup.optional.delta.a, pup.optional.opencandy, tr/atraps.gen, trojaner gefunden, unerwünschtes, unerwünschtes programm, virus amd |
Malwarebytes Antimalware
Avast! Free Antivirus
NoScript
Adblock Plus
Linear-Darstellung
