| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Pub.Optional.Delta.A nicht entfernbarWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
28.03.2014, 22:01
| #1 |
 |  Pub.Optional.Delta.A nicht entfernbar Hallo, Nachdem ich einen Malwarebytes Scan durchgeführt habe zeigt es immer den Virus Pub.Optional.Delta.A an. Wenn ich ihn entferne und ich mein System nochmal Scanne habe ich ihn immernoch! Ich kann keinen Log von Malwarebytes machen da da immer steht "Scan abgebrochen" obwohl das nicht stimmt  und dann stürtzt Malwarebytes ab wenn ich auf "In Zwischenablage kopieren" klicke.Hier die FRST logs: Frst.log: https://drive.google.com/file/d/0B18ZJZzJjFqWOGtHdjE4TkdXUHM/edit?usp=sharing Text war zu groß und ich wusste nicht wie ich es hier reinstelle. Addition.txt: FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-28 21:56:39
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
8GadgetPack (HKLM-x32\...\{32A7C3B0-E5C3-4913-B1F2-49FE860FAA5E}) (Version: 11.0.0 - Helmut Buhler)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
ArtRage 2 Starter Edition (HKLM-x32\...\{394C2C3E-CA18-4216-B430-ACDD82C26973}) (Version: 2.6.0 - Ambient Design)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Bog) (Version: - )
Benutzerhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Useg) (Version: - )
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{783DCCCB-FBD0-4D1D-928D-7075DA8015E6}) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Citrio (HKCU\...\Citrio) (Version: 31.0.1650.224 - © CATALINA GROUP LTD.)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Fun 1.1 (HKLM-x32\...\Desktop Fun 1.1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dr.Windows 1.05.01 (HKLM-x32\...\Dr.Windows_is1) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free 3D Photo Maker version 2.0.27.304 (HKLM-x32\...\Free 3D Photo Maker_is1) (Version: 2.0.27.304 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Game Cam 2.6.1.0 (HKLM-x32\...\Game Cam) (Version: 2.6.1.0 - Game Cam Portal, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Translator 2.5 Build 41 (HKLM-x32\...\Google Translator_is1) (Version: - Daniel Schuhmann)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hotspot Shield 3.32 (HKLM-x32\...\HotspotShield) (Version: 3.32 - AnchorFree Inc.)
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Landwirtschafts Simulator 2011 (HKLM-x32\...\FarmingSimulator2011DE_is1) (Version: 1.0 - GIANTS Software)
LEGO® Harry Potter™: Die Jahre 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Die Jahre 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.2.1.1000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Texturepack Editor (HKLM-x32\...\Minecraft Texturepack Editor) (Version: - )
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Netzwerkhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Netg) (Version: - )
Nightly 31.0a1 (x64 en-US) (HKLM\...\Nightly 31.0a1 (x64 en-US)) (Version: 31.0a1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
s3oc - Sims3 Object Cloner (HKLM-x32\...\s3oc) (Version: 13-1112-2036 - Peter L Jones)
s3pe - Sims3 Package Editor (HKLM-x32\...\s3pe) (Version: 14-0113-1123 - Peter L Jones)
s3pe meshHelper for Blender (HKLM-x32\...\meshHelper-s3m2b) (Version: 12-0601-2217 - Peter L Jones)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SequoiaView (HKLM-x32\...\SequoiaView) (Version: - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.4.0.0 - IObit)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
TSR Workshop (HKLM-x32\...\{33100EE2-5EDF-4AB1-BF08-D767E3AED642}) (Version: 2.0.86 - The Sims Resource)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WindowsAndroid version 4.0.3 (HKCU\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 4.0.3 - SocketeQ, Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
28-03-2014 18:54:12 Installed Classic Shell
28-03-2014 18:55:48 Installed Classic Shell
==================== Hosts content: ==========================
2013-08-22 14:25 - 2014-03-18 18:47 - 00001032 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {09D2BD50-9DD3-4AB7-9A62-8BC5CEF370A8} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {0ABBF4D7-8C3E-4147-B530-B14762FF70DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-17] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {1A5DA4A8-080D-4C64-8BAE-102D2C006AC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {35FCAB06-CAEA-4B4D-B4D6-DC60A991E644} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-02] (IObit)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3D49DB00-9A50-4C5B-8A05-9132DF1288D4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {4623EA34-8B71-4B49-936B-63342F2F88D0} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50FEC0EE-9C80-4519-8E01-ABCA0DE0B145} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {56ACA8A1-C129-4279-BF3B-34A991D00350} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD0EDD2-1762-427B-976B-14ED82F0B407} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {6D1A798C-1AAD-4B5D-99F6-ED997150C518} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {84648F59-2545-4414-A995-96E1B7F1C1A4} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {863F14BE-A4CC-46BA-8E96-6381AA40300F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9CC0074F-B9C2-42A1-AB22-FB9C64A0EA9C} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {B053FC77-9B51-4A62-9EE4-EFA8935E8925} - System32\Tasks\Driver Booster SkipUAC (Alessio) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-07] (IObit)
Task: {BACAB916-B833-4DAA-9893-BFCF6D7E91B9} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {CC9BD1E8-8658-4827-B3AB-55C342543CF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D2817AB6-845F-4B05-926D-0315FCCF468D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-03-07] (IObit)
Task: {D3BEF917-9194-4689-BC9A-CE974E24F77D} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {D6E6724F-5881-4022-AA3B-ECC7CEE556FB} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2014-02-13] (Dll-FIles.Com)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD12F52E-9505-4A48-9646-D70B0E15D42C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3775792459-901648600-1102063504-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-15 00:29 - 2014-01-15 00:29 - 00555304 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2014-03-07 17:47 - 2014-03-28 15:48 - 04754944 _____ () C:\Program Files\Nightly\mozjs.dll
2014-02-21 16:44 - 2014-02-14 11:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-01-15 00:23 - 2014-01-15 00:23 - 00937768 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2014-01-15 00:30 - 2014-01-15 00:30 - 00514344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.dll
2014-02-13 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-02-13 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-13 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-02-13 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-28 19:45 - 2013-12-02 17:12 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2014-03-28 19:45 - 2013-12-02 17:12 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2014-03-28 19:45 - 2013-12-02 17:12 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2014-03-28 19:45 - 2013-12-02 17:12 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2014-03-28 19:45 - 2013-12-02 17:12 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2014-03-28 19:45 - 2013-12-02 17:13 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Alessio\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alessio\SkyDrive (2).old:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/28/2014 09:49:49 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.495, Zeitstempel: 0x53165beb
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x1308
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Vollständiger Name des fehlerhaften Pakets: mbam.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: mbam.exe5
Error: (03/28/2014 08:47:58 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 1.0.0.495, Zeitstempel: 0x53165beb
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0x40000015
Fehleroffset: 0x0008d6fd
ID des fehlerhaften Prozesses: 0x814
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Vollständiger Name des fehlerhaften Pakets: mbam.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: mbam.exe5
Error: (03/28/2014 08:34:52 PM) (Source: Microsoft-Windows-Defrag) (User: )
Description: Das Volume "System (C:)" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)
Error: (03/28/2014 05:11:12 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 31.0.0.5200, Zeitstempel: 0x53355801
Name des fehlerhaften Moduls: mozalloc.dll, Version: 31.0.0.5200, Zeitstempel: 0x53354f5f
Ausnahmecode: 0x80000003
Fehleroffset: 0x000000000000135f
ID des fehlerhaften Prozesses: 0x16b0
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5
Error: (03/28/2014 04:43:15 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 3.3.10.2 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1a90
Startzeit: 01cf4a9c6618621f
Endzeit: 4294967295
Anwendungspfad: C:\Users\Alessio\Desktop\FRST64.exe
Berichts-ID: ac70b7c3-b68f-11e3-be95-94de80712bbd
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (03/28/2014 04:37:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:36:20 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:36:20 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 02:35:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/28/2014 00:37:23 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
System errors:
=============
Error: (03/28/2014 09:26:33 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/28/2014 09:26:33 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/28/2014 09:26:33 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/28/2014 09:26:33 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (03/28/2014 09:13:28 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/28/2014 09:13:28 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/28/2014 09:13:28 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (03/28/2014 08:56:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (03/28/2014 05:07:09 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (03/28/2014 11:57:48 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 33%
Total physical RAM: 8138.64 MB
Available physical RAM: 5436.99 MB
Total Pagefile: 16330.64 MB
Available Pagefile: 10173.5 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:416.93 GB) (Free:244.72 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Volume) (Fixed) (Total:48.83 GB) (Free:45.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D98CD4DC)
Partition: GPT Partition Type.
==================== End Of Log ============================
[/CODE] Bei vorherigen Scans wurde der Virus auch angezeigt. Hier der Malwarebytes log dazu: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 28.03.2014 Suchlauf-Zeit: 12:30:19 Logdatei: Administrator: Ja Version: 2.00.0.1000 Malware Datenbank: v2014.03.28.03 Rootkit Datenbank: v2014.03.27.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Chameleon: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Alessio Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 281666 Verstrichene Zeit: 22 Min, 25 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Shuriken: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 25 PUP.Optional.OpenCandy, C:\Users\Alessio\AppData\Local\Temp\60377607-a0fb-49b0-adba-9c435df33687\winamp563_full_emusic-7plus_de-de.exe, In Quarantäne, [916f51af5aa646ba163242eaba4a857b], PUP.Optional.Conduit.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("CT3251747.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT3251747&octid=CT3251747&ISID=ISID_ID&SearchSource=15&CUI=UN27212270721234829&SSPV=&Lay=1&UM=1\"}");), Ersetzt,[3fc198689c64d62ac522ae84dc28b14f] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.admin", false);), Ersetzt,[f01037c99868c23efc3d66cd32d26799] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.aflt", "babsst");), Ersetzt,[a858c23eb24e58a83ffa8da6cd37ac54] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");), Ersetzt,[b24ef60a14ec9b651425231009fb36ca] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.autoRvrt", "false");), Ersetzt,[a858916fd42c659b43f6cd66b64ef20e] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.dfltLng", "de");), Ersetzt,[53ad2ad6be42d72970c96fc4a262cc34] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.excTlbr", false);), Ersetzt,[ef110bf5d42c31cf15241a19ea1a43bd] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.ffxUnstlRst", true);), Ersetzt,[bd434eb213ed44bcd86186ad0400867a] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.id", "96092d74000000000000a0f3c1231f1c");), Ersetzt,[f40c8d731de315ebbe7b0c27dd27649c] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlDay", "15909");), Ersetzt,[cf3130d0de22aa5650e936fdee16728e] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlRef", "sst");), Ersetzt,[a35d8f710ef257a9d76269ca5aaaca36] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.newTab", false);), Ersetzt,[40c06d93f60aa957e851c76cf212bb45] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prdct", "delta");), Ersetzt,[05fbe11f22de7a86c4750e25887c956b] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prtnrId", "delta");), Ersetzt,[c838f40c5da3728eb188db58a46045bb] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.rvrt", "false");), Ersetzt,[53adb749b44c3ec255e4ad860301a957] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.smplGrp", "none");), Ersetzt,[a858ea16ff01f10faa8ffb389f6553ad] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrId", "base");), Ersetzt,[d12fac54659b35cbe85173c031d30bf5] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrSrchUrl", "");), Ersetzt,[4fb16d93e51bac54241574bf08fc8d73] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsn", "1.8.21.5");), Ersetzt,[1de321dff709b14f0c2d84af699b37c9] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsnTs", "1.8.21.512:04:38");), Ersetzt,[f30dbc44f60abe4207322c073cc87a86] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsni", "1.8.21.5");), Ersetzt,[1ee2a65a22ded62afd3cdd5655affb05] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babExt", "");), Ersetzt,[4eb2857bae523cc42d0c7cb748bc10f0] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babTrack", "affID=123884&tsp=4952");), Ersetzt,[fd037c846e9249b7b584d65d966eda26] PUP.Optional.Delta.A, C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.srcExt", "ss");), Ersetzt,[5ea234ccfe0241bf7abfc76c63a1cc34] Physische Sektoren: 0 (No malicious items detected) (end) Geändert von AlGrande (28.03.2014 um 22:46 Uhr) |
|
29.03.2014, 07:24
| #2 |
| /// the machine /// TB-Ausbilder    | Pub.Optional.Delta.A nicht entfernbar Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
29.03.2014, 11:33
| #3 |
| | Pub.Optional.Delta.A nicht entfernbar FRST.log:
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by Alessio (administrator) on DIAMONDSTONE on 28-03-2014 21:56:06 Running from C:\Users\Alessio\Desktop Windows 8.1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\WINDOWS\system32\atiesrxx.exe (AMD) C:\WINDOWS\system32\atieclxx.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe (Microsoft Corporation) C:\WINDOWS\system32\dashost.exe () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Microsoft Corporation) C:\Windows\System32\skydrive.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHAE.EXE (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Mozilla Corporation) C:\Program Files\Nightly\firefox.exe (AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\af_proxy_cmd.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-24] (Realtek Semiconductor) HKLM\...\Run: [Classic Start Menu] - C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.) HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [GamingKeyboard] - C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPSONEB7433 (Epson Stylus SX430)] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [DrWindows] - C:\Program Files (x86)\DrWindows\DrWindows.exe [2351104 2009-02-27] (DonationCoder.com) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC) ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: http=127.0.0.1:8555;https=127.0.0.1:8555 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD86800FEA03FCF01 SearchScopes: HKLM - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - DefaultScope {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKCU - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = SearchScopes: HKCU - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll No File BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default FF SelectedSearchEngine: Google FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alessio\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\beemp3.xml FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\mp3-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\artur.dubovoy@gmail.com [2014-03-10] FF Extension: ProxTube - Unblock YouTube - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\ich@maltegoetz.de [2014-03-22] FF Extension: Print pages to PDF - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\printPages2Pdf@reinhold.ripper [2013-08-30] FF Extension: SparPilot - Gutscheine & mehr... - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\sparpilot@sparpilot.com [2014-02-28] FF Extension: YouTube Unblocker - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-22] FF Extension: PrizeRebelBar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{0381d773-9643-436e-8a49-5d0bc6644a22} [2014-03-27] FF Extension: DownloadHelper - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25] FF Extension: MEGA - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\firefox@mega.co.nz.xpi [2013-11-28] FF Extension: betterFox - Make browsing experience 15% faster. - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\multirevenue@googlemail.com.xpi [2013-07-13] FF Extension: XJZ Survey Remover - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\survey-remover@gmx.com.xpi [2013-07-23] FF Extension: All-in-One Sidebar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-06-19] FF Extension: {228790f3-0170-435a-be1f-7511046ea7e9} - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{228790f3-0170-435a-be1f-7511046ea7e9}.xpi [2014-01-11] FF Extension: Video DivX Player Free - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{60270806-64ac-414c-aa17-ca1892b3f1be}.xpi [2014-01-11] FF Extension: NoScript - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20] FF Extension: YouTube High Definition - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-03-22] FF Extension: Update Scanner - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi [2014-03-17] FF Extension: Easy YouTube Video Downloader - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-06-18] FF Extension: Adblock Plus - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-18] FF Extension: DownThemAll! - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-06-18] FF Extension: Greasemonkey - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-11-14] FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2014-03-18] FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-02-25] FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Nightly\firefox.exe Chrome: ======= CHR HomePage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=9609A0F3C1231F1C&affID=123884&tsp=4952 CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (ChromeUtilPlugin) - C:\Users\Alessio_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\19.52819_0\background/ChromeUtilPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (fluxDVD Browser Plugin) - C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll ( ) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll No File CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll No File CHR Plugin: (fluxDVD Placeholder Plugin) - C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll No File CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File CHR Extension: (Google Docs) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-18] CHR Extension: (Google Drive) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-18] CHR Extension: (YouTube) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-18] CHR Extension: (Google-Suche) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-18] CHR Extension: (Tampermonkey) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-11-14] CHR Extension: (Freemake Video Converter) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22] CHR Extension: (Google Wallet) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21] CHR Extension: (Google Mail) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-18] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-12-17] ==================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.) R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [944424 2014-01-15] (AnchorFree Inc.) S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [78512 2014-01-14] () R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304 2014-01-15] () R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72512 2013-12-02] (IObit) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-24] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-22] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems) R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [27648 2012-05-11] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2014-01-14] (AnchorFree Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-23] (Microsoft Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-22] () S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-28] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-23] (Microsoft Corporation) S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-01-14] (Anchorfree Inc.) U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-11-22] (Seiko Epson Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-28 21:56 - 2014-03-28 21:56 - 00028420 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 21:56 - 2014-03-28 21:56 - 00000000 ____D () C:\FRST 2014-03-28 21:55 - 2014-03-28 21:55 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-28 20:07 - 2014-03-28 20:07 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-28 20:05 - 2014-03-28 20:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 19:59 - 2014-03-28 20:00 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 19:58 - 2014-03-28 19:59 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 19:56 - 2014-03-28 19:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 19:54 - 2014-03-28 19:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 19:53 - 2014-03-28 19:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 19:46 - 2014-03-28 21:26 - 00165659 _____ () C:\MyXML.xml 2014-03-28 19:46 - 2014-03-28 19:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 19:46 - 2014-03-28 19:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 19:45 - 2014-03-28 19:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 19:19 - 2014-03-28 19:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 18:46 - 2014-03-28 18:47 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 17:48 - 2014-03-28 17:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 17:43 - 2014-03-28 17:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 17:41 - 2014-03-28 17:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 17:40 - 2014-03-28 17:50 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-28 17:40 - 2014-03-28 17:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 17:40 - 2014-03-28 17:40 - 00000932 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 17:40 - 2014-03-28 17:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 17:38 - 2014-03-28 17:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 12:30 - 2014-03-28 12:30 - 00006644 _____ () C:\ad.txt 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 12:08 - 2014-03-28 21:50 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-03-05 09:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-27 12:08 - 2014-03-05 09:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-27 12:06 - 2014-03-27 12:07 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:46 - 2014-03-26 15:47 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 18:47 - 2014-03-25 19:13 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:32 - 2014-03-26 20:26 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:36 - 2014-03-25 15:38 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:31 - 2014-03-25 18:58 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 15:31 - 2014-03-25 15:35 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-28 19:45 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:08 - 2014-03-24 19:45 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:11 - 2014-03-24 14:14 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 14:01 - 2011-01-23 19:25 - 00154119 _____ () C:\Users\Alessio\Desktop\Memtest86+ USB Installer.exe 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:49 - 2014-03-24 13:50 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:46 - 2014-03-24 12:47 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2012-05-11 15:24 - 00027648 _____ () C:\WINDOWS\system32\Drivers\GameKB.sys 2014-03-23 15:49 - 2014-03-23 15:53 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:46 - 2014-03-23 15:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-24 19:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-23 15:19 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:17 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:19 - 2014-03-23 15:17 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-03-23 15:19 - 2010-09-13 15:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-03-23 15:19 - 2010-09-13 15:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2014-03-23 15:19 - 2008-06-18 11:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-03-23 15:18 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:18 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2014-03-23 15:18 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esdevapp.exe 2014-03-23 15:18 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxcdev.dll 2014-03-23 15:13 - 2014-03-23 15:34 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-22 13:23 - 2013-11-22 15:34 - 00063096 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\Drivers\TMUSB64.sys 2014-03-21 17:41 - 2014-03-21 17:43 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:01 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 19:00 - 2014-01-14 23:47 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-18 11:10 - 2014-02-22 13:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2014-03-18 11:10 - 2014-02-22 12:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:30 - 2014-03-17 15:35 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-16 12:00 - 2014-03-27 20:04 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-15 12:20 - 2014-03-23 15:53 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:13 - 2014-03-14 20:14 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:30 - 2014-03-13 17:31 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-12 17:20 - 2014-03-28 21:28 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-12 12:56 - 2014-03-01 07:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-12 12:56 - 2014-03-01 05:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-12 12:56 - 2014-03-01 05:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-12 12:56 - 2014-03-01 04:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-12 12:56 - 2014-03-01 04:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 04:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-12 12:56 - 2014-03-01 04:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-12 12:56 - 2014-03-01 04:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-12 12:56 - 2014-03-01 04:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-12 12:56 - 2014-03-01 03:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-12 12:56 - 2014-03-01 03:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-12 12:56 - 2014-03-01 03:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-12 12:56 - 2014-03-01 03:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-03-12 12:56 - 2014-02-11 04:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-03-12 12:56 - 2014-02-11 03:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2014-03-12 12:56 - 2014-02-11 03:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2014-03-12 12:56 - 2014-01-31 17:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-03-12 12:56 - 2014-01-31 17:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-03-12 12:56 - 2014-01-31 17:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-03-12 12:56 - 2014-01-31 14:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-03-12 12:56 - 2014-01-31 10:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-03-12 12:56 - 2014-01-29 10:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2014-03-12 12:56 - 2014-01-29 09:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2014-03-12 12:56 - 2014-01-29 09:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 09:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2014-03-12 12:56 - 2014-01-29 09:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-03-12 12:56 - 2014-01-29 08:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2014-03-12 12:56 - 2014-01-29 08:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2014-03-12 12:56 - 2014-01-29 08:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2014-03-12 12:56 - 2014-01-29 07:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-03-12 12:56 - 2014-01-29 01:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-03-12 12:56 - 2014-01-27 20:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 20:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 20:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2014-03-12 12:56 - 2014-01-27 19:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2014-03-12 12:56 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-03-12 12:56 - 2014-01-27 19:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-03-12 12:56 - 2014-01-27 19:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-03-12 12:56 - 2014-01-27 18:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 18:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2014-03-12 12:56 - 2014-01-27 16:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-03-12 12:56 - 2014-01-27 16:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-03-12 12:56 - 2014-01-27 12:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2014-03-12 12:56 - 2014-01-18 00:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2014-01-17 22:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-03-12 12:56 - 2013-12-21 15:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2014-03-12 12:56 - 2013-12-21 09:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2014-03-12 12:56 - 2013-12-20 11:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-03-12 12:56 - 2013-12-20 11:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-03-12 12:56 - 2013-10-31 01:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2014-03-12 12:56 - 2013-10-31 01:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2014-03-12 12:56 - 2013-10-31 01:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-28 19:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-26 17:22 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-09 17:20 - 2014-03-22 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-09 17:20 - 2014-03-12 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-09 17:20 - 2014-03-12 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:00 - 2014-03-08 15:06 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:47 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:31 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-08 14:29 - 2013-11-27 21:22 - 141519856 _____ () C:\Users\Alessio\Downloads\GMStudio-Installer.exe 2014-03-07 17:47 - 2014-03-28 15:48 - 00000000 ____D () C:\Program Files\Nightly 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:46 - 2014-03-07 17:47 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:46 - 2014-03-07 17:47 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-03 11:13 - 2014-03-03 11:14 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-28 21:05 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-01 17:00 - 2014-03-28 17:05 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:00 - 2014-02-27 15:01 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:44 - 2014-02-27 14:30 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks ==================== One Month Modified Files and Folders ======= 2014-03-28 21:56 - 2014-03-28 21:56 - 00028420 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 21:56 - 2014-03-28 21:56 - 00000000 ____D () C:\FRST 2014-03-28 21:55 - 2014-03-28 21:55 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-28 21:50 - 2014-03-27 12:08 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-28 21:42 - 2013-06-24 12:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Skype 2014-03-28 21:31 - 2014-01-23 17:41 - 00000000 __RDO () C:\Users\Alessio\SkyDrive 2014-03-28 21:31 - 2014-01-22 17:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3775792459-901648600-1102063504-1001 2014-03-28 21:28 - 2014-03-12 17:20 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-28 21:27 - 2014-01-22 20:10 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-28 21:27 - 2013-12-03 12:45 - 00000000 ____D () C:\Users\Alessio\AppData\Local\LogMeIn Hamachi 2014-03-28 21:26 - 2014-03-28 19:46 - 00165659 _____ () C:\MyXML.xml 2014-03-28 21:26 - 2013-06-05 15:22 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-28 21:25 - 2013-06-05 15:22 - 00001136 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-28 21:11 - 2014-01-23 14:55 - 01749228 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-28 21:08 - 2013-05-31 13:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-28 21:05 - 2014-03-01 17:00 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-28 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-03-28 20:57 - 2014-01-23 14:37 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-03-28 20:57 - 2013-11-13 23:18 - 00234630 _____ () C:\WINDOWS\PFRO.log 2014-03-28 20:57 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-28 20:56 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-03-28 20:50 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-03-28 20:07 - 2014-03-28 20:07 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-28 20:06 - 2013-08-22 16:36 - 00000000 ___SD () C:\Program Files (x86)\Windows Sidebar 2014-03-28 20:05 - 2014-03-28 20:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 20:00 - 2014-03-28 19:59 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 19:59 - 2014-03-28 19:58 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 19:56 - 2014-03-28 19:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 19:54 - 2014-03-28 19:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 19:53 - 2014-03-28 19:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 19:47 - 2014-01-25 18:09 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5AAFE3CE-0AB4-4161-9BA2-01537602E0FD} 2014-03-28 19:46 - 2014-03-28 19:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 19:46 - 2014-03-28 19:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 19:45 - 2014-03-28 19:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 19:45 - 2014-03-24 19:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-28 19:21 - 2014-03-09 17:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-28 19:19 - 2014-03-28 19:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 18:49 - 2013-06-18 18:30 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\vlc 2014-03-28 18:47 - 2014-03-28 18:46 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 17:50 - 2014-03-28 17:40 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-28 17:48 - 2014-03-28 17:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 17:43 - 2014-03-28 17:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 17:41 - 2014-03-28 17:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 17:40 - 2014-03-28 17:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 17:40 - 2014-03-28 17:40 - 00000932 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 17:40 - 2014-03-28 17:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 17:38 - 2014-03-28 17:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 17:05 - 2014-03-01 17:00 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-28 15:48 - 2014-03-07 17:47 - 00000000 ____D () C:\Program Files\Nightly 2014-03-28 15:14 - 2013-07-12 13:24 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.minecraft 2014-03-28 13:36 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-03-28 12:30 - 2014-03-28 12:30 - 00006644 _____ () C:\ad.txt 2014-03-28 11:58 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp 2014-03-27 20:06 - 2013-11-14 08:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-03-27 20:06 - 2013-11-14 08:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat 2014-03-27 20:06 - 2013-11-14 08:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat 2014-03-27 20:04 - 2014-03-16 12:00 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-27 15:16 - 2013-10-30 16:29 - 00000000 ____D () C:\Users\Alessio\Documents\AVS4YOU 2014-03-27 15:16 - 2013-07-17 13:09 - 00000000 ____D () C:\Users\Alessio\Documents\Roms 2014-03-27 14:06 - 2013-08-26 12:43 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-03-27 14:03 - 2014-03-27 14:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 14:03 - 2014-03-27 14:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 14:03 - 2014-01-22 19:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-27 14:03 - 2013-08-27 16:17 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 13:52 - 2014-03-27 13:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 13:51 - 2014-03-27 13:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 12:08 - 2014-03-27 12:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 12:08 - 2014-03-27 12:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 12:08 - 2014-02-13 19:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-27 12:07 - 2014-03-27 12:06 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 20:26 - 2014-03-25 18:32 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-26 17:22 - 2014-03-09 17:20 - 00000306 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2014-03-26 17:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-03-26 15:49 - 2014-03-26 15:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 15:47 - 2014-03-26 15:46 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 13:14 - 2014-03-26 13:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:16 - 2014-03-25 19:16 - 00000000 ____D () C:\WINDOWS\SysWOW64\Hotspot Shield 2014-03-25 19:15 - 2014-01-24 15:10 - 00004535 _____ () C:\Users\Alessio\AppData\Roaming\CamStudio.cfg 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamShapes.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamLayout.ini 2014-03-25 19:15 - 2014-01-24 15:10 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\Camdata.ini 2014-03-25 19:14 - 2014-01-24 15:09 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\version2.xml 2014-03-25 19:13 - 2014-03-25 18:47 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 18:58 - 2014-03-25 15:31 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 17:21 - 2014-03-25 17:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 15:56 - 2014-03-25 15:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 15:56 - 2014-03-25 15:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 15:55 - 2014-03-25 15:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 15:55 - 2014-01-22 17:18 - 00000000 ____D () C:\Users\Alessio\AppData\Local\VirtualStore 2014-03-25 15:52 - 2014-03-25 15:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 15:52 - 2014-03-25 15:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 15:52 - 2014-03-25 15:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 15:52 - 2014-03-25 15:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 15:44 - 2014-03-25 15:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 15:40 - 2014-03-25 15:40 - 00000000 ____D () C:\Guide 2014-03-25 15:38 - 2014-03-25 15:36 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 15:36 - 2014-03-25 15:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 15:36 - 2014-03-25 15:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 15:36 - 2014-03-25 15:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 15:35 - 2014-03-25 15:31 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 15:31 - 2014-03-25 15:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 15:31 - 2014-03-25 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 14:52 - 2014-03-25 14:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 14:32 - 2014-03-25 14:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 14:11 - 2014-03-25 14:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 14:07 - 2014-03-25 14:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 14:05 - 2014-03-25 14:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 14:01 - 2014-03-25 14:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 13:59 - 2014-03-25 13:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 13:58 - 2014-03-25 13:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 13:54 - 2014-03-25 13:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 13:44 - 2014-03-25 13:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 13:36 - 2014-03-25 13:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-25 13:19 - 2014-02-12 16:59 - 00000000 ____D () C:\Users\Alessio\AppData\Local\PackageStaging 2014-03-25 13:12 - 2013-07-13 09:49 - 00000000 ____D () C:\Users\Alessio\Tracing 2014-03-24 20:09 - 2013-08-03 10:41 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Notepad++ 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 20:05 - 2014-03-24 20:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 19:45 - 2014-03-24 19:08 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 19:40 - 2014-03-24 19:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 19:40 - 2014-03-24 19:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 19:39 - 2014-03-24 19:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 19:39 - 2014-03-24 19:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 19:39 - 2014-03-24 19:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 19:39 - 2014-03-24 19:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 19:39 - 2013-08-22 15:46 - 00291610 _____ () C:\WINDOWS\setupact.log 2014-03-24 19:37 - 2014-03-24 19:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 19:37 - 2014-03-24 19:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 19:36 - 2014-03-24 19:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 19:36 - 2014-03-24 19:36 - 00003162 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Update 2014-03-24 19:36 - 2014-03-24 19:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 19:36 - 2014-03-24 19:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 19:36 - 2014-03-24 19:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 19:36 - 2014-03-24 19:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 19:35 - 2014-03-24 19:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 19:33 - 2014-03-24 19:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 19:32 - 2014-03-24 19:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 19:32 - 2013-08-12 14:05 - 00000000 ____D () C:\AMD 2014-03-24 19:09 - 2014-03-24 19:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 19:09 - 2014-03-24 19:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 19:09 - 2014-03-24 19:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 19:09 - 2014-03-23 15:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-24 19:09 - 2013-07-29 13:08 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-03-24 19:08 - 2014-03-24 19:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 19:08 - 2014-03-24 19:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 19:07 - 2014-03-24 19:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 19:07 - 2014-01-02 22:04 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-24 15:32 - 2013-08-22 15:44 - 00376456 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-03-24 15:31 - 2014-01-23 14:42 - 00000000 ____D () C:\Users\Alessio 2014-03-24 15:26 - 2014-03-24 15:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 15:26 - 2014-03-24 15:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 14:14 - 2014-03-24 14:11 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 14:07 - 2014-03-24 14:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 14:07 - 2014-03-24 14:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 14:05 - 2014-03-24 14:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 14:03 - 2014-03-24 14:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 13:54 - 2014-03-24 13:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 13:50 - 2014-03-24 13:49 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 13:48 - 2014-03-24 13:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 13:42 - 2014-03-24 13:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 12:47 - 2014-03-24 12:46 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-24 12:46 - 2014-02-24 16:43 - 00000000 ____D () C:\WINDOWS\Minidump 2014-03-24 12:45 - 2014-02-24 16:43 - 559958084 _____ () C:\WINDOWS\MEMORY.DMP 2014-03-23 15:53 - 2014-03-23 15:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 15:53 - 2014-03-23 15:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 15:53 - 2014-03-23 15:49 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 15:53 - 2014-03-15 12:20 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-23 15:52 - 2014-03-23 15:46 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 15:34 - 2014-03-23 15:13 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-23 15:26 - 2014-03-23 15:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 15:25 - 2014-03-23 15:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 15:25 - 2013-06-01 11:00 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint 2014-03-23 15:22 - 2014-03-23 15:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 15:22 - 2013-06-01 10:59 - 00000000 ____D () C:\ProgramData\UDL 2014-03-23 15:21 - 2014-03-23 15:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 15:21 - 2014-03-23 15:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 15:21 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 15:20 - 2014-03-23 15:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 15:19 - 2014-03-23 15:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 15:19 - 2014-03-23 15:18 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 15:17 - 2014-03-23 15:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 15:17 - 2014-03-23 15:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 15:10 - 2013-05-29 06:27 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-03-22 17:20 - 2014-03-09 17:20 - 00000322 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2014-03-22 13:00 - 2014-01-23 18:22 - 00000000 ____D () C:\Users\Alessio\Documents\My Games 2014-03-21 17:43 - 2014-03-21 17:41 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 13:21 - 2014-03-21 13:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 13:20 - 2014-03-21 13:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-20 12:26 - 2014-01-23 12:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-03-20 12:25 - 2014-01-23 12:12 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-03-20 12:25 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-03-18 19:01 - 2014-03-18 19:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 19:01 - 2014-03-18 19:01 - 00000000 ____D () C:\ProgramData\Hotspot Shield 2014-03-18 19:01 - 2014-03-18 19:00 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield 2014-03-18 19:00 - 2014-03-18 19:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Hotspot Shield 2014-03-18 14:04 - 2014-03-18 14:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-17 20:34 - 2013-06-18 15:13 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Adobe 2014-03-17 20:34 - 2013-05-31 13:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-03-17 18:19 - 2014-03-17 18:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 18:18 - 2014-03-17 18:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 18:18 - 2014-03-17 18:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 18:17 - 2014-03-17 18:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 18:15 - 2014-03-17 18:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 18:14 - 2014-03-17 18:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 18:13 - 2014-03-17 18:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 18:12 - 2014-03-17 18:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 18:12 - 2014-03-17 18:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 18:12 - 2013-10-30 16:10 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-03-17 18:12 - 2013-06-19 10:53 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\DVDVideoSoft 2014-03-17 18:11 - 2014-03-17 18:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 16:23 - 2014-03-17 16:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 15:40 - 2014-03-17 15:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 15:35 - 2014-03-17 15:30 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 15:28 - 2014-03-17 15:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 13:56 - 2014-03-17 13:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 12:20 - 2014-03-15 12:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 12:19 - 2014-03-15 12:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 12:01 - 2014-03-15 12:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 12:01 - 2014-03-15 12:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 12:00 - 2014-03-15 12:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 20:14 - 2014-03-14 20:13 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 17:38 - 2014-01-23 18:50 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-03-14 17:38 - 2013-05-31 15:44 - 00000000 ____D () C:\ProgramData\Origin 2014-03-14 12:17 - 2014-03-14 12:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 12:08 - 2014-03-14 12:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-03-13 17:34 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-03-13 17:31 - 2014-03-13 17:30 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-13 15:58 - 2014-01-25 17:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 15:58 - 2013-06-16 13:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 17:20 - 2014-03-09 17:20 - 00003054 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates 2014-03-12 17:20 - 2014-03-09 17:20 - 00003040 _____ () C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY 2014-03-12 12:56 - 2014-03-12 12:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-11 12:54 - 2014-01-22 20:29 - 00001088 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-10 20:25 - 2014-03-10 20:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 18:36 - 2014-03-10 18:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 17:21 - 2014-03-09 17:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 17:20 - 2014-03-09 17:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 17:20 - 2014-03-09 17:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\dll-files.com 2014-03-09 17:20 - 2014-03-09 17:20 - 00000000 ____D () C:\Program Files (x86)\Dll-Files.com Fixer 2014-03-09 15:21 - 2014-03-09 15:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 15:20 - 2014-03-09 15:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 15:16 - 2014-03-09 15:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 15:06 - 2014-03-08 15:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 15:00 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 14:56 - 2014-03-08 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 14:56 - 2014-03-08 14:47 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 14:44 - 2013-10-11 15:50 - 00000000 ____D () C:\Users\Alessio\AppData\Local\YoYo_Games_Ltd 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 14:31 - 2014-03-08 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-07 17:47 - 2014-03-07 17:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 17:47 - 2014-03-07 17:46 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 17:47 - 2014-03-07 17:46 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 14:56 - 2013-08-08 15:03 - 00000000 ____D () C:\Users\Alessio\.gimp-2.8 2014-03-06 13:54 - 2014-03-06 13:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 13:53 - 2014-03-06 13:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 13:32 - 2014-03-06 13:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 13:32 - 2014-03-06 13:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 13:32 - 2014-03-06 13:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 18:42 - 2014-03-05 18:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 18:34 - 2014-03-05 18:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 18:31 - 2014-03-05 18:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 16:35 - 2014-03-05 16:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 16:35 - 2014-03-05 16:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-05 09:26 - 2014-03-27 12:08 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-05 09:26 - 2014-03-27 12:08 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-04 23:53 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-03-04 23:53 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-03 11:14 - 2014-03-03 11:13 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 17:07 - 2014-03-01 17:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 17:00 - 2014-03-01 17:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 17:00 - 2014-03-01 17:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 17:00 - 2014-03-01 17:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 17:00 - 2014-03-01 17:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 17:00 - 2014-03-01 17:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 16:55 - 2014-03-01 16:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-03-01 07:05 - 2014-03-12 12:56 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-01 05:58 - 2014-03-12 12:56 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-01 05:30 - 2014-03-12 12:56 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-01 05:17 - 2014-03-12 12:56 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-01 04:54 - 2014-03-12 12:56 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-01 04:47 - 2014-03-12 12:56 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-01 04:42 - 2014-03-12 12:56 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-01 04:18 - 2014-03-12 12:56 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-01 04:14 - 2014-03-12 12:56 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-01 04:10 - 2014-03-12 12:56 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-01 04:03 - 2014-03-12 12:56 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-01 03:57 - 2014-03-12 12:56 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-01 03:38 - 2014-03-12 12:56 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-01 03:32 - 2014-03-12 12:56 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-01 03:27 - 2014-03-12 12:56 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-01 03:25 - 2014-03-12 12:56 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-02-27 15:05 - 2014-02-27 15:05 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi 2014-02-27 15:01 - 2014-02-27 15:00 - 08179712 _____ () C:\Users\Alessio\Downloads\Hamachi-2.2.0.170.msi 2014-02-27 14:30 - 2014-02-27 09:44 - 00000000 ____D () C:\Program Files (x86)\TERA 2014-02-27 09:45 - 2014-02-27 09:45 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\TERA 2014-02-27 09:43 - 2014-02-27 09:43 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\Alessio\Downloads\TERASetup.exe 2014-02-26 19:57 - 2014-02-26 19:57 - 00046136 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2014-02-26 14:23 - 2014-02-14 17:00 - 00001306 _____ () C:\Users\Public\Desktop\paint.net.lnk 2014-02-26 14:23 - 2013-06-01 12:06 - 00000000 ____D () C:\Program Files\Paint.NET 2014-02-26 13:35 - 2014-02-26 13:35 - 00001886 _____ () C:\Users\Public\Desktop\Apps.lnk 2014-02-26 13:35 - 2014-02-26 13:35 - 00001825 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk 2014-02-26 13:35 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\ProgramData\BlueStacks 2014-02-26 13:34 - 2014-02-26 13:34 - 00000000 ____D () C:\Program Files (x86)\BlueStacks 2014-02-26 13:34 - 2014-01-02 18:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup Files to move or delete: ==================== C:\Users\Alessio\AppData\Roaming\Camdata.ini C:\Users\Alessio\AppData\Roaming\CamLayout.ini C:\Users\Alessio\AppData\Roaming\CamShapes.ini C:\Users\Alessio\AppData\Roaming\Network Meter_Usage.ini C:\Users\Alessio\IP_Log_Data.js C:\Users\Alessio\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Alessio\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-03-12 12:56] - [2014-01-31 17:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02 LastRegBack: 2014-03-28 19:31 ==================== End Of Log ============================ --- --- --- --- --- --- --- --- --- --- --- --- --- --- --- |
|
30.03.2014, 07:07
| #4 |
| /// the machine /// TB-Ausbilder | Pub.Optional.Delta.A nicht entfernbar Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8555;https=127.0.0.1:8555
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
30.03.2014, 13:00
| #5 |
| | Pub.Optional.Delta.A nicht entfernbar Fixlog.txt: Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-30 13:38:34 Run:1
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8555;https=127.0.0.1:8555
*****************
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => Value not found.
==== End of Fixlog ====
AdwCleaner log: AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.022 - Bericht erstellt am 30/03/2014 um 13:42:56
# Aktualisiert 13/03/2014 von Xplode
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : Alessio - DIAMONDSTONE
# Gestartet von : C:\Users\Alessio\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : hshld
[#] Dienst Gelöscht : hsstrayservice
Dienst Gelöscht : hsswd
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\FreeRIP
Ordner Gelöscht : C:\ProgramData\hotspot shield
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hotspot shield
Ordner Gelöscht : C:\Program Files (x86)\FreeRIP
Ordner Gelöscht : C:\Program Files (x86)\hotspot shield
Ordner Gelöscht : C:\Program Files (x86)\software4u
Ordner Gelöscht : C:\WINDOWS\SysWOW64\hotspot shield
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\hotspot shield
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\software4u
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Windows Net Data
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Smartbar
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\CT3251747
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\afurladvisor@anchorfree.com
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\sparpilot@sparpilot.com
Ordner Gelöscht : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{0381d773-9643-436e-8a49-5d0bc6644a22}
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
Datei Gelöscht : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\invalidprefs.js
Datei Gelöscht : C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
Datei Gelöscht : C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Driver Booster Update
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : HKCU\Software\anchorfree
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKLM\Software\hotspotshield
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\hotspotshield
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16518
-\\ Mozilla Firefox v27.0.1 (de)
[ Datei : C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\prefs.js ]
Zeile gelöscht : user_pref("CT3251747.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.FirstTime", "true");
Zeile gelöscht : user_pref("CT3251747.FirstTimeFF3", "true");
Zeile gelöscht : user_pref("CT3251747.UserID", "UN27212270721234829");
Zeile gelöscht : user_pref("CT3251747.addressBarTakeOverEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT3251747.appOptions", "{}");
Zeile gelöscht : user_pref("CT3251747.countryCode", "DE");
Zeile gelöscht : user_pref("CT3251747.defaultSearch", "false");
Zeile gelöscht : user_pref("CT3251747.enableSearchFromAddressBar", "true");
Zeile gelöscht : user_pref("CT3251747.firstTimeDialogOpened", "true");
Zeile gelöscht : user_pref("CT3251747.fixPageNotFoundErrorByUser", "TRUE");
Zeile gelöscht : user_pref("CT3251747.fixPageNotFoundErrorInHidden", "true");
Zeile gelöscht : user_pref("CT3251747.fullUserID", "UN27212270721234829.IN.20140326154728");
Zeile gelöscht : user_pref("CT3251747.hxxp___www_prizerebel_com.APP_WIN_FEATURES.enc", "aHNjcm9sbD1ubywgc2F2ZXJlc2l6ZWRzaXplPW5vLCB0aXRsZWJhcj1ubywgY2xvc2VvbmV4dGVybmFsY2xpY2s9eWVz");
Zeile gelöscht : user_pref("CT3251747.installType", "xpe");
Zeile gelöscht : user_pref("CT3251747.isCheckedStartAsHidden", true);
Zeile gelöscht : user_pref("CT3251747.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.isFirstTimeToolbarLoading", "false");
Zeile gelöscht : user_pref("CT3251747.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gelöscht : user_pref("CT3251747.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT3251747&octid=CT3251747&ISID=ISID_ID&SearchSource=15&CUI=UN27212270721234829&SSPV=[...]
Zeile gelöscht : user_pref("CT3251747.lastVersion", "10.23.0.722");
Zeile gelöscht : user_pref("CT3251747.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Zeile gelöscht : user_pref("CT3251747.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://PrizeRebelBar.OurToolbar.com/\",\"EB_T[...]
Zeile gelöscht : user_pref("CT3251747.openThankYouPage", "true");
Zeile gelöscht : user_pref("CT3251747.openUninstallPage", "true");
Zeile gelöscht : user_pref("CT3251747.revertSettingsEnabled", "false");
Zeile gelöscht : user_pref("CT3251747.searchInNewTabEnabledByUser", "false");
Zeile gelöscht : user_pref("CT3251747.searchInNewTabEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT3251747.searchSuggestEnabledByUser", "true");
Zeile gelöscht : user_pref("CT3251747.searchUninstallUserMode", "1");
Zeile gelöscht : user_pref("CT3251747.searchUserMode", "1");
Zeile gelöscht : user_pref("CT3251747.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3251747\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://PrizeRebelBar.OurToolbar.com//xpi\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"PrizeRebelBar \"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_Configuration_lastUpdate", "1395845293637");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1395845295225");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_appsMetadata_lastUpdate", "1395845294788");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1395845295030");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_login_10.23.0.722_lastUpdate", "1395845304919");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1395845295194");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_searchAPI_lastUpdate", "1395845294817");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_serviceMap_lastUpdate", "1395845293455");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_setupAPI_lastUpdate", "1395845293861");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_toolbarContextMenu_lastUpdate", "1395845294794");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_toolbarSettings_lastUpdate", "1395845294250");
Zeile gelöscht : user_pref("CT3251747.serviceLayer_services_translation_lastUpdate", "1395845294780");
Zeile gelöscht : user_pref("CT3251747.settingsINI", true);
Zeile gelöscht : user_pref("CT3251747.shouldFirstTimeDialog", "false");
Zeile gelöscht : user_pref("CT3251747.showToolbarPermission", "false");
Zeile gelöscht : user_pref("CT3251747.smartbar.CTID", "CT3251747");
Zeile gelöscht : user_pref("CT3251747.smartbar.Uninstall", "0");
Zeile gelöscht : user_pref("CT3251747.smartbar.toolbarName", "PrizeRebelBar ");
Zeile gelöscht : user_pref("CT3251747.startPage", "false");
Zeile gelöscht : user_pref("CT3251747.toolbarBornServerTime", "26-3-2014");
Zeile gelöscht : user_pref("CT3251747.toolbarCurrentServerTime", "26-3-2014");
Zeile gelöscht : user_pref("CT3251747.toolbarInstallDate", "26-03-2014 15:48:13");
Zeile gelöscht : user_pref("CT3251747.toolbarLoginClientTime", "Wed Mar 26 2014 15:48:24 GMT+0100");
Zeile gelöscht : user_pref("CT3251747_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1395850562348,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gelöscht : user_pref("extensions.betterff.surfcanyon.ramp.start_time", "1392321442713");
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.id", "96092d74000000000000a0f3c1231f1c");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15909");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.21.5");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.21.512:04:38");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.21.5");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=123884&tsp=4952");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394019116959");
Zeile gelöscht : user_pref("plugin.state.npconduitfirefoxplugin", 2);
Zeile gelöscht : user_pref("smartbar.machineId", "SA0SC5NWAPLFKF2N9BVRQ+L2JP6PHCIRIG9TN/FF1A+RECZ82F7JX/PIRLYLN6MLIJCASEKQNRFMBI1WUQMUIW");
Zeile gelöscht : user_pref("valueApps.CT3251747./9B-0?3GFA7EF", "2B2E2C3D");
Zeile gelöscht : user_pref("valueApps.CT3251747./9B-0?3GFA7EF.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747./9B90E@.3C;7B=?OFB>>RHIQS", "393F352F3E");
Zeile gelöscht : user_pref("valueApps.CT3251747./9B90E@.3C;7B=?OFB>>RHIQS.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.PG_ENABLE", "74727565");
Zeile gelöscht : user_pref("valueApps.CT3251747.PG_ENABLE.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appStateReportTime", "31333935383435323937303839");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appStateReportTime.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Clarity_Active", "6F6E");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Clarity_Active.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_CouponBuddy", "6F6E");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_CouponBuddy.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Easytobook", "6F6E");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Easytobook.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Easytobook_targeted", "6F6E");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_Easytobook_targeted.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_PriceGong", "6F6E");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appState_PriceGong.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appsConfig.storedInFile", true);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appsDefaultEnabled", "6E756C6C");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_appsDefaultEnabled.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_calledSetupService", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_calledSetupService.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_currentVersion", "312E31332E302E3137");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_currentVersion.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_existingUsersRecoveryDone", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_existingUsersRecoveryDone.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_first_time", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_first_time.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_gadgetOpen", "30");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_gadgetOpen.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_lastLoginTime", "31333935383435323937343230");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_lastLoginTime.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_lastSettingsOpen", "7B2273657474696E67735061676546756C6C55726C223A22687474703A2F2F6170702E6D616D2E76616363696E742E636F6D2F6765746170702F73612F4354333235313734372F[...]
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_lastSettingsOpen.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_localization.storedInFile", true);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_mamEnabled", "66616C7365");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_mamEnabled.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_migrated_from_ls", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_migrated_from_ls.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_new_welcome_experience", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_new_welcome_experience.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_settings1.13.0.17.storedInFile", true);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_showWelcomeGadget", "66616C7365");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_showWelcomeGadget.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_stamp", "35345F30");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_stamp.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_userBornDate", "4E2F41");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_userBornDate.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_userId", "65376362616638382D363066302D343238622D393065612D656533316266346339333431");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_userId.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_user_approval_interacted", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_user_approval_interacted.storedInFile", false);
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_welcomeDialogMode", "31");
Zeile gelöscht : user_pref("valueApps.CT3251747.mam_gk_welcomeDialogMode.storedInFile", false);
-\\ Google Chrome v33.0.1750.154
[ Datei : C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht : homepage
*************************
AdwCleaner[R0].txt - [17297 octets] - [30/03/2014 13:40:47]
AdwCleaner[S0].txt - [17085 octets] - [30/03/2014 13:42:56]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [17146 octets] ##########
[/CODE] Geändert von AlGrande (30.03.2014 um 13:34 Uhr) |
|
30.03.2014, 13:37
| #6 |
| | Pub.Optional.Delta.A nicht entfernbar Junkware Removal Tool Log: JRT Logfile: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 8.1 x64
Ran by Alessio on 30.03.2014 at 14:30:51,83
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] "C:\WINDOWS\Tasks\dll-files.com fixer_monthly.job"
Successfully deleted: [File] "C:\WINDOWS\Tasks\dll-files.com fixer_updates.job"
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\hotspot shield"
Successfully deleted: [Folder] "C:\Users\Alessio\AppData\Roaming\dll-files.com"
Successfully deleted: [Folder] "C:\Program Files (x86)\dll-files.com fixer"
~~~ FireFox
Successfully deleted the following from C:\Users\Alessio\AppData\Roaming\mozilla\firefox\profiles\6uvzt569.default\prefs.js
user_pref("extensions.betterff.surfcanyon.ramp.start_time", "1396180029071");
user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1396180037242");
Emptied folder: C:\Users\Alessio\AppData\Roaming\mozilla\firefox\profiles\6uvzt569.default\minidumps [8 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.03.2014 at 14:34:32,20
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[/CODE] Addition.txt: FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-30 14:37:18
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
8GadgetPack (HKLM-x32\...\{32A7C3B0-E5C3-4913-B1F2-49FE860FAA5E}) (Version: 11.0.0 - Helmut Buhler)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtRage 2 Starter Edition (HKLM-x32\...\{394C2C3E-CA18-4216-B430-ACDD82C26973}) (Version: 2.6.0 - Ambient Design)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Bog) (Version: - )
Benutzerhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Useg) (Version: - )
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{783DCCCB-FBD0-4D1D-928D-7075DA8015E6}) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Citrio (HKCU\...\Citrio) (Version: 31.0.1650.224 - © CATALINA GROUP LTD.)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Fun 1.1 (HKLM-x32\...\Desktop Fun 1.1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dr.Windows 1.05.01 (HKLM-x32\...\Dr.Windows_is1) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free 3D Photo Maker version 2.0.27.304 (HKLM-x32\...\Free 3D Photo Maker_is1) (Version: 2.0.27.304 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Game Cam 2.6.1.0 (HKLM-x32\...\Game Cam) (Version: 2.6.1.0 - Game Cam Portal, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Translator 2.5 Build 41 (HKLM-x32\...\Google Translator_is1) (Version: - Daniel Schuhmann)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC)
iDevice Manager (HKLM-x32\...\FE5AE7DC-7B01-4263-A94C-B4526C276550_is1) (Version: 3.4.0.0 - Marx Software)
iFunbox (v2.7.2386.747), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.7.2386.747 - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Landwirtschafts Simulator 2011 (HKLM-x32\...\FarmingSimulator2011DE_is1) (Version: 1.0 - GIANTS Software)
LEGO® Harry Potter™: Die Jahre 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Die Jahre 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.2.1.1000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Texturepack Editor (HKLM-x32\...\Minecraft Texturepack Editor) (Version: - )
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Netzwerkhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Netg) (Version: - )
Nightly 31.0a1 (x64 en-US) (HKLM\...\Nightly 31.0a1 (x64 en-US)) (Version: 31.0a1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
s3oc - Sims3 Object Cloner (HKLM-x32\...\s3oc) (Version: 13-1112-2036 - Peter L Jones)
s3pe - Sims3 Package Editor (HKLM-x32\...\s3pe) (Version: 14-0113-1123 - Peter L Jones)
s3pe meshHelper for Blender (HKLM-x32\...\meshHelper-s3m2b) (Version: 12-0601-2217 - Peter L Jones)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SequoiaView (HKLM-x32\...\SequoiaView) (Version: - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.4.0.0 - IObit)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
TSR Workshop (HKLM-x32\...\{33100EE2-5EDF-4AB1-BF08-D767E3AED642}) (Version: 2.0.86 - The Sims Resource)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WindowsAndroid version 4.0.3 (HKCU\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 4.0.3 - SocketeQ, Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
28-03-2014 18:54:12 Installed Classic Shell
28-03-2014 18:55:48 Installed Classic Shell
30-03-2014 10:41:13 Installed Apple Mobile Device Support
==================== Hosts content: ==========================
2013-08-22 15:25 - 2014-03-18 19:47 - 00001032 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0ABBF4D7-8C3E-4147-B530-B14762FF70DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-17] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\Windows/system32\aitagent.exe [2013-08-22] (Microsoft Corporation)
Task: {1A5DA4A8-080D-4C64-8BAE-102D2C006AC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A53394-6573-4364-B93F-C58ADA6085E2} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {35FCAB06-CAEA-4B4D-B4D6-DC60A991E644} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-02] (IObit)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4623EA34-8B71-4B49-936B-63342F2F88D0} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50FEC0EE-9C80-4519-8E01-ABCA0DE0B145} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {56ACA8A1-C129-4279-BF3B-34A991D00350} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD0EDD2-1762-427B-976B-14ED82F0B407} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {84648F59-2545-4414-A995-96E1B7F1C1A4} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {863F14BE-A4CC-46BA-8E96-6381AA40300F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {903BB2DE-F173-4A2C-BF7F-769B2A0A2A57} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3775792459-901648600-1102063504-1001
Task: {9CC0074F-B9C2-42A1-AB22-FB9C64A0EA9C} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows/system32\BthUdTask.exe [2013-08-22] (Microsoft Corporation)
Task: {B053FC77-9B51-4A62-9EE4-EFA8935E8925} - System32\Tasks\Driver Booster SkipUAC (Alessio) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-07] (IObit)
Task: {BACAB916-B833-4DAA-9893-BFCF6D7E91B9} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {CC9BD1E8-8658-4827-B3AB-55C342543CF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D2817AB6-845F-4B05-926D-0315FCCF468D} - \Driver Booster Update No Task File
Task: {D3BEF917-9194-4689-BC9A-CE974E24F77D} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {D8384D46-4783-4064-915F-5C6B37222803} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD12F52E-9505-4A48-9646-D70B0E15D42C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3775792459-901648600-1102063504-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {FD1C4813-C424-4567-8A43-F0BEE7AB3966} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-03-07 18:47 - 2014-03-29 14:51 - 04830720 _____ () C:\Program Files\Nightly\mozjs.dll
2014-02-21 17:44 - 2014-02-14 12:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-02-13 20:54 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-02-13 20:54 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-02-13 20:54 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-13 20:54 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-02-13 20:54 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-28 20:45 - 2013-12-02 18:12 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2014-03-28 20:45 - 2013-12-02 18:12 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2014-03-28 20:45 - 2013-12-02 18:12 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2014-03-24 20:36 - 2013-08-02 18:07 - 00348992 _____ () C:\Program Files (x86)\IObit\Driver Booster\madExcept_.bpl
2014-03-24 20:36 - 2013-08-02 18:07 - 00183616 _____ () C:\Program Files (x86)\IObit\Driver Booster\madBasic_.bpl
2014-03-24 20:36 - 2013-08-02 18:07 - 00051008 _____ () C:\Program Files (x86)\IObit\Driver Booster\madDisAsm_.bpl
2014-03-24 20:36 - 2014-01-07 15:16 - 00893248 _____ () C:\Program Files (x86)\IObit\Driver Booster\webres.dll
2014-03-24 20:36 - 2012-02-16 11:16 - 00516440 _____ () C:\Program Files (x86)\IObit\Driver Booster\sqlite3.dll
2014-03-28 20:45 - 2013-12-02 18:12 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2014-03-28 20:45 - 2013-12-02 18:12 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2014-03-28 20:45 - 2013-12-02 18:13 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 00044968 _____ () C:\Program Files (x86)\Java\jre7\bin\prism-d3d.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 00159656 _____ () C:\Program Files (x86)\Java\jre7\bin\glass.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 00504232 _____ () C:\Program Files (x86)\Java\jre7\bin\libxml2.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 00164776 _____ () C:\Program Files (x86)\Java\jre7\bin\libxslt.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 11893160 _____ () C:\Program Files (x86)\Java\jre7\bin\jfxwebkit.dll
2014-01-22 21:04 - 2014-01-22 21:04 - 00243112 _____ () C:\Program Files (x86)\Java\jre7\bin\javafx-font.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Alessio\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alessio\SkyDrive (2).old:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 42%
Total physical RAM: 8138.64 MB
Available physical RAM: 4691.64 MB
Total Pagefile: 16330.64 MB
Available Pagefile: 9207.89 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:416.93 GB) (Free:242.25 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Volume) (Fixed) (Total:48.83 GB) (Free:45.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D98CD4DC)
Partition: GPT Partition Type.
==================== End Of Log ============================
Geändert von AlGrande (30.03.2014 um 13:36 Uhr) |
|
30.03.2014, 13:38
| #7 |
| | Pub.Optional.Delta.A nicht entfernbar FRST.txt: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by Alessio (administrator) on DIAMONDSTONE on 30-03-2014 14:36:48 Running from C:\Users\Alessio\Desktop Windows 8.1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\WINDOWS\system32\atiesrxx.exe (AMD) C:\WINDOWS\system32\atieclxx.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Microsoft Corporation) C:\WINDOWS\system32\dashost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Microsoft Corporation) C:\Windows\System32\skydrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHAE.EXE (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Avira Operations GmbH & Co. KG) C:\program files (x86)\avira\antivir desktop\avcenter.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (IObit) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (Mozilla Corporation) C:\Program Files\Nightly\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-24] (Realtek Semiconductor) HKLM\...\Run: [Classic Start Menu] - C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.) HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [GamingKeyboard] - C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPSONEB7433 (Epson Stylus SX430)] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [DrWindows] - C:\Program Files (x86)\DrWindows\DrWindows.exe [2351104 2009-02-28] (DonationCoder.com) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [iDevice Manager Launcher] - "C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe" /run ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD86800FEA03FCF01 SearchScopes: HKLM - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKCU - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll No File BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default FF SelectedSearchEngine: Google FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alessio\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\beemp3.xml FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\mp3-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\artur.dubovoy@gmail.com [2014-03-10] FF Extension: ProxTube - Unblock YouTube - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\ich@maltegoetz.de [2014-03-22] FF Extension: Print pages to PDF - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\printPages2Pdf@reinhold.ripper [2013-08-30] FF Extension: YouTube Unblocker - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-22] FF Extension: DownloadHelper - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25] FF Extension: MEGA - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\firefox@mega.co.nz.xpi [2013-11-28] FF Extension: betterFox - Make browsing experience 15% faster. - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\multirevenue@googlemail.com.xpi [2013-07-13] FF Extension: XJZ Survey Remover - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\survey-remover@gmx.com.xpi [2013-07-23] FF Extension: All-in-One Sidebar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-06-19] FF Extension: {228790f3-0170-435a-be1f-7511046ea7e9} - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{228790f3-0170-435a-be1f-7511046ea7e9}.xpi [2014-01-11] FF Extension: Video DivX Player Free - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{60270806-64ac-414c-aa17-ca1892b3f1be}.xpi [2014-01-11] FF Extension: NoScript - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20] FF Extension: YouTube High Definition - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-03-22] FF Extension: Update Scanner - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi [2014-03-17] FF Extension: Easy YouTube Video Downloader - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-06-18] FF Extension: Adblock Plus - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-18] FF Extension: DownThemAll! - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-06-18] FF Extension: Greasemonkey - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-11-14] FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-02-25] FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Nightly\firefox.exe Chrome: ======= CHR HomePage: hxxp://www.google.com CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (ChromeUtilPlugin) - C:\Users\Alessio_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\19.52819_0\background/ChromeUtilPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (fluxDVD Browser Plugin) - C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll ( ) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll No File CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll No File CHR Plugin: (fluxDVD Placeholder Plugin) - C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll No File CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File CHR Extension: (Google Docs) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-18] CHR Extension: (Google Drive) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-18] CHR Extension: (YouTube) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-18] CHR Extension: (Google-Suche) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-18] CHR Extension: (Tampermonkey) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-11-14] CHR Extension: (Freemake Video Converter) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22] CHR Extension: (Google Wallet) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21] CHR Extension: (Google Mail) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-18] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-12-17] ==================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72512 2013-12-02] (IObit) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-24] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-22] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems) R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [27648 2012-05-11] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2014-01-15] (AnchorFree Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-23] (Microsoft Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-22] () S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-30] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-23] (Microsoft Corporation) S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-01-15] (Anchorfree Inc.) U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-11-22] (Seiko Epson Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-30 14:36 - 2014-03-30 14:36 - 00000000 ____D () C:\Users\Alessio\Desktop\14w3 2014-03-30 14:34 - 2014-03-30 14:34 - 00001477 _____ () C:\Users\Alessio\Desktop\JRT.txt 2014-03-30 14:30 - 2014-03-30 14:30 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-03-30 14:18 - 2014-03-30 14:25 - 00000021 _____ () C:\Users\Alessio\Desktop\Neues Textdokument.bat 2014-03-30 13:57 - 2014-03-30 13:58 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-30 13:49 - 2014-03-30 13:49 - 01038974 _____ (Thisisu) C:\Users\Alessio\Desktop\JRT.exe 2014-03-30 13:41 - 2014-03-30 13:49 - 00017959 _____ () C:\Users\Alessio\Desktop\Trojboard .txt 2014-03-30 13:40 - 2014-03-30 13:43 - 00000000 ____D () C:\AdwCleaner 2014-03-30 13:40 - 2014-03-30 13:40 - 01950720 _____ () C:\Users\Alessio\Desktop\adwcleaner.exe 2014-03-30 13:07 - 2014-03-30 13:19 - 00000000 ____D () C:\Users\Alessio\Desktop\Ipad 2014-03-30 12:56 - 2014-03-30 12:56 - 00000000 ____D () C:\Users\Alessio\Desktop\Sims Mod 2014-03-30 12:48 - 2014-03-30 12:48 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-03-30 12:48 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\Program Files\iTunes 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iPod 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\Bonjour 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2014-03-30 12:45 - 2014-03-30 12:46 - 148885840 _____ (Apple Inc.) C:\Users\Alessio\Downloads\iTunes64Setup.exe 2014-03-30 12:43 - 2014-03-30 12:43 - 00000000 ____D () C:\Users\Alessio\AppData\Local\IsolatedStorage 2014-03-30 12:42 - 2014-03-30 12:42 - 00002256 _____ () C:\Users\Alessio\Desktop\iDevice Manager.lnk 2014-03-30 12:41 - 2014-03-30 12:41 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-03-30 12:40 - 2014-03-30 12:40 - 04101456 _____ (Marx Softwareentwicklung ) C:\Users\Alessio\Downloads\IDMSetup34.exe 2014-03-30 12:39 - 2014-03-30 12:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-03-30 12:38 - 2014-03-30 12:57 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\iFunbox_UserCache 2014-03-30 12:38 - 2014-03-30 12:38 - 15016222 _____ ( ) C:\Users\Alessio\Downloads\ifunbox27_setup.exe 2014-03-30 12:38 - 2014-03-30 12:38 - 00001074 _____ () C:\Users\Public\Desktop\iFunbox.lnk 2014-03-30 12:38 - 2014-03-30 12:38 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam 2014-03-30 12:36 - 2014-03-30 12:38 - 00050508 _____ () C:\Users\Alessio\Desktop\Sims Mod.zip 2014-03-28 23:02 - 2014-03-28 23:02 - 00016055 _____ () C:\Users\Alessio\Desktop\FRST.rar 2014-03-28 22:56 - 2014-03-30 14:36 - 00027764 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 22:56 - 2014-03-30 14:36 - 00000000 ____D () C:\FRST 2014-03-28 22:56 - 2014-03-30 13:59 - 00040473 _____ () C:\Users\Alessio\Desktop\Addition.txt 2014-03-28 21:07 - 2014-03-30 14:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-28 21:05 - 2014-03-28 21:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 20:59 - 2014-03-28 21:00 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 20:58 - 2014-03-28 20:59 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 20:56 - 2014-03-28 20:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 20:54 - 2014-03-28 20:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 20:53 - 2014-03-28 20:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 20:46 - 2014-03-30 14:33 - 00165659 _____ () C:\MyXML.xml 2014-03-28 20:46 - 2014-03-28 20:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 20:46 - 2014-03-28 20:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 20:45 - 2014-03-28 20:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 20:19 - 2014-03-28 20:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 19:46 - 2014-03-28 19:47 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 18:48 - 2014-03-28 18:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 18:43 - 2014-03-28 18:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 18:41 - 2014-03-28 18:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 18:40 - 2014-03-30 12:14 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-28 18:40 - 2014-03-29 14:33 - 00001038 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 18:40 - 2014-03-28 18:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 18:40 - 2014-03-28 18:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 18:38 - 2014-03-28 18:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 17:58 - 2014-03-28 17:58 - 00016860 _____ () C:\Users\Alessio\Desktop\save.xml 2014-03-28 17:58 - 2014-03-28 17:58 - 00000232 _____ () C:\Users\Alessio\Desktop\backupSaveFile.dat 2014-03-28 13:30 - 2014-03-28 13:30 - 00006644 _____ () C:\ad.txt 2014-03-27 15:03 - 2014-03-27 15:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 15:03 - 2014-03-27 15:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 14:51 - 2014-03-27 14:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 13:08 - 2014-03-30 13:46 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 13:08 - 2014-03-27 13:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 13:08 - 2014-03-27 13:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 13:08 - 2014-03-05 10:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-27 13:08 - 2014-03-05 10:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-27 13:08 - 2014-03-05 10:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-27 13:06 - 2014-03-27 13:07 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 16:49 - 2014-03-26 16:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 16:46 - 2014-03-26 16:47 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 14:14 - 2014-03-26 14:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:47 - 2014-03-29 14:37 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 19:32 - 2014-03-26 21:26 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-25 18:21 - 2014-03-25 18:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 16:56 - 2014-03-25 16:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 16:56 - 2014-03-25 16:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 16:55 - 2014-03-25 16:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 16:52 - 2014-03-25 16:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 16:44 - 2014-03-25 16:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Guide 2014-03-25 16:36 - 2014-03-25 16:38 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 16:36 - 2014-03-25 16:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 16:36 - 2014-03-25 16:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 16:36 - 2014-03-25 16:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 16:31 - 2014-03-25 19:58 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 16:31 - 2014-03-25 16:35 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 16:31 - 2014-03-25 16:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 16:31 - 2014-03-25 16:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 15:52 - 2014-03-25 15:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 15:32 - 2014-03-25 15:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 15:07 - 2014-03-25 15:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 15:05 - 2014-03-25 15:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 15:01 - 2014-03-25 15:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 14:59 - 2014-03-25 14:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 14:58 - 2014-03-25 14:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 14:54 - 2014-03-25 14:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 14:44 - 2014-03-25 14:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 14:36 - 2014-03-25 14:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 20:40 - 2014-03-24 20:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 20:40 - 2014-03-24 20:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 20:39 - 2014-03-24 20:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 20:39 - 2014-03-24 20:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 20:39 - 2014-03-24 20:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 20:37 - 2014-03-24 20:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 20:36 - 2014-03-28 20:45 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 20:36 - 2014-03-24 20:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 20:36 - 2014-03-24 20:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 20:36 - 2014-03-24 20:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 20:35 - 2014-03-24 20:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 20:33 - 2014-03-24 20:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 20:32 - 2014-03-24 20:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 20:09 - 2014-03-24 20:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 20:08 - 2014-03-24 20:45 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 20:08 - 2014-03-24 20:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 20:08 - 2014-03-24 20:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 20:07 - 2014-03-24 20:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 16:26 - 2014-03-24 16:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 16:26 - 2014-03-24 16:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 15:11 - 2014-03-24 15:14 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 15:07 - 2014-03-24 15:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 15:07 - 2014-03-24 15:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 15:05 - 2014-03-24 15:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 15:03 - 2014-03-24 15:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 15:01 - 2011-01-23 20:25 - 00154119 _____ () C:\Users\Alessio\Desktop\Memtest86+ USB Installer.exe 2014-03-24 14:54 - 2014-03-24 14:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 14:49 - 2014-03-24 14:50 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 14:48 - 2014-03-24 14:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 14:42 - 2014-03-24 14:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 13:46 - 2014-03-24 13:47 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-23 16:53 - 2014-03-23 16:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 16:53 - 2014-03-23 16:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 16:53 - 2012-05-11 16:24 - 00027648 _____ () C:\WINDOWS\system32\Drivers\GameKB.sys 2014-03-23 16:49 - 2014-03-23 16:53 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 16:46 - 2014-03-23 16:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 16:26 - 2014-03-23 16:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 16:25 - 2014-03-23 16:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 16:22 - 2014-03-23 16:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 16:21 - 2014-03-23 16:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 16:19 - 2014-03-24 20:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-23 16:19 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 16:19 - 2014-03-23 16:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 16:19 - 2014-03-23 16:17 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 16:19 - 2014-03-23 16:17 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 16:19 - 2014-03-23 16:17 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 16:19 - 2010-09-13 16:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-03-23 16:19 - 2010-09-13 16:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-03-23 16:19 - 2010-09-13 16:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-03-23 16:19 - 2010-09-13 16:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-03-23 16:19 - 2008-06-18 12:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2014-03-23 16:19 - 2008-06-18 12:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-03-23 16:18 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 16:18 - 2011-08-10 01:00 - 00464384 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2014-03-23 16:18 - 2009-10-16 01:00 - 00132560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esdevapp.exe 2014-03-23 16:18 - 2009-10-16 01:00 - 00013824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxcdev.dll 2014-03-23 16:13 - 2014-03-23 16:34 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-22 14:23 - 2013-11-22 16:34 - 00063096 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\Drivers\TMUSB64.sys 2014-03-21 18:41 - 2014-03-21 18:43 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 14:21 - 2014-03-21 14:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 14:20 - 2014-03-21 14:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-18 20:01 - 2014-03-18 20:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 20:00 - 2014-01-15 00:47 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2014-03-18 15:04 - 2014-03-18 15:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-18 12:10 - 2014-02-22 14:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2014-03-18 12:10 - 2014-02-22 13:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2014-03-17 19:19 - 2014-03-17 19:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 19:18 - 2014-03-17 19:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 19:18 - 2014-03-17 19:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 19:17 - 2014-03-17 19:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 19:15 - 2014-03-17 19:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 19:13 - 2014-03-17 19:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 19:12 - 2014-03-17 19:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 19:12 - 2014-03-17 19:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 19:11 - 2014-03-17 19:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 17:23 - 2014-03-17 17:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 16:30 - 2014-03-17 16:35 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 16:28 - 2014-03-17 16:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-16 13:00 - 2014-03-27 21:04 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-15 13:20 - 2014-03-23 16:53 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 13:19 - 2014-03-15 13:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 13:01 - 2014-03-15 13:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 13:01 - 2014-03-15 13:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 13:00 - 2014-03-15 13:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 21:13 - 2014-03-14 21:14 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 13:17 - 2014-03-14 13:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 13:08 - 2014-03-14 13:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 18:30 - 2014-03-13 18:31 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-12 18:20 - 2014-03-30 13:47 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-12 13:56 - 2014-03-12 13:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-12 13:56 - 2014-03-01 08:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-12 13:56 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-12 13:56 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-12 13:56 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-12 13:56 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-12 13:56 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-12 13:56 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-12 13:56 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-12 13:56 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-12 13:56 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-12 13:56 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-12 13:56 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-12 13:56 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-12 13:56 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-12 13:56 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-12 13:56 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-12 13:56 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-03-12 13:56 - 2014-02-11 05:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-03-12 13:56 - 2014-02-11 04:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2014-03-12 13:56 - 2014-02-11 04:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2014-03-12 13:56 - 2014-01-31 18:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-03-12 13:56 - 2014-01-31 18:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-03-12 13:56 - 2014-01-31 18:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-03-12 13:56 - 2014-01-31 15:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-03-12 13:56 - 2014-01-31 11:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-03-12 13:56 - 2014-01-29 11:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2014-03-12 13:56 - 2014-01-29 10:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2014-03-12 13:56 - 2014-01-29 10:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2014-03-12 13:56 - 2014-01-29 10:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2014-03-12 13:56 - 2014-01-29 10:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-03-12 13:56 - 2014-01-29 09:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2014-03-12 13:56 - 2014-01-29 09:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2014-03-12 13:56 - 2014-01-29 09:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2014-03-12 13:56 - 2014-01-29 08:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-03-12 13:56 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-03-12 13:56 - 2014-01-27 21:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2014-03-12 13:56 - 2014-01-27 21:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-03-12 13:56 - 2014-01-27 21:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2014-03-12 13:56 - 2014-01-27 20:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2014-03-12 13:56 - 2014-01-27 20:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2014-03-12 13:56 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-03-12 13:56 - 2014-01-27 20:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-03-12 13:56 - 2014-01-27 20:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-03-12 13:56 - 2014-01-27 19:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-03-12 13:56 - 2014-01-27 19:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2014-03-12 13:56 - 2014-01-27 19:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2014-03-12 13:56 - 2014-01-27 17:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-03-12 13:56 - 2014-01-27 17:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-03-12 13:56 - 2014-01-27 13:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2014-03-12 13:56 - 2014-01-18 01:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-03-12 13:56 - 2014-01-17 23:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-03-12 13:56 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2014-03-12 13:56 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2014-03-12 13:56 - 2013-12-20 12:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-03-12 13:56 - 2013-12-20 12:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-03-12 13:56 - 2013-10-31 02:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2014-03-12 13:56 - 2013-10-31 02:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2014-03-12 13:56 - 2013-10-31 02:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2014-03-10 21:25 - 2014-03-10 21:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 19:36 - 2014-03-10 19:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 18:21 - 2014-03-28 20:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-09 18:21 - 2014-03-09 18:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 18:20 - 2014-03-09 18:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 18:20 - 2014-03-09 18:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 16:21 - 2014-03-09 16:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 16:20 - 2014-03-09 16:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 16:16 - 2014-03-09 16:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 16:00 - 2014-03-08 16:06 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 15:56 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 15:47 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 15:31 - 2014-03-08 16:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-08 15:29 - 2013-11-27 22:22 - 141519856 _____ () C:\Users\Alessio\Downloads\GMStudio-Installer.exe 2014-03-07 18:47 - 2014-03-29 14:51 - 00000000 ____D () C:\Program Files\Nightly 2014-03-07 18:47 - 2014-03-07 18:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 18:46 - 2014-03-07 18:47 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 18:46 - 2014-03-07 18:47 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 14:54 - 2014-03-06 14:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 14:53 - 2014-03-06 14:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 14:32 - 2014-03-06 14:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 14:32 - 2014-03-06 14:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 19:42 - 2014-03-05 19:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 19:34 - 2014-03-05 19:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 19:31 - 2014-03-05 19:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 17:35 - 2014-03-05 17:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-03 12:13 - 2014-03-03 12:14 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 18:07 - 2014-03-01 18:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 18:00 - 2014-03-30 14:05 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-01 18:00 - 2014-03-28 18:05 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-01 18:00 - 2014-03-01 18:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 18:00 - 2014-03-01 18:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 18:00 - 2014-03-01 18:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 18:00 - 2014-03-01 18:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 17:55 - 2014-03-01 17:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar ==================== One Month Modified Files and Folders ======= 2014-03-30 14:36 - 2014-03-30 14:36 - 00000000 ____D () C:\Users\Alessio\Desktop\14w3 2014-03-30 14:36 - 2014-03-28 22:56 - 00027764 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-30 14:36 - 2014-03-28 22:56 - 00000000 ____D () C:\FRST 2014-03-30 14:36 - 2013-07-12 14:24 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.minecraft 2014-03-30 14:34 - 2014-03-30 14:34 - 00001477 _____ () C:\Users\Alessio\Desktop\JRT.txt 2014-03-30 14:34 - 2014-01-23 15:55 - 01849411 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-30 14:33 - 2014-03-28 20:46 - 00165659 _____ () C:\MyXML.xml 2014-03-30 14:32 - 2013-12-25 19:49 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Games 2014-03-30 14:31 - 2014-03-28 21:07 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-30 14:30 - 2014-03-30 14:30 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-03-30 14:30 - 2013-06-05 16:22 - 00001136 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-30 14:25 - 2014-03-30 14:18 - 00000021 _____ () C:\Users\Alessio\Desktop\Neues Textdokument.bat 2014-03-30 14:21 - 2013-06-24 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Skype 2014-03-30 14:08 - 2013-05-31 14:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-30 14:05 - 2014-03-01 18:00 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-30 14:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-03-30 13:59 - 2014-03-28 22:56 - 00040473 _____ () C:\Users\Alessio\Desktop\Addition.txt 2014-03-30 13:58 - 2014-03-30 13:57 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-30 13:52 - 2013-11-14 09:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-03-30 13:52 - 2013-11-14 09:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat 2014-03-30 13:52 - 2013-11-14 09:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat 2014-03-30 13:50 - 2014-01-22 18:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3775792459-901648600-1102063504-1001 2014-03-30 13:49 - 2014-03-30 13:49 - 01038974 _____ (Thisisu) C:\Users\Alessio\Desktop\JRT.exe 2014-03-30 13:49 - 2014-03-30 13:41 - 00017959 _____ () C:\Users\Alessio\Desktop\Trojboard .txt 2014-03-30 13:47 - 2014-03-12 18:20 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-30 13:47 - 2014-01-22 21:10 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-30 13:46 - 2014-03-27 13:08 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-30 13:46 - 2014-01-23 18:41 - 00000000 __RDO () C:\Users\Alessio\SkyDrive 2014-03-30 13:46 - 2013-12-03 13:45 - 00000000 ____D () C:\Users\Alessio\AppData\Local\LogMeIn Hamachi 2014-03-30 13:46 - 2013-06-05 16:22 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-30 13:44 - 2014-01-23 15:37 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-03-30 13:44 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-30 13:44 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-03-30 13:43 - 2014-03-30 13:40 - 00000000 ____D () C:\AdwCleaner 2014-03-30 13:40 - 2014-03-30 13:40 - 01950720 _____ () C:\Users\Alessio\Desktop\adwcleaner.exe 2014-03-30 13:24 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp 2014-03-30 13:19 - 2014-03-30 13:07 - 00000000 ____D () C:\Users\Alessio\Desktop\Ipad 2014-03-30 13:04 - 2014-01-25 19:09 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5AAFE3CE-0AB4-4161-9BA2-01537602E0FD} 2014-03-30 12:57 - 2014-03-30 12:38 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\iFunbox_UserCache 2014-03-30 12:56 - 2014-03-30 12:56 - 00000000 ____D () C:\Users\Alessio\Desktop\Sims Mod 2014-03-30 12:51 - 2013-10-22 19:26 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Apple Computer 2014-03-30 12:48 - 2014-03-30 12:48 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iTunes 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-03-30 12:48 - 2013-10-22 19:27 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Apple Computer 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iPod 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\Bonjour 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2014-03-30 12:47 - 2013-10-22 19:26 - 00000000 ____D () C:\ProgramData\Apple Computer 2014-03-30 12:47 - 2013-10-22 19:26 - 00000000 ____D () C:\ProgramData\Apple 2014-03-30 12:46 - 2014-03-30 12:45 - 148885840 _____ (Apple Inc.) C:\Users\Alessio\Downloads\iTunes64Setup.exe 2014-03-30 12:43 - 2014-03-30 12:43 - 00000000 ____D () C:\Users\Alessio\AppData\Local\IsolatedStorage 2014-03-30 12:42 - 2014-03-30 12:42 - 00002256 _____ () C:\Users\Alessio\Desktop\iDevice Manager.lnk 2014-03-30 12:42 - 2013-08-22 16:46 - 00293216 _____ () C:\WINDOWS\setupact.log 2014-03-30 12:41 - 2014-03-30 12:41 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-03-30 12:40 - 2014-03-30 12:40 - 04101456 _____ (Marx Softwareentwicklung ) C:\Users\Alessio\Downloads\IDMSetup34.exe 2014-03-30 12:39 - 2014-03-30 12:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-03-30 12:38 - 2014-03-30 12:38 - 15016222 _____ ( ) C:\Users\Alessio\Downloads\ifunbox27_setup.exe 2014-03-30 12:38 - 2014-03-30 12:38 - 00001074 _____ () C:\Users\Public\Desktop\iFunbox.lnk 2014-03-30 12:38 - 2014-03-30 12:38 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam 2014-03-30 12:38 - 2014-03-30 12:36 - 00050508 _____ () C:\Users\Alessio\Desktop\Sims Mod.zip 2014-03-30 12:25 - 2013-06-05 16:22 - 00004108 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2014-03-30 12:25 - 2013-06-05 16:22 - 00003872 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2014-03-30 12:14 - 2014-03-28 18:40 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-29 14:51 - 2014-03-07 18:47 - 00000000 ____D () C:\Program Files\Nightly 2014-03-29 14:37 - 2014-03-25 19:47 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-29 14:33 - 2014-03-28 18:40 - 00001038 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 23:02 - 2014-03-28 23:02 - 00016055 _____ () C:\Users\Alessio\Desktop\FRST.rar 2014-03-28 21:57 - 2013-11-14 00:18 - 00234630 _____ () C:\WINDOWS\PFRO.log 2014-03-28 21:50 - 2013-08-22 17:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-03-28 21:06 - 2013-08-22 17:36 - 00000000 ___SD () C:\Program Files (x86)\Windows Sidebar 2014-03-28 21:05 - 2014-03-28 21:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 21:00 - 2014-03-28 20:59 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 20:59 - 2014-03-28 20:58 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 20:56 - 2014-03-28 20:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 20:54 - 2014-03-28 20:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 20:53 - 2014-03-28 20:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 20:46 - 2014-03-28 20:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 20:46 - 2014-03-28 20:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 20:45 - 2014-03-28 20:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 20:45 - 2014-03-24 20:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-28 20:21 - 2014-03-09 18:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-28 20:19 - 2014-03-28 20:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 19:49 - 2013-06-18 19:30 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\vlc 2014-03-28 19:47 - 2014-03-28 19:46 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 18:48 - 2014-03-28 18:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 18:43 - 2014-03-28 18:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 18:41 - 2014-03-28 18:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 18:40 - 2014-03-28 18:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 18:40 - 2014-03-28 18:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 18:38 - 2014-03-28 18:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 18:05 - 2014-03-01 18:00 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-28 17:58 - 2014-03-28 17:58 - 00016860 _____ () C:\Users\Alessio\Desktop\save.xml 2014-03-28 17:58 - 2014-03-28 17:58 - 00000232 _____ () C:\Users\Alessio\Desktop\backupSaveFile.dat 2014-03-28 14:36 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-03-28 13:30 - 2014-03-28 13:30 - 00006644 _____ () C:\ad.txt 2014-03-27 21:04 - 2014-03-16 13:00 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-27 16:16 - 2013-10-30 17:29 - 00000000 ____D () C:\Users\Alessio\Documents\AVS4YOU 2014-03-27 16:16 - 2013-07-17 14:09 - 00000000 ____D () C:\Users\Alessio\Documents\Roms 2014-03-27 15:06 - 2013-08-26 13:43 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-03-27 15:03 - 2014-03-27 15:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 15:03 - 2014-03-27 15:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 15:03 - 2014-01-22 20:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-27 15:03 - 2013-08-27 17:17 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 14:51 - 2014-03-27 14:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 13:08 - 2014-03-27 13:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 13:08 - 2014-03-27 13:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 13:08 - 2014-02-13 20:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-27 13:07 - 2014-03-27 13:06 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 21:26 - 2014-03-25 19:32 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-26 18:11 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-03-26 16:49 - 2014-03-26 16:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 16:47 - 2014-03-26 16:46 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 14:14 - 2014-03-26 14:14 - 00000000 ____D () C:\Mozilla 2014-03-25 20:15 - 2014-01-24 16:10 - 00004535 _____ () C:\Users\Alessio\AppData\Roaming\CamStudio.cfg 2014-03-25 20:15 - 2014-01-24 16:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamShapes.ini 2014-03-25 20:15 - 2014-01-24 16:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamLayout.ini 2014-03-25 20:15 - 2014-01-24 16:10 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\Camdata.ini 2014-03-25 20:14 - 2014-01-24 16:09 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\version2.xml 2014-03-25 19:58 - 2014-03-25 16:31 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 18:21 - 2014-03-25 18:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 16:56 - 2014-03-25 16:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 16:56 - 2014-03-25 16:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 16:55 - 2014-03-25 16:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 16:55 - 2014-01-22 18:18 - 00000000 ____D () C:\Users\Alessio\AppData\Local\VirtualStore 2014-03-25 16:52 - 2014-03-25 16:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 16:52 - 2014-03-25 16:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 16:44 - 2014-03-25 16:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Guide 2014-03-25 16:38 - 2014-03-25 16:36 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 16:36 - 2014-03-25 16:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 16:36 - 2014-03-25 16:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 16:36 - 2014-03-25 16:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 16:35 - 2014-03-25 16:31 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 16:31 - 2014-03-25 16:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 16:31 - 2014-03-25 16:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 15:52 - 2014-03-25 15:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 15:32 - 2014-03-25 15:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 15:07 - 2014-03-25 15:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 15:05 - 2014-03-25 15:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 15:01 - 2014-03-25 15:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 14:59 - 2014-03-25 14:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 14:58 - 2014-03-25 14:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 14:54 - 2014-03-25 14:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 14:44 - 2014-03-25 14:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 14:36 - 2014-03-25 14:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-25 14:19 - 2014-02-12 17:59 - 00000000 ____D () C:\Users\Alessio\AppData\Local\PackageStaging 2014-03-25 14:12 - 2013-07-13 10:49 - 00000000 ____D () C:\Users\Alessio\Tracing 2014-03-24 21:09 - 2013-08-03 11:41 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Notepad++ 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 20:45 - 2014-03-24 20:08 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 20:40 - 2014-03-24 20:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 20:40 - 2014-03-24 20:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 20:39 - 2014-03-24 20:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 20:39 - 2014-03-24 20:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 20:39 - 2014-03-24 20:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 20:37 - 2014-03-24 20:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 20:36 - 2014-03-24 20:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 20:36 - 2014-03-24 20:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 20:36 - 2014-03-24 20:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 20:36 - 2014-03-24 20:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 20:35 - 2014-03-24 20:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 20:33 - 2014-03-24 20:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 20:32 - 2014-03-24 20:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 20:32 - 2013-08-12 15:05 - 00000000 ____D () C:\AMD 2014-03-24 20:09 - 2014-03-24 20:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 20:09 - 2014-03-24 20:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 20:09 - 2014-03-23 16:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-24 20:09 - 2013-07-29 14:08 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-03-24 20:08 - 2014-03-24 20:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 20:08 - 2014-03-24 20:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 20:07 - 2014-03-24 20:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 20:07 - 2014-01-02 23:04 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-24 16:32 - 2013-08-22 16:44 - 00376456 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-03-24 16:31 - 2014-01-23 15:42 - 00000000 ____D () C:\Users\Alessio 2014-03-24 16:26 - 2014-03-24 16:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 16:26 - 2014-03-24 16:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 15:14 - 2014-03-24 15:11 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 15:07 - 2014-03-24 15:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 15:07 - 2014-03-24 15:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 15:05 - 2014-03-24 15:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 15:03 - 2014-03-24 15:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 14:54 - 2014-03-24 14:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 14:50 - 2014-03-24 14:49 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 14:48 - 2014-03-24 14:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 14:42 - 2014-03-24 14:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 13:47 - 2014-03-24 13:46 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-24 13:46 - 2014-02-24 17:43 - 00000000 ____D () C:\WINDOWS\Minidump 2014-03-24 13:45 - 2014-02-24 17:43 - 559958084 _____ () C:\WINDOWS\MEMORY.DMP 2014-03-23 16:53 - 2014-03-23 16:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 16:53 - 2014-03-23 16:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 16:53 - 2014-03-23 16:49 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 16:53 - 2014-03-15 13:20 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-23 16:52 - 2014-03-23 16:46 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 16:34 - 2014-03-23 16:13 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-23 16:26 - 2014-03-23 16:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 16:25 - 2014-03-23 16:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 16:25 - 2013-06-01 12:00 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint 2014-03-23 16:22 - 2014-03-23 16:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 16:22 - 2013-06-01 11:59 - 00000000 ____D () C:\ProgramData\UDL 2014-03-23 16:21 - 2014-03-23 16:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 16:21 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 16:19 - 2014-03-23 16:18 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 16:17 - 2014-03-23 16:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 16:17 - 2014-03-23 16:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 16:17 - 2014-03-23 16:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 16:10 - 2013-05-29 07:27 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-03-22 14:00 - 2014-01-23 19:22 - 00000000 ____D () C:\Users\Alessio\Documents\My Games 2014-03-21 18:43 - 2014-03-21 18:41 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 14:21 - 2014-03-21 14:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 14:20 - 2014-03-21 14:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-20 13:26 - 2014-01-23 13:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-03-20 13:25 - 2014-01-23 13:12 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-03-20 13:25 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-03-18 20:01 - 2014-03-18 20:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 15:04 - 2014-03-18 15:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-17 21:34 - 2013-06-18 16:13 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Adobe 2014-03-17 21:34 - 2013-05-31 14:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-03-17 19:19 - 2014-03-17 19:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 19:18 - 2014-03-17 19:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 19:18 - 2014-03-17 19:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 19:17 - 2014-03-17 19:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 19:15 - 2014-03-17 19:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 19:13 - 2014-03-17 19:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 19:12 - 2014-03-17 19:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 19:12 - 2014-03-17 19:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 19:12 - 2013-10-30 17:10 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-03-17 19:12 - 2013-06-19 11:53 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\DVDVideoSoft 2014-03-17 19:11 - 2014-03-17 19:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 17:23 - 2014-03-17 17:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 16:35 - 2014-03-17 16:30 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 16:28 - 2014-03-17 16:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 13:19 - 2014-03-15 13:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 13:01 - 2014-03-15 13:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 13:01 - 2014-03-15 13:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 13:00 - 2014-03-15 13:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 21:14 - 2014-03-14 21:13 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 18:38 - 2014-01-23 19:50 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-03-14 18:38 - 2013-05-31 16:44 - 00000000 ____D () C:\ProgramData\Origin 2014-03-14 13:17 - 2014-03-14 13:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 13:08 - 2014-03-14 13:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-03-13 18:31 - 2014-03-13 18:30 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-13 16:58 - 2014-01-25 18:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 16:58 - 2013-06-16 14:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 13:56 - 2014-03-12 13:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-11 13:54 - 2014-01-22 21:29 - 00001088 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-10 21:25 - 2014-03-10 21:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 19:36 - 2014-03-10 19:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 18:21 - 2014-03-09 18:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 18:20 - 2014-03-09 18:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 18:20 - 2014-03-09 18:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 16:21 - 2014-03-09 16:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 16:20 - 2014-03-09 16:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 16:16 - 2014-03-09 16:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 16:06 - 2014-03-08 16:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 16:00 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 15:56 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 15:56 - 2014-03-08 15:47 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 15:44 - 2013-10-11 16:50 - 00000000 ____D () C:\Users\Alessio\AppData\Local\YoYo_Games_Ltd 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-07 18:47 - 2014-03-07 18:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 18:47 - 2014-03-07 18:46 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 18:47 - 2014-03-07 18:46 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 15:56 - 2013-08-08 16:03 - 00000000 ____D () C:\Users\Alessio\.gimp-2.8 2014-03-06 14:54 - 2014-03-06 14:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 14:53 - 2014-03-06 14:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 14:32 - 2014-03-06 14:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 14:32 - 2014-03-06 14:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 19:42 - 2014-03-05 19:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 19:34 - 2014-03-05 19:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 19:31 - 2014-03-05 19:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 17:35 - 2014-03-05 17:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-05 10:26 - 2014-03-27 13:08 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-05 10:26 - 2014-03-27 13:08 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-05 10:26 - 2014-03-27 13:08 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-05 00:53 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-03-05 00:53 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-03 12:14 - 2014-03-03 12:13 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 18:07 - 2014-03-01 18:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 18:00 - 2014-03-01 18:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 18:00 - 2014-03-01 18:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 18:00 - 2014-03-01 18:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 18:00 - 2014-03-01 18:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 17:55 - 2014-03-01 17:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-03-01 08:05 - 2014-03-12 13:56 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-01 06:58 - 2014-03-12 13:56 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-01 06:30 - 2014-03-12 13:56 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-01 06:17 - 2014-03-12 13:56 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-01 05:54 - 2014-03-12 13:56 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-01 05:47 - 2014-03-12 13:56 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-01 05:42 - 2014-03-12 13:56 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-01 05:18 - 2014-03-12 13:56 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-01 05:14 - 2014-03-12 13:56 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-01 05:10 - 2014-03-12 13:56 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-01 05:03 - 2014-03-12 13:56 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-01 04:57 - 2014-03-12 13:56 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-01 04:38 - 2014-03-12 13:56 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-01 04:32 - 2014-03-12 13:56 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-01 04:27 - 2014-03-12 13:56 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-01 04:25 - 2014-03-12 13:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-01 04:25 - 2014-03-12 13:56 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll Files to move or delete: ==================== C:\Users\Alessio\AppData\Roaming\Camdata.ini C:\Users\Alessio\AppData\Roaming\CamLayout.ini C:\Users\Alessio\AppData\Roaming\CamShapes.ini C:\Users\Alessio\AppData\Roaming\Network Meter_Usage.ini C:\Users\Alessio\IP_Log_Data.js C:\Users\Alessio\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Alessio\AppData\Local\Temp\avgnt.exe C:\Users\Alessio\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-03-12 13:56] - [2014-01-31 18:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02 LastRegBack: 2014-03-28 20:31 ==================== End Of Log ============================ |
|
31.03.2014, 10:36
| #8 |
| /// the machine /// TB-Ausbilder | Pub.Optional.Delta.A nicht entfernbarESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
31.03.2014, 18:23
| #9 |
| | Pub.Optional.Delta.A nicht entfernbar checkup.txt: Code:
ATTFilter Results of screen317's Security Check version 0.99.80 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` WMI entry may not exist for antivirus; attempting automatic update. Avira successfully updated! `````````Anti-malware/Other Utilities Check:````````` Spybot - Search & Destroy Secunia PSI (3.0.0.9016) Java 7 Update 51 Adobe Flash Player 12.0.0.77 Adobe Reader XI Mozilla Firefox (27.0.1) Google Chrome 33.0.1750.146 Google Chrome 33.0.1750.154 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Spybot Teatimer.exe is disabled! Avira Antivir avgnt.exe Avira Antivir avguard.exe Malwarebytes Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ad2300e87c4159419cd899194b915278
# engine=17694
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-03-31 05:17:18
# local_time=2014-03-31 07:17:18 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=1799 16775165 100 94 29648 3917792 22420 0
# compatibility_mode=5893 16776574 100 94 1561391 13602535 0 0
# scanned=308965
# found=0
# cleaned=0
# scan_time=6627
FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Alessio at 2014-03-31 19:22:11
Running from C:\Users\Alessio\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
8GadgetPack (HKLM-x32\...\{32A7C3B0-E5C3-4913-B1F2-49FE860FAA5E}) (Version: 11.0.0 - Helmut Buhler)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Anno 1404 (x32 Version: 1.00.0000 - Ubisoft) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtRage 2 Starter Edition (HKLM-x32\...\{394C2C3E-CA18-4216-B430-ACDD82C26973}) (Version: 2.6.0 - Ambient Design)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Bog) (Version: - )
Benutzerhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Useg) (Version: - )
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.347.0 - Microsoft Corporation)
Blender (HKLM\...\Blender) (Version: 2.69 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{783DCCCB-FBD0-4D1D-928D-7075DA8015E6}) (Version: 0.8.5.3042 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Citrio (HKCU\...\Citrio) (Version: 31.0.1650.224 - © CATALINA GROUP LTD.)
Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Fun 1.1 (HKLM-x32\...\Desktop Fun 1.1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Dr.Windows 1.05.01 (HKLM-x32\...\Dr.Windows_is1) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.3 - IObit)
Epson Easy Photo Print 2 (HKLM-x32\...\{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}) (Version: 2.2.4.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FolderIco 2.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 1.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 1.0 - teorex)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free 3D Photo Maker version 2.0.27.304 (HKLM-x32\...\Free 3D Photo Maker_is1) (Version: 2.0.27.304 - DVDVideoSoft Ltd.)
Freemake Audio Converter Version 1.1.0 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Game Cam 2.6.1.0 (HKLM-x32\...\Game Cam) (Version: 2.6.1.0 - Game Cam Portal, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Translator 2.5 Build 41 (HKLM-x32\...\Google Translator_is1) (Version: - Daniel Schuhmann)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.28.01 - Hyperionics Technology LLC)
iDevice Manager (HKLM-x32\...\FE5AE7DC-7B01-4263-A94C-B4526C276550_is1) (Version: 3.4.0.0 - Marx Software)
iFunbox (v2.7.2386.747), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.7.2386.747 - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Landwirtschafts Simulator 2011 (HKLM-x32\...\FarmingSimulator2011DE_is1) (Version: 1.0 - GIANTS Software)
LEGO® Harry Potter™: Die Jahre 1-4 (HKLM-x32\...\{C5A8DF48-580B-44D3-B2B2-E965A9368F28}) (Version: 1.0.0.0 - WB Games)
LEGO® Harry Potter™: Die Jahre 5-7 (HKLM-x32\...\{5C5A944F-096E-4ADD-B8E8-887F18BA6228}) (Version: 1.0.0.0 - WB Games)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.173 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.173 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.00.0.1000 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.00.0.1000 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.2.1.1000 - Maxthon International Limited)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Texturepack Editor (HKLM-x32\...\Minecraft Texturepack Editor) (Version: - )
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Netzwerkhandbuch EPSON SX430 Series (HKLM-x32\...\EPSON SX430 Series Netg) (Version: - )
Nightly 31.0a1 (x64 en-US) (HKLM\...\Nightly 31.0a1 (x64 en-US)) (Version: 31.0a1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
s3oc - Sims3 Object Cloner (HKLM-x32\...\s3oc) (Version: 13-1112-2036 - Peter L Jones)
s3pe - Sims3 Package Editor (HKLM-x32\...\s3pe) (Version: 14-0113-1123 - Peter L Jones)
s3pe meshHelper for Blender (HKLM-x32\...\meshHelper-s3m2b) (Version: 12-0601-2217 - Peter L Jones)
Sandboxie 4.08 (64-bit) (HKLM\...\Sandboxie) (Version: 4.08 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
SequoiaView (HKLM-x32\...\SequoiaView) (Version: - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.4.0.0 - IObit)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 7 - Gameforge Productions GmbH)
TSR Workshop (HKLM-x32\...\{33100EE2-5EDF-4AB1-BF08-D767E3AED642}) (Version: 2.0.86 - The Sims Resource)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WindowsAndroid version 4.0.3 (HKCU\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 4.0.3 - SocketeQ, Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Restore Points =========================
28-03-2014 18:54:12 Installed Classic Shell
28-03-2014 18:55:48 Installed Classic Shell
30-03-2014 10:41:13 Installed Apple Mobile Device Support
==================== Hosts content: ==========================
2013-08-22 15:25 - 2014-03-18 19:47 - 00001032 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0ABBF4D7-8C3E-4147-B530-B14762FF70DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-17] (Adobe Systems Incorporated)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\Windows/system32\aitagent.exe [2013-08-22] (Microsoft Corporation)
Task: {1A5DA4A8-080D-4C64-8BAE-102D2C006AC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A53394-6573-4364-B93F-C58ADA6085E2} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {35FCAB06-CAEA-4B4D-B4D6-DC60A991E644} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-02] (IObit)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {4623EA34-8B71-4B49-936B-63342F2F88D0} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50FEC0EE-9C80-4519-8E01-ABCA0DE0B145} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-05] (Google Inc.)
Task: {54F5E6D2-1F25-49A0-8EAC-098856F5FD03} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-20] (Microsoft Corporation)
Task: {56ACA8A1-C129-4279-BF3B-34A991D00350} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6AD0EDD2-1762-427B-976B-14ED82F0B407} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {84648F59-2545-4414-A995-96E1B7F1C1A4} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {863F14BE-A4CC-46BA-8E96-6381AA40300F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {903BB2DE-F173-4A2C-BF7F-769B2A0A2A57} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3775792459-901648600-1102063504-1001
Task: {9CC0074F-B9C2-42A1-AB22-FB9C64A0EA9C} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows/system32\BthUdTask.exe [2013-08-22] (Microsoft Corporation)
Task: {B053FC77-9B51-4A62-9EE4-EFA8935E8925} - System32\Tasks\Driver Booster SkipUAC (Alessio) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-03-07] (IObit)
Task: {BACAB916-B833-4DAA-9893-BFCF6D7E91B9} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe [2014-03-01] (Catalina Group Ltd.)
Task: {CC9BD1E8-8658-4827-B3AB-55C342543CF7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D2817AB6-845F-4B05-926D-0315FCCF468D} - \Driver Booster Update No Task File
Task: {D3BEF917-9194-4689-BC9A-CE974E24F77D} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD12F52E-9505-4A48-9646-D70B0E15D42C} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3775792459-901648600-1102063504-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {FD1C4813-C424-4567-8A43-F0BEE7AB3966} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job => C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2014-02-21 17:44 - 2014-02-14 12:00 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-02-13 20:54 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-02-13 20:54 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-02-13 20:54 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-02-13 20:54 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-02-13 20:54 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-28 20:45 - 2013-12-02 18:12 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2014-03-28 20:45 - 2013-12-02 18:12 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2014-03-28 20:45 - 2013-12-02 18:12 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2014-03-28 20:45 - 2013-12-02 18:12 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2014-03-28 20:45 - 2013-12-02 18:12 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2014-03-28 20:45 - 2013-12-02 18:13 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Alessio\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Alessio\SkyDrive (2).old:ms-properties
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/31/2014 07:21:03 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 05:17:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 05:17:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 01:23:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 01:23:19 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 01:23:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 01:23:14 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 01:23:10 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (03/31/2014 00:42:20 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iFunBox.exe, Version: 2.7.2386.747, Zeitstempel: 0x5258dae3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16502, Zeitstempel: 0x52c35a76
Ausnahmecode: 0xc0000374
Fehleroffset: 0x000e2fd8
ID des fehlerhaften Prozesses: 0x1ba8
Startzeit der fehlerhaften Anwendung: 0xiFunBox.exe0
Pfad der fehlerhaften Anwendung: iFunBox.exe1
Pfad des fehlerhaften Moduls: iFunBox.exe2
Berichtskennung: iFunBox.exe3
Vollständiger Name des fehlerhaften Pakets: iFunBox.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: iFunBox.exe5
Error: (03/30/2014 04:02:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7219
System errors:
=============
Error: (03/31/2014 04:34:55 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/31/2014 04:34:55 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/31/2014 04:34:55 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/31/2014 02:41:48 PM) (Source: Microsoft-Windows-Kernel-Power) (User: )
Description: 4
Error: (03/31/2014 11:03:48 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/31/2014 11:00:46 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/31/2014 11:00:46 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk4\DR4 gefunden.
Error: (03/31/2014 11:00:46 AM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (03/30/2014 07:37:50 PM) (Source: disk) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (03/30/2014 07:37:30 PM) (Source: DCOM) (User: DIAMONDSTONE)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 34%
Total physical RAM: 8138.64 MB
Available physical RAM: 5363.24 MB
Total Pagefile: 16330.64 MB
Available Pagefile: 9586.84 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:416.93 GB) (Free:240.41 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Volume) (Fixed) (Total:48.83 GB) (Free:45.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: D98CD4DC)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
31.03.2014, 18:26
| #10 |
| | Pub.Optional.Delta.A nicht entfernbar frst.txt: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014 Ran by Alessio (administrator) on DIAMONDSTONE on 31-03-2014 19:21:43 Running from C:\Users\Alessio\Desktop Windows 8.1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (AMD) C:\WINDOWS\system32\atiesrxx.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Microsoft Corporation) C:\WINDOWS\system32\dashost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (AMD) C:\WINDOWS\system32\atieclxx.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (Microsoft Corporation) C:\Windows\System32\skydrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHAE.EXE (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Catalina Group Ltd.) C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\CatalinaCrashHandler.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-03-24] (Realtek Semiconductor) HKLM\...\Run: [Classic Start Menu] - C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2353880 2013-11-01] (Microsoft Corp.) HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-14] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-02-26] (LogMeIn Inc.) HKLM-x32\...\Run: [EEventManager] - C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [GamingKeyboard] - C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPSONEB7433 (Epson Stylus SX430)] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [EPLTarget\P0000000000000000] - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-03-23] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [DrWindows] - C:\Program Files (x86)\DrWindows\DrWindows.exe [2351104 2009-02-28] (DonationCoder.com) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2014-01-17] (Sandboxie Holdings, LLC) HKU\S-1-5-21-3775792459-901648600-1102063504-1001\...\Run: [iDevice Manager Launcher] - "C:\Program Files (x86)\Software4u\iDevice Manager\Software4u.IDMLauncher.exe" /run ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD86800FEA03FCF01 SearchScopes: HKLM - DefaultScope {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKLM-x32 - {DC5EF762-F7E6-4548-830A-34BDDBFF90B2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS SearchScopes: HKCU - {9C4A8894-FC9A-4CF8-B7AB-5D5BA8E49827} URL = BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll No File BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft) BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll No File BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft) Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default FF SelectedSearchEngine: Google FF Homepage: www.google.de FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=3 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @catalinahub.com/CatalinaGroup Update;version=9 - C:\Users\Alessio\AppData\Local\CatalinaGroup\Update\1.3.25.205\npCatalinaUpdate3.dll (Catalina Group Ltd.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Alessio\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\beemp3.xml FF SearchPlugin: C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\searchplugins\mp3-search.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Flash Video Downloader - Full HD Download - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\artur.dubovoy@gmail.com [2014-03-10] FF Extension: ProxTube - Unblock YouTube - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\ich@maltegoetz.de [2014-03-22] FF Extension: Print pages to PDF - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\printPages2Pdf@reinhold.ripper [2013-08-30] FF Extension: YouTube Unblocker - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\youtubeunblocker@unblocker.yt [2014-03-22] FF Extension: DownloadHelper - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25] FF Extension: MEGA - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\firefox@mega.co.nz.xpi [2013-11-28] FF Extension: StartPage Site Search - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\jid0-Ah0CrdmFQuvYtoNKD1ABdh39ysI@jetpack.xpi [2014-03-31] FF Extension: betterFox - Make browsing experience 15% faster. - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\multirevenue@googlemail.com.xpi [2013-07-13] FF Extension: XJZ Survey Remover - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\survey-remover@gmx.com.xpi [2013-07-23] FF Extension: All-in-One Sidebar - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-06-19] FF Extension: {228790f3-0170-435a-be1f-7511046ea7e9} - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{228790f3-0170-435a-be1f-7511046ea7e9}.xpi [2014-01-11] FF Extension: Video DivX Player Free - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{60270806-64ac-414c-aa17-ca1892b3f1be}.xpi [2014-01-11] FF Extension: NoScript - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-20] FF Extension: YouTube High Definition - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-03-22] FF Extension: Update Scanner - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c07d1a49-9894-49ff-a594-38960ede8fb9}.xpi [2014-03-17] FF Extension: Easy YouTube Video Downloader - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-06-18] FF Extension: Adblock Plus - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-06-18] FF Extension: DownThemAll! - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-06-18] FF Extension: Greasemonkey - C:\Users\Alessio\AppData\Roaming\Mozilla\Firefox\Profiles\6uvzt569.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-11-14] FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-02-25] FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Nightly\firefox.exe Chrome: ======= CHR HomePage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=9609A0F3C1231F1C&affID=123884&tsp=4952 CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (ChromeUtilPlugin) - C:\Users\Alessio_2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\19.52819_0\background/ChromeUtilPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (fluxDVD Browser Plugin) - C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll ( ) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll No File CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll No File CHR Plugin: (fluxDVD Placeholder Plugin) - C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll No File CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) ) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) CHR Plugin: (RealDownloader Plugin) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File CHR Extension: (Google Docs) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-06-18] CHR Extension: (Google Drive) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-06-18] CHR Extension: (YouTube) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-18] CHR Extension: (Google-Suche) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-18] CHR Extension: (Tampermonkey) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-11-14] CHR Extension: (Freemake Video Converter) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-01-22] CHR Extension: (Google Wallet) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-21] CHR Extension: (Google Mail) - C:\Users\Alessio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-18] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-12-17] ==================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-14] (Avira Operations GmbH & Co. KG) R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2013-11-01] (Microsoft Corp.) R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-26] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [187592 2014-01-17] (Sandboxie Holdings, LLC) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72512 2013-12-02] (IObit) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [3744256 2012-11-21] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-24] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-01-22] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2014-02-14] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-02-14] (Avira Operations GmbH & Co. KG) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems) R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [27648 2012-05-11] () R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-02-26] (LogMeIn Inc.) R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2014-01-15] (AnchorFree Inc.) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-23] (Microsoft Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-01-22] () S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-03-31] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [63192 2014-03-05] (Malwarebytes Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202600 2014-01-17] (Sandboxie Holdings, LLC) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-23] (Microsoft Corporation) S3 ssudobex; C:\Windows\system32\DRIVERS\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation) R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-01-15] (Anchorfree Inc.) U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-11-22] (Seiko Epson Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-03-31 14:11 - 2014-03-31 14:11 - 00000814 _____ () C:\Users\Alessio\Desktop\AN LASSEN! - Verknüpfung.lnk 2014-03-31 14:10 - 2014-03-31 14:10 - 00000000 ____D () C:\Users\Alessio\Desktop\AN LASSEN! 2014-03-31 13:23 - 2014-03-31 13:23 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-03-31 13:22 - 2014-03-31 13:22 - 02347384 _____ (ESET) C:\Users\Alessio\Desktop\esetsmartinstaller_enu.exe 2014-03-31 13:22 - 2014-03-31 13:22 - 00987442 _____ () C:\Users\Alessio\Desktop\SecurityCheck.exe 2014-03-31 13:09 - 2014-03-31 13:13 - 00000000 ____D () C:\Users\Alessio\Desktop\skins 2014-03-31 12:24 - 2014-03-31 12:24 - 00122987 _____ () C:\Users\Alessio\Downloads\ipa02245_GameSave.zip 2014-03-31 12:20 - 2014-03-31 12:20 - 00008308 _____ () C:\Users\Alessio\Downloads\angry_birds_go_save_tech-recipes.zip 2014-03-31 12:13 - 2014-03-31 12:13 - 00000000 ____D () C:\Users\Alessio\Desktop\ads 2014-03-31 11:54 - 2014-03-31 11:57 - 03364407 _____ () C:\Users\Alessio\Desktop\ACraft.zip 2014-03-31 11:54 - 2014-01-28 06:18 - 00000091 _____ () C:\Users\Alessio\Desktop\pack.mcmeta 2014-03-31 11:39 - 2014-03-31 11:39 - 00006432 _____ () C:\Users\Alessio\Desktop\save_guest.dat 2014-03-31 11:28 - 2014-03-31 11:28 - 02347557 _____ () C:\Users\Alessio\Downloads\mcpatcher-4.3.2_01.exe 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\texts 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\shaders 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\lang 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\font 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\ACraft 2014-03-30 19:37 - 2014-03-30 19:37 - 00000121 _____ () C:\Users\Alessio\AppData\Roaming\System Monitor II_UptimeRecord.ini 2014-03-30 15:08 - 2014-03-31 18:53 - 00000000 ____D () C:\Program Files\Nightly 2014-03-30 15:01 - 2014-03-31 18:21 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-30 14:34 - 2014-03-30 14:34 - 00001477 _____ () C:\Users\Alessio\Desktop\JRT.txt 2014-03-30 14:30 - 2014-03-30 14:30 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-03-30 14:18 - 2014-03-31 18:53 - 00000025 _____ () C:\Users\Alessio\Desktop\Neues Textdokument.bat 2014-03-30 13:57 - 2014-03-30 13:58 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-30 13:49 - 2014-03-30 13:49 - 01038974 _____ (Thisisu) C:\Users\Alessio\Desktop\JRT.exe 2014-03-30 13:41 - 2014-03-30 13:49 - 00017959 _____ () C:\Users\Alessio\Desktop\Trojboard .txt 2014-03-30 13:40 - 2014-03-30 13:43 - 00000000 ____D () C:\AdwCleaner 2014-03-30 13:40 - 2014-03-30 13:40 - 01950720 _____ () C:\Users\Alessio\Desktop\adwcleaner.exe 2014-03-30 13:07 - 2014-03-31 12:25 - 00000000 ____D () C:\Users\Alessio\Desktop\Ipad 2014-03-30 12:56 - 2014-03-30 12:56 - 00000000 ____D () C:\Users\Alessio\Desktop\Sims Mod 2014-03-30 12:48 - 2014-03-30 12:48 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-03-30 12:48 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\Program Files\iTunes 2014-03-30 12:47 - 2014-03-30 12:48 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iPod 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\Bonjour 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2014-03-30 12:45 - 2014-03-30 12:46 - 148885840 _____ (Apple Inc.) C:\Users\Alessio\Downloads\iTunes64Setup.exe 2014-03-30 12:43 - 2014-03-30 12:43 - 00000000 ____D () C:\Users\Alessio\AppData\Local\IsolatedStorage 2014-03-30 12:42 - 2014-03-30 12:42 - 00002256 _____ () C:\Users\Alessio\Desktop\iDevice Manager.lnk 2014-03-30 12:41 - 2014-03-30 12:41 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-03-30 12:40 - 2014-03-30 12:40 - 04101456 _____ (Marx Softwareentwicklung ) C:\Users\Alessio\Downloads\IDMSetup34.exe 2014-03-30 12:39 - 2014-03-30 12:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-03-30 12:38 - 2014-03-31 12:42 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\iFunbox_UserCache 2014-03-30 12:38 - 2014-03-30 12:38 - 15016222 _____ ( ) C:\Users\Alessio\Downloads\ifunbox27_setup.exe 2014-03-30 12:38 - 2014-03-30 12:38 - 00001074 _____ () C:\Users\Public\Desktop\iFunbox.lnk 2014-03-30 12:38 - 2014-03-30 12:38 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam 2014-03-30 12:36 - 2014-03-30 12:38 - 00050508 _____ () C:\Users\Alessio\Desktop\Sims Mod.zip 2014-03-28 23:02 - 2014-03-28 23:02 - 00016055 _____ () C:\Users\Alessio\Desktop\FRST.rar 2014-03-28 22:56 - 2014-03-31 19:21 - 00027739 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-28 22:56 - 2014-03-31 19:21 - 00000000 ____D () C:\FRST 2014-03-28 22:56 - 2014-03-30 14:37 - 00033530 _____ () C:\Users\Alessio\Desktop\Addition.txt 2014-03-28 21:07 - 2014-03-31 17:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-28 21:05 - 2014-03-28 21:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 20:59 - 2014-03-28 21:00 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 20:58 - 2014-03-28 20:59 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 20:56 - 2014-03-28 20:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 20:54 - 2014-03-28 20:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 20:53 - 2014-03-28 20:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 20:46 - 2014-03-31 11:01 - 00165659 _____ () C:\MyXML.xml 2014-03-28 20:46 - 2014-03-28 20:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 20:46 - 2014-03-28 20:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 20:45 - 2014-03-28 20:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 20:19 - 2014-03-28 20:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 19:46 - 2014-03-28 19:47 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 18:48 - 2014-03-28 18:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 18:43 - 2014-03-28 18:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 18:41 - 2014-03-28 18:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 18:40 - 2014-03-30 12:14 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-28 18:40 - 2014-03-29 14:33 - 00001038 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 18:40 - 2014-03-28 18:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 18:40 - 2014-03-28 18:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 18:38 - 2014-03-28 18:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 17:58 - 2014-03-28 17:58 - 00016860 _____ () C:\Users\Alessio\Desktop\save.xml 2014-03-28 17:58 - 2014-03-28 17:58 - 00000232 _____ () C:\Users\Alessio\Desktop\backupSaveFile.dat 2014-03-28 13:30 - 2014-03-28 13:30 - 00006644 _____ () C:\ad.txt 2014-03-27 15:03 - 2014-03-27 15:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 15:03 - 2014-03-27 15:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 14:51 - 2014-03-27 14:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 13:08 - 2014-03-31 18:51 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-27 13:08 - 2014-03-27 13:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 13:08 - 2014-03-27 13:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 13:08 - 2014-03-05 10:26 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-27 13:08 - 2014-03-05 10:26 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-27 13:08 - 2014-03-05 10:26 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-27 13:06 - 2014-03-27 13:07 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 16:49 - 2014-03-26 16:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 16:46 - 2014-03-26 16:47 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 14:14 - 2014-03-26 14:14 - 00000000 ____D () C:\Mozilla 2014-03-25 19:47 - 2014-03-29 14:37 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-25 19:32 - 2014-03-26 21:26 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-25 18:21 - 2014-03-25 18:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 16:56 - 2014-03-25 16:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 16:56 - 2014-03-25 16:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 16:55 - 2014-03-25 16:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 16:52 - 2014-03-25 16:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 16:44 - 2014-03-25 16:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Guide 2014-03-25 16:36 - 2014-03-25 16:38 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 16:36 - 2014-03-25 16:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 16:36 - 2014-03-25 16:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 16:36 - 2014-03-25 16:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 16:31 - 2014-03-25 19:58 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 16:31 - 2014-03-25 16:35 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 16:31 - 2014-03-25 16:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 16:31 - 2014-03-25 16:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 15:52 - 2014-03-25 15:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 15:32 - 2014-03-25 15:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 15:07 - 2014-03-25 15:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 15:05 - 2014-03-25 15:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 15:01 - 2014-03-25 15:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 14:59 - 2014-03-25 14:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 14:58 - 2014-03-25 14:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 14:54 - 2014-03-25 14:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 14:44 - 2014-03-25 14:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 14:36 - 2014-03-25 14:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 20:40 - 2014-03-24 20:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 20:40 - 2014-03-24 20:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 20:39 - 2014-03-24 20:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 20:39 - 2014-03-24 20:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 20:39 - 2014-03-24 20:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 20:37 - 2014-03-24 20:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 20:36 - 2014-03-28 20:45 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 20:36 - 2014-03-24 20:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 20:36 - 2014-03-24 20:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 20:36 - 2014-03-24 20:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 20:35 - 2014-03-24 20:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 20:33 - 2014-03-24 20:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 20:32 - 2014-03-24 20:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 20:09 - 2014-03-24 20:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 20:08 - 2014-03-24 20:45 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 20:08 - 2014-03-24 20:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 20:08 - 2014-03-24 20:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 20:07 - 2014-03-24 20:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 16:26 - 2014-03-24 16:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 16:26 - 2014-03-24 16:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 15:11 - 2014-03-24 15:14 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 15:07 - 2014-03-24 15:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 15:07 - 2014-03-24 15:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 15:05 - 2014-03-24 15:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 15:03 - 2014-03-24 15:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 15:01 - 2011-01-23 20:25 - 00154119 _____ () C:\Users\Alessio\Desktop\Memtest86+ USB Installer.exe 2014-03-24 14:54 - 2014-03-24 14:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 14:49 - 2014-03-24 14:50 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 14:48 - 2014-03-24 14:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 14:42 - 2014-03-24 14:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 13:46 - 2014-03-24 13:47 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-23 16:53 - 2014-03-23 16:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 16:53 - 2014-03-23 16:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 16:53 - 2012-05-11 16:24 - 00027648 _____ () C:\WINDOWS\system32\Drivers\GameKB.sys 2014-03-23 16:49 - 2014-03-23 16:53 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 16:46 - 2014-03-23 16:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 16:26 - 2014-03-23 16:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 16:25 - 2014-03-23 16:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 16:22 - 2014-03-23 16:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 16:21 - 2014-03-23 16:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 16:19 - 2014-03-24 20:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-23 16:19 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 16:19 - 2014-03-23 16:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 16:19 - 2014-03-23 16:17 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 16:19 - 2014-03-23 16:17 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 16:19 - 2014-03-23 16:17 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 16:19 - 2010-09-13 16:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-03-23 16:19 - 2010-09-13 16:01 - 00538112 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-03-23 16:19 - 2010-09-13 16:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-03-23 16:19 - 2010-09-13 16:00 - 00558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-03-23 16:19 - 2008-06-18 12:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2014-03-23 16:19 - 2008-06-18 12:49 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-03-23 16:18 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 16:18 - 2011-08-10 01:00 - 00464384 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll 2014-03-23 16:18 - 2009-10-16 01:00 - 00132560 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esdevapp.exe 2014-03-23 16:18 - 2009-10-16 01:00 - 00013824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxcdev.dll 2014-03-23 16:13 - 2014-03-23 16:34 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-22 14:23 - 2013-11-22 16:34 - 00063096 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\Drivers\TMUSB64.sys 2014-03-21 18:41 - 2014-03-21 18:43 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 14:21 - 2014-03-21 14:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 14:20 - 2014-03-21 14:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-18 20:01 - 2014-03-18 20:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 20:00 - 2014-01-15 00:47 - 00044744 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys 2014-03-18 15:04 - 2014-03-18 15:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-18 12:10 - 2014-02-22 14:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2014-03-18 12:10 - 2014-02-22 13:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2014-03-17 19:19 - 2014-03-17 19:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 19:18 - 2014-03-17 19:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 19:18 - 2014-03-17 19:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 19:17 - 2014-03-17 19:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 19:15 - 2014-03-17 19:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 19:13 - 2014-03-17 19:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 19:12 - 2014-03-17 19:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 19:12 - 2014-03-17 19:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 19:11 - 2014-03-17 19:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 17:23 - 2014-03-17 17:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 16:30 - 2014-03-17 16:35 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 16:28 - 2014-03-17 16:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-16 13:00 - 2014-03-27 21:04 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-15 13:20 - 2014-03-23 16:53 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 13:19 - 2014-03-15 13:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 13:01 - 2014-03-15 13:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 13:01 - 2014-03-15 13:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 13:00 - 2014-03-15 13:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 21:13 - 2014-03-14 21:14 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 13:17 - 2014-03-14 13:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 13:08 - 2014-03-14 13:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 18:30 - 2014-03-13 18:31 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-12 18:20 - 2014-03-30 13:47 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-12 13:56 - 2014-03-12 13:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-12 13:56 - 2014-03-01 08:05 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-12 13:56 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-12 13:56 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-12 13:56 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-12 13:56 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-12 13:56 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-12 13:56 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-12 13:56 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-12 13:56 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-12 13:56 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-12 13:56 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-12 13:56 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-12 13:56 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-12 13:56 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-12 13:56 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-12 13:56 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-12 13:56 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2014-03-12 13:56 - 2014-02-11 05:04 - 04189184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-03-12 13:56 - 2014-02-11 04:43 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2014-03-12 13:56 - 2014-02-11 04:04 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2014-03-12 13:56 - 2014-01-31 18:15 - 00311640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-03-12 13:56 - 2014-01-31 18:07 - 00233920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-03-12 13:56 - 2014-01-31 18:06 - 02133208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-03-12 13:56 - 2014-01-31 15:47 - 02143960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-03-12 13:56 - 2014-01-31 11:06 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-03-12 13:56 - 2014-01-29 11:55 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2014-03-12 13:56 - 2014-01-29 10:53 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2014-03-12 13:56 - 2014-01-29 10:53 - 00407024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2014-03-12 13:56 - 2014-01-29 10:49 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2014-03-12 13:56 - 2014-01-29 10:47 - 02543960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-03-12 13:56 - 2014-01-29 09:44 - 01371824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2014-03-12 13:56 - 2014-01-29 09:44 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2014-03-12 13:56 - 2014-01-29 09:44 - 00369280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2014-03-12 13:56 - 2014-01-29 08:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-03-12 13:56 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-03-12 13:56 - 2014-01-27 21:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2014-03-12 13:56 - 2014-01-27 21:06 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-03-12 13:56 - 2014-01-27 21:04 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2014-03-12 13:56 - 2014-01-27 20:52 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2014-03-12 13:56 - 2014-01-27 20:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2014-03-12 13:56 - 2014-01-27 20:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-03-12 13:56 - 2014-01-27 20:20 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2014-03-12 13:56 - 2014-01-27 20:15 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-03-12 13:56 - 2014-01-27 19:43 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-03-12 13:56 - 2014-01-27 19:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2014-03-12 13:56 - 2014-01-27 19:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2014-03-12 13:56 - 2014-01-27 17:58 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-03-12 13:56 - 2014-01-27 17:50 - 06640640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-03-12 13:56 - 2014-01-27 13:45 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml 2014-03-12 13:56 - 2014-01-18 01:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-03-12 13:56 - 2014-01-17 23:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-03-12 13:56 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2014-03-12 13:56 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2014-03-12 13:56 - 2013-12-20 12:18 - 01643584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2014-03-12 13:56 - 2013-12-20 12:18 - 01507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2014-03-12 13:56 - 2013-10-31 02:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2014-03-12 13:56 - 2013-10-31 02:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2014-03-12 13:56 - 2013-10-31 02:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2014-03-10 21:25 - 2014-03-10 21:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 19:36 - 2014-03-10 19:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 18:21 - 2014-03-31 19:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-09 18:21 - 2014-03-09 18:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 18:20 - 2014-03-09 18:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 18:20 - 2014-03-09 18:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 16:21 - 2014-03-09 16:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 16:20 - 2014-03-09 16:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 16:16 - 2014-03-09 16:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 16:00 - 2014-03-08 16:06 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 15:56 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 15:47 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 15:31 - 2014-03-08 16:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-08 15:29 - 2013-11-27 22:22 - 141519856 _____ () C:\Users\Alessio\Downloads\GMStudio-Installer.exe 2014-03-07 18:47 - 2014-03-07 18:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 18:46 - 2014-03-07 18:47 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 18:46 - 2014-03-07 18:47 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 14:54 - 2014-03-06 14:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 14:53 - 2014-03-06 14:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 14:32 - 2014-03-06 14:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 14:32 - 2014-03-06 14:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 19:42 - 2014-03-05 19:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 19:34 - 2014-03-05 19:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 19:31 - 2014-03-05 19:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 17:35 - 2014-03-05 17:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-03 12:13 - 2014-03-03 12:14 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 18:07 - 2014-03-01 18:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 18:00 - 2014-03-31 19:05 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-01 18:00 - 2014-03-31 17:05 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-01 18:00 - 2014-03-01 18:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 18:00 - 2014-03-01 18:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 18:00 - 2014-03-01 18:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 18:00 - 2014-03-01 18:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 17:55 - 2014-03-01 17:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar ==================== One Month Modified Files and Folders ======= 2014-03-31 19:21 - 2014-03-28 22:56 - 00027739 _____ () C:\Users\Alessio\Desktop\FRST.txt 2014-03-31 19:21 - 2014-03-28 22:56 - 00000000 ____D () C:\FRST 2014-03-31 19:21 - 2014-03-09 18:21 - 00000314 _____ () C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2014-03-31 19:14 - 2014-01-25 19:09 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5AAFE3CE-0AB4-4161-9BA2-01537602E0FD} 2014-03-31 19:08 - 2013-06-24 13:52 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Skype 2014-03-31 19:08 - 2013-05-31 14:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-03-31 19:05 - 2014-03-01 18:00 - 00000972 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA.job 2014-03-31 19:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-03-31 18:53 - 2014-03-30 15:08 - 00000000 ____D () C:\Program Files\Nightly 2014-03-31 18:53 - 2014-03-30 14:18 - 00000025 _____ () C:\Users\Alessio\Desktop\Neues Textdokument.bat 2014-03-31 18:51 - 2014-03-27 13:08 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-03-31 18:33 - 2013-07-12 14:24 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.minecraft 2014-03-31 18:30 - 2013-06-05 16:22 - 00001136 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-03-31 18:21 - 2014-03-30 15:01 - 00000000 ____D () C:\Users\Alessio\Documents\Bandicam 2014-03-31 17:32 - 2014-03-28 21:07 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ClassicShell 2014-03-31 17:05 - 2014-03-01 18:00 - 00000920 _____ () C:\WINDOWS\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core.job 2014-03-31 16:45 - 2014-01-23 15:55 - 01882456 _____ () C:\WINDOWS\WindowsUpdate.log 2014-03-31 16:42 - 2013-05-31 16:44 - 00000000 ____D () C:\ProgramData\Origin 2014-03-31 16:41 - 2014-01-23 19:50 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-03-31 16:34 - 2014-01-23 15:37 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-03-31 14:11 - 2014-03-31 14:11 - 00000814 _____ () C:\Users\Alessio\Desktop\AN LASSEN! - Verknüpfung.lnk 2014-03-31 14:10 - 2014-03-31 14:10 - 00000000 ____D () C:\Users\Alessio\Desktop\AN LASSEN! 2014-03-31 14:06 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp 2014-03-31 13:23 - 2014-03-31 13:23 - 00000000 ____D () C:\Program Files (x86)\ESET 2014-03-31 13:22 - 2014-03-31 13:22 - 02347384 _____ (ESET) C:\Users\Alessio\Desktop\esetsmartinstaller_enu.exe 2014-03-31 13:22 - 2014-03-31 13:22 - 00987442 _____ () C:\Users\Alessio\Desktop\SecurityCheck.exe 2014-03-31 13:13 - 2014-03-31 13:09 - 00000000 ____D () C:\Users\Alessio\Desktop\skins 2014-03-31 12:47 - 2014-01-22 18:25 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3775792459-901648600-1102063504-1001 2014-03-31 12:42 - 2014-03-30 12:38 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\iFunbox_UserCache 2014-03-31 12:41 - 2013-06-18 19:30 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\vlc 2014-03-31 12:31 - 2014-01-22 21:10 - 00002201 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-03-31 12:31 - 2013-06-05 16:22 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-03-31 12:25 - 2014-03-30 13:07 - 00000000 ____D () C:\Users\Alessio\Desktop\Ipad 2014-03-31 12:24 - 2014-03-31 12:24 - 00122987 _____ () C:\Users\Alessio\Downloads\ipa02245_GameSave.zip 2014-03-31 12:20 - 2014-03-31 12:20 - 00008308 _____ () C:\Users\Alessio\Downloads\angry_birds_go_save_tech-recipes.zip 2014-03-31 12:13 - 2014-03-31 12:13 - 00000000 ____D () C:\Users\Alessio\Desktop\ads 2014-03-31 11:57 - 2014-03-31 11:54 - 03364407 _____ () C:\Users\Alessio\Desktop\ACraft.zip 2014-03-31 11:39 - 2014-03-31 11:39 - 00006432 _____ () C:\Users\Alessio\Desktop\save_guest.dat 2014-03-31 11:28 - 2014-03-31 11:28 - 02347557 _____ () C:\Users\Alessio\Downloads\mcpatcher-4.3.2_01.exe 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\texts 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\shaders 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\lang 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\font 2014-03-31 11:25 - 2014-03-31 11:25 - 00000000 ____D () C:\Users\Alessio\Desktop\ACraft 2014-03-31 11:03 - 2014-01-23 18:41 - 00000000 __RDO () C:\Users\Alessio\SkyDrive 2014-03-31 11:02 - 2013-12-03 13:45 - 00000000 ____D () C:\Users\Alessio\AppData\Local\LogMeIn Hamachi 2014-03-31 11:01 - 2014-03-28 20:46 - 00165659 _____ () C:\MyXML.xml 2014-03-31 11:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-03-30 19:37 - 2014-03-30 19:37 - 00000121 _____ () C:\Users\Alessio\AppData\Roaming\System Monitor II_UptimeRecord.ini 2014-03-30 19:31 - 2013-11-14 09:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-03-30 19:31 - 2013-11-14 09:11 - 00764340 _____ () C:\WINDOWS\system32\perfh007.dat 2014-03-30 19:31 - 2013-11-14 09:11 - 00159160 _____ () C:\WINDOWS\system32\perfc007.dat 2014-03-30 14:37 - 2014-03-28 22:56 - 00033530 _____ () C:\Users\Alessio\Desktop\Addition.txt 2014-03-30 14:34 - 2014-03-30 14:34 - 00001477 _____ () C:\Users\Alessio\Desktop\JRT.txt 2014-03-30 14:32 - 2013-12-25 19:49 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Games 2014-03-30 14:30 - 2014-03-30 14:30 - 00000000 ____D () C:\WINDOWS\ERUNT 2014-03-30 13:58 - 2014-03-30 13:57 - 02157056 _____ (Farbar) C:\Users\Alessio\Desktop\FRST64.exe 2014-03-30 13:49 - 2014-03-30 13:49 - 01038974 _____ (Thisisu) C:\Users\Alessio\Desktop\JRT.exe 2014-03-30 13:49 - 2014-03-30 13:41 - 00017959 _____ () C:\Users\Alessio\Desktop\Trojboard .txt 2014-03-30 13:47 - 2014-03-12 18:20 - 00003112 _____ () C:\WINDOWS\System32\Tasks\RDReminder 2014-03-30 13:44 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-03-30 13:44 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-03-30 13:43 - 2014-03-30 13:40 - 00000000 ____D () C:\AdwCleaner 2014-03-30 13:40 - 2014-03-30 13:40 - 01950720 _____ () C:\Users\Alessio\Desktop\adwcleaner.exe 2014-03-30 12:56 - 2014-03-30 12:56 - 00000000 ____D () C:\Users\Alessio\Desktop\Sims Mod 2014-03-30 12:51 - 2013-10-22 19:26 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Apple Computer 2014-03-30 12:48 - 2014-03-30 12:48 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iTunes 2014-03-30 12:48 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-03-30 12:48 - 2013-10-22 19:27 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Apple Computer 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\iPod 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files\Bonjour 2014-03-30 12:47 - 2014-03-30 12:47 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2014-03-30 12:47 - 2013-10-22 19:26 - 00000000 ____D () C:\ProgramData\Apple Computer 2014-03-30 12:47 - 2013-10-22 19:26 - 00000000 ____D () C:\ProgramData\Apple 2014-03-30 12:46 - 2014-03-30 12:45 - 148885840 _____ (Apple Inc.) C:\Users\Alessio\Downloads\iTunes64Setup.exe 2014-03-30 12:43 - 2014-03-30 12:43 - 00000000 ____D () C:\Users\Alessio\AppData\Local\IsolatedStorage 2014-03-30 12:42 - 2014-03-30 12:42 - 00002256 _____ () C:\Users\Alessio\Desktop\iDevice Manager.lnk 2014-03-30 12:42 - 2013-08-22 16:46 - 00293216 _____ () C:\WINDOWS\setupact.log 2014-03-30 12:41 - 2014-03-30 12:41 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-03-30 12:40 - 2014-03-30 12:40 - 04101456 _____ (Marx Softwareentwicklung ) C:\Users\Alessio\Downloads\IDMSetup34.exe 2014-03-30 12:39 - 2014-03-30 12:39 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-03-30 12:38 - 2014-03-30 12:38 - 15016222 _____ ( ) C:\Users\Alessio\Downloads\ifunbox27_setup.exe 2014-03-30 12:38 - 2014-03-30 12:38 - 00001074 _____ () C:\Users\Public\Desktop\iFunbox.lnk 2014-03-30 12:38 - 2014-03-30 12:38 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam 2014-03-30 12:38 - 2014-03-30 12:36 - 00050508 _____ () C:\Users\Alessio\Desktop\Sims Mod.zip 2014-03-30 12:25 - 2013-06-05 16:22 - 00004108 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2014-03-30 12:25 - 2013-06-05 16:22 - 00003872 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2014-03-30 12:14 - 2014-03-28 18:40 - 00001492 _____ () C:\WINDOWS\Sandboxie.ini 2014-03-29 14:37 - 2014-03-25 19:47 - 00000000 ____D () C:\Users\Alessio\Desktop\.bat helper 2014-03-29 14:33 - 2014-03-28 18:40 - 00001038 _____ () C:\Users\Alessio\Desktop\Sandboxed Web Browser.lnk 2014-03-28 23:02 - 2014-03-28 23:02 - 00016055 _____ () C:\Users\Alessio\Desktop\FRST.rar 2014-03-28 21:57 - 2013-11-14 00:18 - 00234630 _____ () C:\WINDOWS\PFRO.log 2014-03-28 21:50 - 2013-08-22 17:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-03-28 21:05 - 2014-03-28 21:05 - 20320256 _____ () C:\Users\Alessio\Downloads\8GadgetPackSetup-11.msi 2014-03-28 21:00 - 2014-03-28 20:59 - 00000000 ____D () C:\Users\Alessio\Desktop\Gadgets 2014-03-28 21:00 - 2013-08-22 17:36 - 00000000 ___SD () C:\Program Files\Windows Sidebar 2014-03-28 21:00 - 2013-08-22 17:36 - 00000000 ___SD () C:\Program Files (x86)\Windows Sidebar 2014-03-28 20:59 - 2014-03-28 20:58 - 09539515 _____ () C:\Users\Alessio\Downloads\Minianwendungen-fuer-Windows-8-DE-x64.zip 2014-03-28 20:56 - 2014-03-28 20:56 - 00000000 ____D () C:\Program Files\Classic Shell 2014-03-28 20:54 - 2014-03-28 20:54 - 05696704 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4-de.exe 2014-03-28 20:53 - 2014-03-28 20:53 - 05631168 _____ (IvoSoft) C:\Users\Alessio\Downloads\ClassicShellSetup_4_0_4.exe 2014-03-28 20:46 - 2014-03-28 20:46 - 00003164 _____ () C:\WINDOWS\System32\Tasks\StartMenuAutoupdate 2014-03-28 20:46 - 2014-03-28 20:46 - 00002075 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk 2014-03-28 20:45 - 2014-03-28 20:45 - 07039112 _____ (IObit ) C:\Users\Alessio\Downloads\startmenu-setup_1.4.0.0.exe 2014-03-28 20:45 - 2014-03-24 20:36 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-03-28 20:19 - 2014-03-28 20:19 - 00017081 _____ () C:\Users\Alessio\Downloads\StartScreenAnimationsTweaker.zip 2014-03-28 19:47 - 2014-03-28 19:46 - 19103998 _____ () C:\Users\Alessio\Downloads\Yodus_0.1.zip 2014-03-28 18:48 - 2014-03-28 18:48 - 00000000 ___RD () C:\Sandbox 2014-03-28 18:43 - 2014-03-28 18:43 - 00448512 _____ (OldTimer Tools) C:\Users\Alessio\Downloads\TFC.exe 2014-03-28 18:41 - 2014-03-28 18:41 - 00435110 _____ () C:\Users\Alessio\Downloads\BitBox-3.3.0_OSE.zip 2014-03-28 18:40 - 2014-03-28 18:40 - 02605768 _____ (Sandboxie Holdings, LLC) C:\Users\Alessio\Downloads\SandboxieInstall.exe 2014-03-28 18:40 - 2014-03-28 18:40 - 00000000 ____D () C:\Program Files\Sandboxie 2014-03-28 18:38 - 2014-03-28 18:38 - 00000348 _____ () C:\DelFix.txt 2014-03-28 17:58 - 2014-03-28 17:58 - 00016860 _____ () C:\Users\Alessio\Desktop\save.xml 2014-03-28 17:58 - 2014-03-28 17:58 - 00000232 _____ () C:\Users\Alessio\Desktop\backupSaveFile.dat 2014-03-28 13:30 - 2014-03-28 13:30 - 00006644 _____ () C:\ad.txt 2014-03-27 21:04 - 2014-03-16 13:00 - 00000910 _____ () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nightly.lnk 2014-03-27 16:16 - 2013-10-30 17:29 - 00000000 ____D () C:\Users\Alessio\Documents\AVS4YOU 2014-03-27 16:16 - 2013-07-17 14:09 - 00000000 ____D () C:\Users\Alessio\Documents\Roms 2014-03-27 15:06 - 2013-08-26 13:43 - 00000000 ____D () C:\Program Files (x86)\Winamp 2014-03-27 15:03 - 2014-03-27 15:03 - 00000997 _____ () C:\Users\Public\Desktop\Winamp.lnk 2014-03-27 15:03 - 2014-03-27 15:03 - 00000000 ____D () C:\Program Files (x86)\Winamp Detect 2014-03-27 15:03 - 2014-01-22 20:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-27 15:03 - 2013-08-27 17:17 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Erkennungs-Plug-in 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Secunia PSI 2014-03-27 14:52 - 2014-03-27 14:52 - 00000000 ____D () C:\Program Files (x86)\Secunia 2014-03-27 14:51 - 2014-03-27 14:51 - 05329480 _____ (Secunia) C:\Users\Alessio\Downloads\PSISetup.exe 2014-03-27 13:08 - 2014-03-27 13:08 - 00001120 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-03-27 13:08 - 2014-03-27 13:08 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-03-27 13:08 - 2014-02-13 20:55 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-27 13:07 - 2014-03-27 13:06 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Alessio\Downloads\mbam-setup-2.0.0.1000.exe 2014-03-26 21:26 - 2014-03-25 19:32 - 00000000 ____D () C:\Users\Alessio\Desktop\.vbs helper 2014-03-26 18:11 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-03-26 16:49 - 2014-03-26 16:49 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar(1).exe 2014-03-26 16:47 - 2014-03-26 16:46 - 00215064 _____ () C:\Users\Alessio\Downloads\tb_PrizeRebelBar.exe 2014-03-26 14:14 - 2014-03-26 14:14 - 00000000 ____D () C:\Mozilla 2014-03-25 20:15 - 2014-01-24 16:10 - 00004535 _____ () C:\Users\Alessio\AppData\Roaming\CamStudio.cfg 2014-03-25 20:15 - 2014-01-24 16:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamShapes.ini 2014-03-25 20:15 - 2014-01-24 16:10 - 00000408 _____ () C:\Users\Alessio\AppData\Roaming\CamLayout.ini 2014-03-25 20:15 - 2014-01-24 16:10 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\Camdata.ini 2014-03-25 20:14 - 2014-01-24 16:09 - 00000096 _____ () C:\Users\Alessio\AppData\Roaming\version2.xml 2014-03-25 19:58 - 2014-03-25 16:31 - 00000000 ____D () C:\Program Files (x86)\Desktop Fun 1.1 2014-03-25 18:21 - 2014-03-25 18:21 - 02165982 _____ () C:\Users\Alessio\Downloads\ErrorGen-1.2_bin.zip 2014-03-25 16:56 - 2014-03-25 16:56 - 00003142 _____ () C:\WINDOWS\System32\Tasks\{4967C920-9A9B-4C88-B9CE-A89A668529C1} 2014-03-25 16:56 - 2014-03-25 16:56 - 00000000 ____D () C:\Program Files\Peter 2014-03-25 16:55 - 2014-03-25 16:55 - 00694784 _____ () C:\Users\Alessio\Downloads\desktop.exe 2014-03-25 16:55 - 2014-01-22 18:18 - 00000000 ____D () C:\Users\Alessio\AppData\Local\VirtualStore 2014-03-25 16:52 - 2014-03-25 16:52 - 02120984 _____ () C:\Users\Alessio\Downloads\desktop_killer_pro.zip 2014-03-25 16:52 - 2014-03-25 16:52 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe 2014-03-25 16:52 - 2014-03-25 16:52 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll 2014-03-25 16:52 - 2014-03-25 16:52 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll 2014-03-25 16:44 - 2014-03-25 16:44 - 00000000 ____D () C:\Users\Alessio\Desktop\Netdisaster-1.1 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Deskop Destroy II 2014-03-25 16:40 - 2014-03-25 16:40 - 00000000 ____D () C:\Guide 2014-03-25 16:38 - 2014-03-25 16:36 - 00000000 ____D () C:\Program Files (x86)\DrWindows 2014-03-25 16:36 - 2014-03-25 16:36 - 01978368 _____ () C:\Users\Alessio\Desktop\DrWindowsSetup_1.05.01.exe 2014-03-25 16:36 - 2014-03-25 16:36 - 00000971 _____ () C:\Users\Alessio\Desktop\Dr.Windows.lnk 2014-03-25 16:36 - 2014-03-25 16:36 - 00000000 ____D () C:\Users\Alessio\Documents\DrWindows 2014-03-25 16:35 - 2014-03-25 16:31 - 00001086 _____ () C:\Users\Alessio\Desktop\Desktop Fun 1.1.lnk 2014-03-25 16:31 - 2014-03-25 16:31 - 00276043 _____ () C:\Users\Alessio\Downloads\DesktopFun.exe 2014-03-25 16:31 - 2014-03-25 16:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Desktop Fun 1.1 2014-03-25 15:52 - 2014-03-25 15:52 - 00084865 _____ () C:\Users\Alessio\Downloads\Herobrine.jar 2014-03-25 15:32 - 2014-03-25 15:32 - 00004583 _____ () C:\Users\Alessio\Downloads\Witherbow.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00181728 _____ () C:\Users\Alessio\Downloads\PermissionsEx.jar 2014-03-25 15:11 - 2014-03-25 15:11 - 00032306 _____ () C:\Users\Alessio\Downloads\FrameProtector.jar 2014-03-25 15:07 - 2014-03-25 15:07 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers (1).jar 2014-03-25 15:05 - 2014-03-25 15:05 - 00260135 _____ () C:\Users\Alessio\Downloads\Gods.jar 2014-03-25 15:01 - 2014-03-25 15:01 - 00321926 _____ () C:\Users\Alessio\Downloads\Vault.jar 2014-03-25 14:59 - 2014-03-25 14:59 - 00098522 _____ () C:\Users\Alessio\Downloads\godPowers.jar 2014-03-25 14:58 - 2014-03-25 14:58 - 00028404 _____ () C:\Users\Alessio\Downloads\God_Craft_v1.9.zip 2014-03-25 14:54 - 2014-03-25 14:54 - 00006231 _____ () C:\Users\Alessio\Downloads\McGods.jar 2014-03-25 14:44 - 2014-03-25 14:44 - 00050756 _____ () C:\Users\Alessio\Downloads\Supreme_Enchantments-1.2.jar 2014-03-25 14:36 - 2014-03-25 14:36 - 00020651 _____ () C:\Users\Alessio\Downloads\MySpecialWeapons.jar 2014-03-25 14:19 - 2014-02-12 17:59 - 00000000 ____D () C:\Users\Alessio\AppData\Local\PackageStaging 2014-03-25 14:12 - 2013-07-13 10:49 - 00000000 ____D () C:\Users\Alessio\Tracing 2014-03-24 21:09 - 2013-08-03 11:41 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Notepad++ 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576.msi 2014-03-24 21:05 - 2014-03-24 21:05 - 00837120 _____ () C:\Users\Alessio\Downloads\MicrosoftFixit50576(1).msi 2014-03-24 20:45 - 2014-03-24 20:08 - 00000436 _____ () C:\WINDOWS\Tasks\DriverEasy Scheduled Scan.job 2014-03-24 20:40 - 2014-03-24 20:40 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2014-03-24 20:40 - 2014-03-24 20:40 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 03849304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-03-24 20:39 - 2014-03-24 20:39 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02787032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02100312 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-03-24 20:39 - 2014-03-24 20:39 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01022680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 01014360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00732833 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-03-24 20:39 - 2014-03-24 20:39 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00156888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-03-24 20:39 - 2014-03-24 20:39 - 00000000 ____D () C:\Program Files\Realtek 2014-03-24 20:37 - 2014-03-24 20:37 - 00222720 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWB6.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00141312 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\amdacpksl.sys 2014-03-24 20:37 - 2014-03-24 20:37 - 00110080 _____ (TODO: <Company name>) C:\WINDOWS\system32\DelayAPO.dll 2014-03-24 20:36 - 2014-03-24 20:36 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan 2014-03-24 20:36 - 2014-03-24 20:36 - 00002382 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Alessio) 2014-03-24 20:36 - 2014-03-24 20:36 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk 2014-03-24 20:36 - 2014-03-24 20:36 - 00000278 _____ () C:\WINDOWS\Tasks\Driver Booster SkipUAC (Alessio).job 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IObit 2014-03-24 20:36 - 2014-03-24 20:36 - 00000000 ____D () C:\ProgramData\IObit 2014-03-24 20:35 - 2014-03-24 20:35 - 21297216 _____ (IObit ) C:\Users\Alessio\Downloads\driver_booster_setup_1.3.exe 2014-03-24 20:33 - 2014-03-24 20:33 - 00000000 ____D () C:\ProgramData\ATI 2014-03-24 20:32 - 2014-03-24 20:32 - 01189560 _____ (AMD Inc.) C:\Users\Alessio\Downloads\catalyst_mobility_64-bit_util.exe 2014-03-24 20:32 - 2013-08-12 15:05 - 00000000 ____D () C:\AMD 2014-03-24 20:09 - 2014-03-24 20:09 - 06206280 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alessio\Downloads\disk-defrag-setup_4.5.2.exe 2014-03-24 20:09 - 2014-03-24 20:09 - 00049669 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201403241909485439.log 2014-03-24 20:09 - 2014-03-24 20:09 - 00000000 ____D () C:\Program Files (x86)\Advanced Micro Devices, Inc 2014-03-24 20:09 - 2014-03-23 16:19 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-03-24 20:09 - 2013-07-29 14:08 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies 2014-03-24 20:08 - 2014-03-24 20:08 - 00003826 _____ () C:\WINDOWS\System32\Tasks\DriverEasy Scheduled Scan 2014-03-24 20:08 - 2014-03-24 20:08 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Easeware 2014-03-24 20:07 - 2014-03-24 20:07 - 02984832 _____ (Easeware ) C:\Users\Alessio\Downloads\DriverEasy_Setup-4.6.6.exe 2014-03-24 20:07 - 2014-01-02 23:04 - 00000000 ____D () C:\ProgramData\Package Cache 2014-03-24 16:32 - 2013-08-22 16:44 - 00376456 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-03-24 16:31 - 2014-01-23 15:42 - 00000000 ____D () C:\Users\Alessio 2014-03-24 16:26 - 2014-03-24 16:26 - 00265597 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.floppy.zip 2014-03-24 16:26 - 2014-03-24 16:26 - 00055897 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.zip 2014-03-24 15:14 - 2014-03-24 15:11 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\ImgBurn 2014-03-24 15:07 - 2014-03-24 15:07 - 00001883 _____ () C:\Users\Public\Desktop\ImgBurn.lnk 2014-03-24 15:07 - 2014-03-24 15:07 - 00000000 ____D () C:\Program Files (x86)\ImgBurn 2014-03-24 15:05 - 2014-03-24 15:05 - 00000000 ____D () C:\Users\Alessio\Desktop\Neuer Ordner 2014-03-24 15:03 - 2014-03-24 15:03 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01(1).iso.gz 2014-03-24 14:54 - 2014-03-24 14:54 - 00127860 _____ () C:\Users\Alessio\Downloads\memtest86+-4.20.usb.installer.zip 2014-03-24 14:50 - 2014-03-24 14:49 - 00059351 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.iso.gz 2014-03-24 14:48 - 2014-03-24 14:48 - 00121069 _____ () C:\Users\Alessio\Downloads\memtest86+-5.01.usb.installer.zip 2014-03-24 14:42 - 2014-03-24 14:42 - 00000424 _____ () C:\Users\Alessio\Desktop\Dieser PC - Verknüpfung.lnk 2014-03-24 13:47 - 2014-03-24 13:46 - 00280832 _____ () C:\WINDOWS\Minidump\032414-79468-01.dmp 2014-03-24 13:46 - 2014-02-24 17:43 - 00000000 ____D () C:\WINDOWS\Minidump 2014-03-24 13:45 - 2014-02-24 17:43 - 559958084 _____ () C:\WINDOWS\MEMORY.DMP 2014-03-23 16:53 - 2014-03-23 16:53 - 00001906 _____ () C:\Users\Public\Desktop\SHARKOON Skiller Konfigurator.lnk 2014-03-23 16:53 - 2014-03-23 16:53 - 00000000 ____D () C:\Program Files (x86)\SHARKOON Skiller 2014-03-23 16:53 - 2014-03-23 16:49 - 02489911 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.5-R0.1-20140323.035941-4.jar 2014-03-23 16:53 - 2014-03-15 13:20 - 00000888 _____ () C:\Users\Alessio\Desktop\SequoiaView.lnk 2014-03-23 16:52 - 2014-03-23 16:46 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Epson 2014-03-23 16:34 - 2014-03-23 16:13 - 00000000 ____D () C:\ProgramData\EPSON 2014-03-23 16:26 - 2014-03-23 16:26 - 00324043 _____ () C:\Users\Alessio\Downloads\worldguard-5.9.zip 2014-03-23 16:25 - 2014-03-23 16:25 - 00866564 _____ () C:\Users\Alessio\Downloads\worldedit-5.6.zip 2014-03-23 16:25 - 2013-06-01 12:00 - 00000000 ____D () C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint 2014-03-23 16:22 - 2014-03-23 16:22 - 00002189 _____ () C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2014-03-23 16:22 - 2013-06-01 11:59 - 00000000 ____D () C:\ProgramData\UDL 2014-03-23 16:21 - 2014-03-23 16:21 - 00000306 _____ () C:\WINDOWS\setup.iss 2014-03-23 16:21 - 2014-03-23 16:21 - 00000000 ____D () C:\Program Files\Epson Software 2014-03-23 16:21 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files (x86)\Epson Software 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Netzwerkhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002420 _____ () C:\Users\Public\Desktop\Benutzerhandbuch EPSON SX430 Series.lnk 2014-03-23 16:20 - 2014-03-23 16:20 - 00002418 _____ () C:\Users\Public\Desktop\Benutzerhandbuch - Grundlagen EPSON SX430 Series.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000952 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk 2014-03-23 16:19 - 2014-03-23 16:19 - 00000000 ____D () C:\Program Files\EpsonNet 2014-03-23 16:19 - 2014-03-23 16:18 - 00000000 ____D () C:\Program Files (x86)\epson 2014-03-23 16:17 - 2014-03-23 16:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMHAE.DLL 2014-03-23 16:17 - 2014-03-23 16:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BHAE.DLL 2014-03-23 16:17 - 2014-03-23 16:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL 2014-03-23 16:10 - 2013-05-29 07:27 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-03-22 14:00 - 2014-01-23 19:22 - 00000000 ____D () C:\Users\Alessio\Documents\My Games 2014-03-21 18:43 - 2014-03-21 18:41 - 95670968 _____ () C:\Users\Alessio\Downloads\The dropper 2 Newton VS Darwin BY BIGRE.zip 2014-03-21 14:21 - 2014-03-21 14:21 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.technic 2014-03-21 14:20 - 2014-03-21 14:20 - 02346186 _____ () C:\Users\Alessio\Downloads\TechnicLauncher.exe 2014-03-20 13:26 - 2014-01-23 13:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-03-20 13:25 - 2014-01-23 13:12 - 90015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-03-20 13:25 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-03-18 20:01 - 2014-03-18 20:01 - 00001142 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk 2014-03-18 15:04 - 2014-03-18 15:04 - 32706681 _____ (Mozilla) C:\Users\Alessio\Desktop\firefox-30.0a1.en-US.win64-x86_64.installer(1).exe 2014-03-17 21:34 - 2013-06-18 16:13 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Adobe 2014-03-17 21:34 - 2013-05-31 14:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2014-03-17 19:19 - 2014-03-17 19:19 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Ambient Design 2014-03-17 19:18 - 2014-03-17 19:18 - 00001336 _____ () C:\Users\Public\Desktop\ArtRage 2 Starter Edition.lnk 2014-03-17 19:18 - 2014-03-17 19:18 - 00000000 ____D () C:\Program Files (x86)\Ambient Design 2014-03-17 19:17 - 2014-03-17 19:17 - 09948632 _____ (Ambient Design) C:\Users\Alessio\Downloads\install_artrage_2.6.0_starter.exe 2014-03-17 19:15 - 2014-03-17 19:15 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Summitsoft 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\WINDOWS\Logo Design Studio Trial 2014-03-17 19:14 - 2014-03-17 19:14 - 00000000 ____D () C:\Users\Alessio\Documents\My Logo Design Studio Projects 2014-03-17 19:13 - 2014-03-17 19:13 - 40347640 _____ (Summitsoft Corporation) C:\Users\Alessio\Downloads\LDS_Trial_setup3.5.2.exe 2014-03-17 19:12 - 2014-03-17 19:12 - 00001439 _____ () C:\Users\Public\Desktop\Free 3D Photo Maker.lnk 2014-03-17 19:12 - 2014-03-17 19:12 - 00001261 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2014-03-17 19:12 - 2013-10-30 17:10 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft 2014-03-17 19:12 - 2013-06-19 11:53 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\DVDVideoSoft 2014-03-17 19:11 - 2014-03-17 19:11 - 32841392 _____ (DVDVideoSoft Ltd. ) C:\Users\Alessio\Downloads\Free3DPhotoMaker-2.0.27.304.exe 2014-03-17 17:23 - 2014-03-17 17:23 - 19174206 _____ () C:\Users\Alessio\Downloads\ShineePlaysMC_1369258289.wmv 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\.mono 2014-03-17 16:40 - 2014-03-17 16:40 - 00000000 ____D () C:\ProgramData\.mono 2014-03-17 16:35 - 2014-03-17 16:30 - 09951744 _____ () C:\Users\Alessio\Desktop\Pokemon Trading Card Game Online.exe 2014-03-17 16:28 - 2014-03-17 16:28 - 09955888 _____ () C:\Users\Alessio\Desktop\Refresher.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 04084296 _____ (Gaijin Entertainment ) C:\Users\Alessio\Downloads\wt_launcher_1.0.1.333.exe 2014-03-17 14:56 - 2014-03-17 14:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\WarThunder 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SequoiaView 2014-03-15 13:20 - 2014-03-15 13:20 - 00000000 ____D () C:\Program Files\SequoiaView 2014-03-15 13:19 - 2014-03-15 13:19 - 00567047 _____ () C:\Users\Alessio\Downloads\Sequoia1.3Install.exe 2014-03-15 13:01 - 2014-03-15 13:01 - 00001046 _____ () C:\Users\Alessio\Desktop\Google Translator.lnk 2014-03-15 13:01 - 2014-03-15 13:01 - 00000000 ____D () C:\Program Files (x86)\Google-Translator 2014-03-15 13:00 - 2014-03-15 13:00 - 00664331 _____ (Daniel Schuhmann ) C:\Users\Alessio\Downloads\googletranslator25.exe 2014-03-14 21:14 - 2014-03-14 21:13 - 104982323 _____ () C:\Users\Alessio\Downloads\2WPinball.exe 2014-03-14 13:17 - 2014-03-14 13:17 - 06033270 _____ () C:\Users\Alessio\Downloads\huzuni.zip 2014-03-14 13:08 - 2014-03-14 13:08 - 00280832 _____ () C:\WINDOWS\Minidump\031414-21328-01.dmp 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender 2014-03-13 18:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-03-13 18:31 - 2014-03-13 18:30 - 00280832 _____ () C:\WINDOWS\Minidump\031314-32437-01.dmp 2014-03-13 16:58 - 2014-01-25 18:40 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-03-13 16:58 - 2013-06-16 14:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-12 13:56 - 2014-03-12 13:56 - 00009546 _____ () C:\Users\Alessio\Downloads\MCRB_1.6.4.zip 2014-03-11 13:54 - 2014-01-22 21:29 - 00001088 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2014-03-10 21:25 - 2014-03-10 21:25 - 00280832 _____ () C:\WINDOWS\Minidump\031014-20203-01.dmp 2014-03-10 19:36 - 2014-03-10 19:36 - 00280832 _____ () C:\WINDOWS\Minidump\031014-28203-01.dmp 2014-03-09 18:21 - 2014-03-09 18:21 - 00080320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldcore.dll 2014-03-09 18:20 - 2014-03-09 18:20 - 05359680 _____ (Dll-Files.com ) C:\Users\Alessio\Downloads\dffsetup-wldcore.exe 2014-03-09 18:20 - 2014-03-09 18:20 - 00001106 _____ () C:\Users\Public\Desktop\Dll-Files Fixer.lnk 2014-03-09 16:21 - 2014-03-09 16:21 - 00427537 _____ () C:\Users\Alessio\Downloads\Factions.jar 2014-03-09 16:20 - 2014-03-09 16:20 - 19972709 _____ () C:\Users\Alessio\Downloads\craftbukkit-1.7.2-R0.4-20140216.012104-3.jar 2014-03-09 16:16 - 2014-03-09 16:16 - 19972216 _____ () C:\Users\Alessio\Downloads\craftbukkit.jar 2014-03-08 16:06 - 2014-03-08 16:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\GameMaker-Studio 2014-03-08 16:00 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Local\GameMaker-Studio 2014-03-08 15:56 - 2014-03-08 15:56 - 00000000 ____D () C:\Users\Alessio\AppData\Local\Test 2014-03-08 15:56 - 2014-03-08 15:47 - 00000000 ____D () C:\Users\Alessio\Documents\GameMaker 2014-03-08 15:44 - 2013-10-11 16:50 - 00000000 ____D () C:\Users\Alessio\AppData\Local\YoYo_Games_Ltd 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\GameMaker-Studio 1.2 2014-03-08 15:31 - 2014-03-08 15:31 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.2 2014-03-07 18:47 - 2014-03-07 18:47 - 00000880 _____ () C:\Users\Public\Desktop\Nightly.lnk 2014-03-07 18:47 - 2014-03-07 18:46 - 32706681 _____ (Mozilla) C:\Users\Alessio\Downloads\firefox-30.0a1.en-US.win64-x86_64.installer.exe 2014-03-07 18:47 - 2014-03-07 18:46 - 29496405 _____ (Mozilla) C:\Users\Alessio\Downloads\Waterfox_27.0.2_Setup.exe 2014-03-06 15:56 - 2013-08-08 16:03 - 00000000 ____D () C:\Users\Alessio\.gimp-2.8 2014-03-06 14:54 - 2014-03-06 14:54 - 02121554 _____ () C:\Users\Alessio\Desktop\launcher^FTB_Launcher.exe 2014-03-06 14:53 - 2014-03-06 14:53 - 55175744 _____ () C:\Users\Alessio\Downloads\ModJam3_FinalMods.zip 2014-03-06 14:32 - 2014-03-06 14:32 - 02179728 _____ (Irfan Skiljan) C:\Users\Alessio\Downloads\iview437g_setup.exe 2014-03-06 14:32 - 2014-03-06 14:32 - 00001908 _____ () C:\Users\Alessio\Desktop\IrfanView Thumbnails.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00001020 _____ () C:\Users\Alessio\Desktop\IrfanView.lnk 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\IrfanView 2014-03-06 14:32 - 2014-03-06 14:32 - 00000000 ____D () C:\Program Files (x86)\IrfanView 2014-03-05 19:42 - 2014-03-05 19:42 - 00818889 _____ () C:\Users\Alessio\Downloads\OptiFine_1.7.4_HD_U_D1.jar 2014-03-05 19:34 - 2014-03-05 19:34 - 02671113 _____ () C:\Users\Alessio\Downloads\forge-1.7.2-10.12.0.1034-installer-win.exe 2014-03-05 19:31 - 2014-03-05 19:31 - 02518500 _____ () C:\Users\Alessio\Downloads\forge_1.7.2.zip 2014-03-05 17:35 - 2014-03-05 17:35 - 00001134 _____ () C:\Users\Alessio\Desktop\Minecraft Texturepack Editor.lnk 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Texturepack Editor 2014-03-05 17:35 - 2014-03-05 17:35 - 00000000 ____D () C:\Program Files (x86)\Minecraft Texturepack Editor 2014-03-05 10:26 - 2014-03-27 13:08 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-03-05 10:26 - 2014-03-27 13:08 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2014-03-05 10:26 - 2014-03-27 13:08 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-03-05 00:53 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2014-03-05 00:53 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2014-03-03 12:14 - 2014-03-03 12:13 - 00280832 _____ () C:\WINDOWS\Minidump\030314-29140-01.dmp 2014-03-01 18:07 - 2014-03-01 18:07 - 00000108 _____ () C:\Users\Alessio\Downloads\ADS_DISABLED.xml 2014-03-01 18:00 - 2014-03-01 18:00 - 00638568 _____ (Catalina Group Ltd.) C:\Users\Alessio\Downloads\CitrioSetup.exe 2014-03-01 18:00 - 2014-03-01 18:00 - 00003820 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001UA 2014-03-01 18:00 - 2014-03-01 18:00 - 00003440 _____ () C:\WINDOWS\System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-3775792459-901648600-1102063504-1001Core 2014-03-01 18:00 - 2014-03-01 18:00 - 00002497 _____ () C:\Users\Alessio\Desktop\Citrio.lnk 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrio 2014-03-01 18:00 - 2014-03-01 18:00 - 00000000 ____D () C:\Users\Alessio\AppData\Local\CatalinaGroup 2014-03-01 17:55 - 2014-03-01 17:55 - 07183483 _____ () C:\Users\Alessio\Downloads\fewfw.rar 2014-03-01 08:05 - 2014-03-12 13:56 - 23133696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2014-03-01 06:58 - 2014-03-12 13:56 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2014-03-01 06:30 - 2014-03-12 13:56 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2014-03-01 06:17 - 2014-03-12 13:56 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2014-03-01 05:54 - 2014-03-12 13:56 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2014-03-01 05:47 - 2014-03-12 13:56 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2014-03-01 05:42 - 2014-03-12 13:56 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2014-03-01 05:18 - 2014-03-12 13:56 - 13051904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2014-03-01 05:14 - 2014-03-12 13:56 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2014-03-01 05:10 - 2014-03-12 13:56 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2014-03-01 05:03 - 2014-03-12 13:56 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2014-03-01 04:57 - 2014-03-12 13:56 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2014-03-01 04:38 - 2014-03-12 13:56 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2014-03-01 04:32 - 2014-03-12 13:56 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2014-03-01 04:27 - 2014-03-12 13:56 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2014-03-01 04:25 - 2014-03-12 13:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2014-03-01 04:25 - 2014-03-12 13:56 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll Files to move or delete: ==================== C:\Users\Alessio\AppData\Roaming\Camdata.ini C:\Users\Alessio\AppData\Roaming\CamLayout.ini C:\Users\Alessio\AppData\Roaming\CamShapes.ini C:\Users\Alessio\AppData\Roaming\Network Meter_Usage.ini C:\Users\Alessio\IP_Log_Data.js C:\Users\Alessio\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Alessio\AppData\Local\Temp\avgnt.exe C:\Users\Alessio\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys [2014-03-12 13:56] - [2014-01-31 18:15] - 0311640 ___AC (Microsoft Corporation) C85C075DE5B6D0FE116043054DE8EE02 LastRegBack: 2014-03-28 20:31 ==================== End Of Log ============================ --- --- --- Malwarebytes findet den Virus nicht mehr. Alles ist gut! |
|
01.04.2014, 12:30
| #11 |
| /// the machine /// TB-Ausbilder | Pub.Optional.Delta.A nicht entfernbar Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.04.2014, 11:13
| #12 |
| | Pub.Optional.Delta.A nicht entfernbar Vielen Dank für deine Hilfe! |
|
03.04.2014, 08:24
| #13 |
| /// the machine /// TB-Ausbilder | Pub.Optional.Delta.A nicht entfernbar Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Pub.Optional.Delta.A nicht entfernbar |
| .com, antivirus, avira, branding, converter, defender, dvdvideosoft ltd., excel, firefox, flash player, help, helper, lightning, object, onedrive, programm, pup.optional.conduit.a, pup.optional.delta.a, pup.optional.opencandy, scan, schutz, server, software, system, texturepack, virus, windows |
Linear-Darstellung
