PUP.optional eingefangen

de.nay · 26.04.2014, 14:18

Hey habe mir durch freeware irgendwelche PUP.optionals eingefangen. Bisher gibts keine beeinträchtigungen, avast hat sofort gemeckert quarantäne verschoebn und dann peer Bootscan nochmal alles breiningt. Malware findet jedoch nochn ganzen haufen ebenfalls in quarantäne verschoben (logfiles unten)

würde gerne mein system wieder komplett bereinigen brauche da eure hilfe.
grüße

de.nay

Code:

ATTFilter

<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/04/26 14:53:14 +0200</date>
<log>mbam-log-2014-04-26 (14-48-07).xml</log>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.1.1004</version>
<rules-database>v2014.04.26.01</rules-database>
<swissarmy-database>v2014.03.27.01</swissarmy-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
<system>
<osversion>Windows 7 Service Pack 1</osversion>
<arch>x64</arch>
<username>de.nay</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>240814</objects>
<time>305</time>
<processes>2</processes>
<modules>1</modules>
<keys>28</keys>
<values>6</values>
<datas>10</datas>
<folders>71</folders>
<files>147</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>disabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<shuriken>enabled</shuriken>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<process><path>C:\ProgramData\IePluginService\PluginService.exe</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><pid>1556</pid><hash>767340eef685f442ae952b277f82c33d</hash></process>
<process><path>C:\ProgramData\WPM\wprotectmanager.exe</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><pid>1604</pid><hash>49a04be399e28fa7672bec70bc45df21</hash></process>
<module><path>C:\Program Files (x86)\SupTab\DpInterface32.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>delete-on-reboot</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></module>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginService</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>767340eef685f442ae952b277f82c33d</hash></key>
<key><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Wpm</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>49a04be399e28fa7672bec70bc45df21</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WPM</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>49a04be399e28fa7672bec70bc45df21</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6CA2A4DE-483E-456B-8634-6445460D7097}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\TYPELIB\{C321541F-B22D-4593-AC1A-9634812A4E40}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\INTERFACE\{A8018C54-B702-4D52-9ACC-8CA78911E633}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\CLASSES\INTERFACE\{C6A846C5-D67F-48B4-8552-C22354E56966}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A8018C54-B702-4D52-9ACC-8CA78911E633}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C6A846C5-D67F-48B4-8552-C22354E56966}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C321541F-B22D-4593-AC1A-9634812A4E40}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{6CA2A4DE-483E-456B-8634-6445460D7097}</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FilesFrog Update Checker</path><vendor>PUP.Optional.Somoto</vendor><action>success</action><hash>4c9dda546318e254bd317baba06057a9</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Flowsurf</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></key>
<key><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>49a0cf5f49328fa71811683fe91a38c8</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\qone8Software</path><vendor>PUP.Optional.Qone8.A</vendor><action>success</action><hash>2cbd74ba6c0ffd39ca0a188dac57b34d</hash></key>
<key><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>757444ea8af188ae1613a9fe63a04fb1</hash></key>
<key><path>HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>f7f237f7710ab08624308f279e65e41c</hash></key>
<key><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>21c86dc15d1e3006f26272447b88ca36</hash></key>
<key><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}</path><vendor>PUP.Optional.Qone8</vendor><action>success</action><hash>41a8b6789be006302bfde9be1ce726da</hash></key>
<key><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOMOTO\SDP</path><vendor>PUP.Optional.Somoto.A</vendor><action>success</action><hash>45a46ac4f685c76f8292fca438cb946c</hash></key>
<value><path>HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS</path><valuename>quick_start@gmail.com</valuename><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><valuedata>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com</valuedata><hash>36b33bf31c5ff73f7d6b5127659d966a</hash></value>
<value><path>HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS</path><valuename>jid1-tofUlNEIFlkUIA@jetpack</valuename><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><valuedata>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack</valuedata><hash>a4451717e49771c5a4a18fe738ca8779</hash></value>
<value><path>HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WPM</path><valuename>ImagePath</valuename><vendor>PUP.Optional.WpManager.A</vendor><action>success</action><valuedata>C:\ProgramData\WPM\wprotectmanager.exe -service</valuedata><hash>1dcc111d3d3e96a0bd4a426aa55e6c94</hash></value>
<value><path>HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF</path><valuename>chrid</valuename><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><valuedata>oglkiljdmflopemijdadoiepkhcaodjn</valuedata><hash>f7f237f7710ab08624308f279e65e41c</hash></value>
<value><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF</path><valuename>chrid</valuename><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><valuedata>oglkiljdmflopemijdadoiepkhcaodjn</valuedata><hash>21c86dc15d1e3006f26272447b88ca36</hash></value>
<value><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOMOTO\SDP</path><valuename>affid</valuename><vendor>PUP.Optional.Somoto.A</vendor><action>success</action><valuedata>lionskin</valuedata><hash>45a46ac4f685c76f8292fca438cb946c</hash></value>
<data><path>HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND</path><valuename></valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>C:\Program Files\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>C:\Program Files\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>iexplore.exe</gooddata><hash>17d20e202e4ddd59215aaa86ad57d927</hash></data>
<data><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Start Page</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>4c9df23cfb8086b03ca3fc2aea1add23</hash></data>
<data><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Default_Page_URL</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>529705297a01e452e6fbcc5a05ff639d</hash></data>
<data><path>HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>ecfd6bc39cdf3afc5329d7597292eb15</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND</path><valuename></valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>C:\Program Files\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>C:\Program Files\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>iexplore.exe</gooddata><hash>f5f4f5392a51092d92e997993bc92ad6</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Start Page</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>eefb979795e600363aa5ba6c5da7d32d</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Default_Page_URL</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>15d4949a4b302b0bfde4170f9074cd33</hash></data>
<data><path>HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES</path><valuename>DefaultScope</valuename><vendor>PUP.Optional.Qone8</vendor><action>replaced</action><valuedata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</valuedata><baddata>{33BB0A4E-99AF-4226-BDF6-49120163DE86}</baddata><gooddata>{0633EE93-D776-472f-A0FF-E1416B8B2E3A}</gooddata><hash>fbee8ca292e956e096e6ba7623e1a25e</hash></data>
<data><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Start Page</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>e20773bb5427171f449c7da901031ae6</hash></data>
<data><path>HKU\S-1-5-21-1546793034-3183003339-3227612086-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN</path><valuename>Default_Page_URL</valuename><vendor>Hijack.StartPage</vendor><action>replaced</action><valuedata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</valuedata><baddata>hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585</baddata><gooddata>hxxp://www.google.com</gooddata><hash>a3464fdf7506b77f22c07caaee169f61</hash></data>
<folder><path>C:\Program Files (x86)\SupTab</path><vendor>PUP.Optional.SupTab.A</vendor><action>delete-on-reboot</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\img</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\img\weather</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\en-US</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\es-419</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\es-ES</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\fr-BE</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\fr-CA</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\fr-CH</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\fr-FR</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\fr-LU</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\it-CH</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\it-IT</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\pl</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\pt</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\pt-BR</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\ru</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\ru-MO</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\tr-TR</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\vi-VI</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\zh-CN</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\SupTab\web\_locales\zh-TW</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\defaults</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\defaults\preferences</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\locale</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\addon-sdk</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\addon-sdk\lib</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\flowsurf</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\flowsurf\data</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\flowsurf\lib</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Local\FilesFrog Update Checker</path><vendor>PUP.Optional.FilesFrog.A</vendor><action>success</action><hash>8e5bc9654536cf67c97a1a49b1519868</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker</path><vendor>PUP.Optional.FilesFrog.A</vendor><action>success</action><hash>37b2b27c96e57bbb7aca144ff40e0cf4</hash></folder>
<folder><path>C:\ProgramData\IePluginService</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>9c4d2fffcab1df577d3e323369996d93</hash></folder>
<folder><path>C:\ProgramData\IePluginService\update</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>9c4d2fffcab1df577d3e323369996d93</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\tools</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\en</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\en-US</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\es</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\es-419</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-BE</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-CA</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-CH</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-LU</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\it</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\it-CH</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\pl</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\pt-BR</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\ru</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\ru-MO</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\tr</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\vi</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\zh-CN</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\zh-TW</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\weather</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\defaults</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\defaults\preferences</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<folder><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></folder>
<file><path>C:\ProgramData\IePluginService\PluginService.exe</path><vendor>PUP.Optional.IePluginService.A</vendor><action>delete-on-reboot</action><hash>767340eef685f442ae952b277f82c33d</hash></file>
<file><path>C:\ProgramData\WPM\wprotectmanager.exe</path><vendor>PUP.Optional.WpManager</vendor><action>delete-on-reboot</action><hash>49a04be399e28fa7672bec70bc45df21</hash></file>
<file><path>C:\Program Files (x86)\SupTab\SupTab.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>45a4f03e552671c548c1d14a936ff808</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\flowsurf.dll</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>b93067c7dd9e082ec5cd70a909f928d8</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\SupTab\SupTab.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>ce1bed41aecdd165b19a7fb67c841de3</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\Temp\smt_qone8_new.exe</path><vendor>PUP.Optional.SkyTech.A</vendor><action>success</action><hash>8d5c7eb025568aacdf441141d72a36ca</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\Temp\flowsurf_3786.exe</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>0fda40eeb1cab87e63497c9a1ee42ed2</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\Temp\fullpackage_temp1398512049\alilog.dll</path><vendor>PUP.Optional.SkyTech.A</vendor><action>success</action><hash>6a7fce60d7a400367a992012a65af60a</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\Temp\fullpackage_temp1398512049\tmp\SupTab.exe</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>feeba38bd8a3003660e3fa587d8439c7</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\Temp\fullpackage_temp1398512049\tmp\wpm.exe</path><vendor>PUP.Optional.WpManager</vendor><action>success</action><hash>2abf71bd255615214d45025ad1306c94</hash></file>
<file><path>C:\Users\de.nay\AppData\Local\FilesFrog Update Checker\uninstall.exe</path><vendor>PUP.Optional.Somoto</vendor><action>success</action><hash>4c9dda546318e254bd317baba06057a9</hash></file>
<file><path>C:\Program Files (x86)\SupTab\install.data</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\DpInterface32.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>delete-on-reboot</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\DpInterface64.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\DpInterfacef32.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\ient.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\RSHP.exe</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\SearchProtect32.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\SearchProtect64.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\SpAPPSv32.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\SpAPPSv64.dll</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\uninstall.exe</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\WebDataJs</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\data.html</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\indexIE.html</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\indexIE8.html</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\main.css</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\ver.txt</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\arrow.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\default_add_logo.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\default_add_logo_hover.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\default_logo.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\googlelogo.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\googlelogo2.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\google_trends.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\icon128.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\icon16.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\icon48.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\loading.gif</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\logo32.ico</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\img\weather\0.png</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\common.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\ga.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\ie8.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\js.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\library.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\js\xagainit.js</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json</path><vendor>PUP.Optional.SupTab.A</vendor><action>success</action><hash>dc0d4ee0d2a93afc27c36021b94952ae</hash></file>
<file><path>C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\qone8.xml</path><vendor>PUP.Optional.Qone8.A</vendor><action>success</action><hash>00e90529f18a47ef6a69fda821e219e7</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\install.ico</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\atl110.dll</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\fsupd.exe</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\msvcr110.dll</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\uninstall.exe</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\bootstrap.js</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\harness-options.json</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\icon.png</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\icon64.png</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\install.rdf</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\locales.json</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\defaults\preferences\prefs.js</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack\resources\flowsurf\lib\main.js</path><vendor>PUP.Optional.FlowSurf.A</vendor><action>success</action><hash>985186a837440f275bf6694d55ae7789</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Check for Updates.lnk</path><vendor>PUP.Optional.FilesFrog.A</vendor><action>success</action><hash>37b2b27c96e57bbb7aca144ff40e0cf4</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Uninstall.lnk</path><vendor>PUP.Optional.FilesFrog.A</vendor><action>success</action><hash>37b2b27c96e57bbb7aca144ff40e0cf4</hash></file>
<file><path>C:\ProgramData\IePluginService\update\conf</path><vendor>PUP.Optional.IePluginService.A</vendor><action>success</action><hash>9c4d2fffcab1df577d3e323369996d93</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome.manifest</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\install.rdf</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\index.html</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\quick_start.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\quick_start.xul</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\speed_dial.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\tools\about_blank_hook.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\tools\misc.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\tools\popup_image_helper.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\include\tools\urlrequestor.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\common.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\doT.min.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\ga.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\jquery-2.1.0.min.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\jquery.autocomplete.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\js.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\content\js\xagainit.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\en\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\en-US\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\es\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\es-419\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-BE\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-CA\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-CH\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\fr-LU\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\it\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\it-CH\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\pl\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\pt-BR\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\ru\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\ru-MO\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\tr\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\vi\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\zh-CN\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\locale\zh-TW\locale.properties</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\arrow.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\default_add_logo.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\default_add_logo_hover.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\default_logo.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\googlelogo.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\googlelogo2.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\google_trends.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\icon.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\loading.gif</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\logo.ico</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\logo.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\logo32.ico</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\style.css</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\chrome\skin\weather\0.png</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\defaults\preferences\fvd.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\addonmanager.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\aes.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\config.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\dialogs.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\last_tab.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\misc.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\properties.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\remoterequest.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\restoreprefs.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\extensions\quick_start@gmail.com\modules\settings.js</path><vendor>PUP.Optional.QuickStart.A</vendor><action>success</action><hash>92571717accfbf778d01d792eb179e62</hash></file>
<file><path>C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\prefs.js</path><vendor>PUP.Optional.Qone8.A</vendor><action>replaced</action><baddata>user_pref(&quot;browser.startup.homepage&quot;, &quot;hxxp://start.qone8.com/?type=hp&amp;ts=1398512059&amp;from=smt&amp;uid=WDCXWD1003FZEX-00MK2A0_WD-WCC3F296858568585&quot;);</baddata><gooddata></gooddata><hash>db0ed65826551d1956b5e973b1538b75</hash></file>
</items>
</mbam-log>

Code:

ATTFilter

CmdLine - quick
aswBoot.exe /A:"*" /L:"1031" /heur:80 /RA:ask /pup /archives /IA:0 /KBD:2 /wow /dir:"C:\Program Files\AVAST Software\Avast"
CmdLine end
SafeBoot: 0
CreateKbThread
new CKbBuffer
CKbBuffer::Init
CKbBuffer::Init end
NtCreateEvent(g_hStopEvent)
dep_osBeginThread - KbThread
CreateKbThread end
NtInitializeRegistry
KbThread start
ReadRegistry
DATA=C:\ProgramData\AVAST Software\Avast
PROG=C:\Program Files\AVAST Software\Avast
BUILD=2018
Windows 7 Professional N Service Pack 1
SystemRoot=C:\Windows
TEMP=C:\Windows\TEMP
TMP=C:\Windows\TEMP
ReadRegistry end
CreateTemp
CreateTemp end
aswcmnbDllMain
cmnbInit
aswEnginDllMain(DLL_PROCESS_ATTACH)
InitLog
InitLog end
CmdLine - full
aswBoot.exe /A:"*" /L:"1031" /heur:80 /RA:ask /pup /archives /IA:0 /KBD:2 /wow /dir:"C:\Program Files\AVAST Software\Avast"
CmdLine end
Program folder: C:\Program Files\AVAST Software\Avast
Engine folder: C:\Program Files\AVAST Software\Avast\defs\14042600
Base addr: 76fc0000
TimeStamp: 5356976e
Unschedule
61,00,75,00,74,00,6F,00,63,00,68,00,65,00,63,00,
6B,00,20,00,61,00,75,00,74,00,6F,00,63,00,68,00,
6B,00,20,00,2A,00,00,00,61,00,73,00,77,00,42,00,
6F,00,6F,00,74,00,2E,00,65,00,78,00,65,00,20,00,
2F,00,41,00,3A,00,22,00,2A,00,22,00,20,00,2F,00,
4C,00,3A,00,22,00,31,00,30,00,33,00,31,00,22,00,
20,00,2F,00,68,00,65,00,75,00,72,00,3A,00,38,00,
30,00,20,00,2F,00,52,00,41,00,3A,00,61,00,73,00,
6B,00,20,00,2F,00,70,00,75,00,70,00,20,00,2F,00,
61,00,72,00,63,00,68,00,69,00,76,00,65,00,73,00,
20,00,2F,00,49,00,41,00,3A,00,30,00,20,00,2F,00,
4B,00,42,00,44,00,3A,00,32,00,20,00,2F,00,77,00,
6F,00,77,00,20,00,2F,00,64,00,69,00,72,00,3A,00,
22,00,43,00,3A,00,5C,00,50,00,72,00,6F,00,67,00,
72,00,61,00,6D,00,20,00,46,00,69,00,6C,00,65,00,
73,00,5C,00,41,00,56,00,41,00,53,00,54,00,20,00,
53,00,6F,00,66,00,74,00,77,00,61,00,72,00,65,00,
5C,00,41,00,76,00,61,00,73,00,74,00,22,00,00,00,
00,00,
Unschedule end
LoadResources
LoadResources end
InitReport
InitReport end
New global exclusions: 
NtSetEvent(g_hInitEvent) - 1
CPU: Phys(3), Log(6), Aff(6), Feat(00002fff)
FreeMemory: 7908802560
avworkInitialize
InitKeyboard
g_dwKbdNum: 2
\Device\KeyboardClass1 failed: 0xC0000034
\Device\KeyboardClass1 failed: 0xC0000034
FreeMemory: 7867207680
\Device\KeyboardClass1 failed: 0xC0000034
s_dwKbdClassCnt: 2
InitKeyboard end
NtSetEvent(g_hInitEvent) - 2
GetKey
CKbBuffer::Wait
CKbBuffer::Get
CKbBuffer::Get end
CKbBuffer::Wait end
ProcessArea
avfilesScanAdd *MBR0
avfilesScanAdd *BOOTC:
Loading raw access support
avfilesScanAdd *RAW:C:\  [Fs: 03e700ff, NTFS; Dev: 07, 00000020]
avfilesScanAdd *BOOTD:
avfilesScanAdd *RAW:D:\  [Fs: 03e700ff, NTFS; Dev: 07, 00000020]
avfilesScanAdd *BOOTE:
avfilesScanAdd *RAW:E:\  [Fs: 03e700ff, NTFS; Dev: 07, 00000020]
avfilesScanAdd *BOOTG:
avfilesScanAdd *RAW:G:\  [Fs: 00000006, FAT32; Dev: 07, 00000020]
avfilesScanAdd *BOOTH:
avfilesScanAdd *RAW:H:\  [Fs: 03e700ff, NTFS; Dev: 07, 00000020]
avfilesScanAdd *BOOTVolume{75732481-cc8a-11e3-b5b3-806e6f6e6963}
avfilesScanAdd *RAW:Volume{75732481-cc8a-11e3-b5b3-806e6f6e6963}\  [Fs: 03e700ff, NTFS; Dev: 07, 00000020]
avfilesScanRealMulti begin
CKbBuffer::Get
Key: 1, 3, 0, 0, 0
GetKey end (2/32)
CKbBuffer::Put
CKbBuffer::Put end
GetKey
CKbBuffer::Get end
WaitForKeys (11): 2
Key: 1, 3, 1, 0, 0
Attaching OS: 0
GetErrorText
avfilesScanRealMulti finished
Runtime: 2907938ms
Unloading attached OS
avworkClose
Unloading raw access support
Loading raw access support
Checking deleted files:
MarkFileRemoval
MarkFileRemoval end
TerminateKbThread
GetKey end (?/00)
CloseKeyboard
CloseKeyboard end
KbThread stop
CKbBuffer::~CKbBuffer
CKbBuffer::~CKbBuffer end
aswEnginDllMain(DLL_PROCESS_DETACH)
cmnbFree
FreeResources
CloseReport
CloseLog

====================[/CODE]

kann FRST nicht posten da bereits ein einzelner logfile zu lang zu sein scheint ?

also nur der additional
FRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-04-2014 02
Ran by de.nay at 2014-04-26 15:12:16
Running from C:\Users\de.nay\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Steady Video Plug-In  (Version: 2.06.0000 - AMD) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASRock eXtreme Tuner v0.1.375 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version:  - )
ASRock InstantBoot v1.29 (HKLM-x32\...\ASRock InstantBoot_is1) (Version:  - )
ASRock XFast RAM v2.0.28 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{EF7EA37B-C009-4D53-AE2A-FF7C6AEC35CE}) (Version: 4.26.386 - Futuremark)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
XFast LAN v9.05 (HKLM\...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.38 - ASRock Inc.)

==================== Restore Points  =========================

25-04-2014 16:46:05 Removed 3DMark06
25-04-2014 16:46:35 Removed Futuremark SystemInfo
25-04-2014 16:47:08 3DMark 11
25-04-2014 16:47:25 DirectX wurde installiert
25-04-2014 16:48:52 Installed Futuremark SystemInfo
25-04-2014 19:19:37 Removed Microsoft Silverlight
26-04-2014 01:49:58 Windows Update
26-04-2014 10:56:24 DirectX wurde installiert

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {2D94114F-2327-4ABD-9AF2-70A8B727FCCC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-25] (AVAST Software)
Task: {38EFA981-CD16-4A9A-AA25-388480E75CE1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-25] (Google Inc.)
Task: {6C7A3E70-E7E6-4610-9917-6A8F159CBF96} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-25] (Google Inc.)
Task: {76752CBE-5808-4F00-BB07-1379BC25BD4E} - System32\Tasks\fsupdate => C:\PROGRA~2\Flowsurf\fsupd.exe
Task: {FA312A4B-BDA3-4ADA-89E6-619E0F35D772} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-25] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-26 12:39 - 2014-04-26 12:39 - 02252800 _____ () C:\Program Files\AVAST Software\Avast\defs\14042600\algo.dll
2014-04-25 17:47 - 2014-04-25 17:47 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-04-25 17:56 - 2014-03-15 10:40 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/26/2014 03:02:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 02:25:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:55:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:45:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:42:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:40:16 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 09:24:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 07:21:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 06:49:41 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: 3DMark11.exe, Version: 1.0.132.0, Zeitstempel: 0x52f0a47d
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c78c
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000000000000a49d
ID des fehlerhaften Prozesses: 0x1250
Startzeit der fehlerhaften Anwendung: 0x3DMark11.exe0
Pfad der fehlerhaften Anwendung: 3DMark11.exe1
Pfad des fehlerhaften Moduls: 3DMark11.exe2
Berichtskennung: 3DMark11.exe3

Error: (04/25/2014 06:49:40 PM) (Source: .NET Runtime) (User: )
Description: Application: 3DMark11.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
   at System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
   at System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
   at System.Delegate.DynamicInvokeImpl(System.Object[])
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at Futuremark.BenchmarkUtility.SystemInfo3.WorkerThreadProc()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()


System errors:
=============
Error: (04/26/2014 00:48:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80242016 fehlgeschlagen: Update für die Kompatibilitätsansichtsliste für Internet Explorer 8 für Windows 7 für x64-basierte Systeme (KB2598845)

Error: (04/26/2014 00:44:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet: 
%%16405

Error: (04/26/2014 00:40:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "avast! Antivirus" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/26/2014 04:58:03 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 4.5 unter Windows 7, Vista, Windows Server 2008 und Windows Server 2008 R2 für x64 (KB2861208)

Error: (04/25/2014 09:22:03 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (04/25/2014 07:20:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "cpuz137" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/25/2014 06:24:14 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3


Microsoft Office Sessions:
=========================
Error: (04/26/2014 03:02:14 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 02:25:33 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:55:20 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:45:31 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:42:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 00:40:16 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 09:24:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 07:21:58 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 06:49:41 PM) (Source: Application Error)(User: )
Description: 3DMark11.exe1.0.132.052f0a47dKERNELBASE.dll6.1.7601.175144ce7c78ce0434352000000000000a49d125001cf60a62bc7f067C:\Program Files\Futuremark\3DMark 11\bin\x64\3DMark11.exeC:\Windows\system32\KERNELBASE.dll98226249-cc99-11e3-92ab-bc5ff4fb592d

Error: (04/25/2014 06:49:40 PM) (Source: .NET Runtime)(User: )
Description: Application: 3DMark11.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Reflection.TargetInvocationException
Stack:
   at System.RuntimeMethodHandle.InvokeMethod(System.Object, System.Object[], System.Signature, Boolean)
   at System.Reflection.RuntimeMethodInfo.UnsafeInvokeInternal(System.Object, System.Object[], System.Object[])
   at System.Delegate.DynamicInvokeImpl(System.Object[])
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at Futuremark.BenchmarkUtility.SystemInfo3.WorkerThreadProc()
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()


==================== Memory info =========================== 

Percentage of memory in use: 24%
Total physical RAM: 8149.71 MB
Available physical RAM: 6171.54 MB
Total Pagefile: 20370.89 MB
Available Pagefile: 18074.13 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:99.63 GB) (Free:57.83 GB) NTFS
Drive d: () (Fixed) (Total:250.12 GB) (Free:250.02 GB) NTFS
Drive e: () (Fixed) (Total:581.66 GB) (Free:530.95 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 2AB9485E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=250 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=582 GB) - (Type=07 NTFS)

==================== End Of Log ========

--- --- ---

schrauber · 26.04.2014, 14:48

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

de.nay · 26.04.2014, 15:24

Code:

ATTFilter

# AdwCleaner v3.203 - Bericht erstellt am 26/04/2014 um 16:04:41
# Aktualisiert 26/04/2014 von Xplode
# Betriebssystem : Windows 7 Professional N Service Pack 1 (64 bits)
# Benutzername : de.nay - DENAY-PC
# Gestartet von : C:\Users\de.nay\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\Program Files (x86)\Optimizer Pro
Ordner Gelöscht : C:\Users\de.nay\AppData\Local\Temp\OCS
Ordner Gelöscht : C:\Users\de.nay\AppData\Roaming\qone8
Ordner Gelöscht : C:\Users\de.nay\AppData\Roaming\SupTab
Datei Gelöscht : C:\END

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Somoto
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gelöscht : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Schlüssel Gelöscht : HKLM\Software\supTab
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\Wpm

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v28.0 (de)

[ Datei : C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2727 octets] - [26/04/2014 16:03:41]
AdwCleaner[S0].txt - [2099 octets] - [26/04/2014 16:04:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2159 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional N x64
Ran by de.nay on 26.04.2014 at 16:08:01,00
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\de.nay\AppData\Roaming\mozilla\firefox\profiles\u6am68b3.default\minidumps [5 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.04.2014 at 16:16:06,02
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-04-2014 02
Ran by de.nay (administrator) on DENAY-PC on 26-04-2014 16:20:55
Running from C:\Users\de.nay\Desktop
Windows 7 Professional N Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\de.nay\Desktop\FRST64(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor)
HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [2009952 2013-05-31] (cFos Software GmbH)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [6311104 2014-04-25] (FNet Co., Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1546793034-3183003339-3227612086-1000\...\Run: [ASRockXTU] => [X]
HKU\S-1-5-21-1546793034-3183003339-3227612086-1000\...\Run: [zASRockInstantBoot] => [X]

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\de.nay\AppData\Roaming\Mozilla\Firefox\Profiles\u6am68b3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-25]

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-25] (AVAST Software)
R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [652640 2013-05-31] (cFos Software GmbH)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2014-02-28] (Futuremark)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [34640 2012-08-09] (ASRock Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-25] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-25] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-04-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-25] ()
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-04-26] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-04-25] (FNet Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-26] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-26 16:20 - 2014-04-26 16:20 - 00002247 _____ () C:\Users\de.nay\Desktop\AdwCleaner[S0].txt
2014-04-26 16:16 - 2014-04-26 16:16 - 00000760 _____ () C:\Users\de.nay\Desktop\JRT.txt
2014-04-26 16:08 - 2014-04-26 16:08 - 00000000 ____D () C:\Windows\ERUNT
2014-04-26 16:03 - 2014-04-26 16:04 - 00000000 ____D () C:\AdwCleaner
2014-04-26 16:02 - 2014-04-26 16:02 - 01330861 _____ () C:\Users\de.nay\Desktop\adwcleaner.exe
2014-04-26 16:02 - 2014-04-26 16:02 - 01016261 _____ (Thisisu) C:\Users\de.nay\Desktop\JRT.exe
2014-04-26 15:21 - 2014-04-26 15:21 - 00015700 _____ () C:\Users\de.nay\Desktop\FRST.7z
2014-04-26 15:12 - 2014-04-26 15:12 - 00024400 _____ () C:\Users\de.nay\Desktop\Addition.txt
2014-04-26 15:11 - 2014-04-26 16:20 - 00009885 _____ () C:\Users\de.nay\Desktop\FRST.txt
2014-04-26 15:11 - 2014-04-26 16:20 - 00000000 ____D () C:\FRST
2014-04-26 15:11 - 2014-04-26 15:11 - 02061824 _____ (Farbar) C:\Users\de.nay\Desktop\FRST64(1).exe
2014-04-26 14:59 - 2014-04-26 14:59 - 02061824 _____ (Farbar) C:\Users\de.nay\Downloads\FRST64.exe
2014-04-26 14:47 - 2014-04-26 16:06 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-26 14:47 - 2014-04-26 14:47 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\de.nay\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-26 14:47 - 2014-04-26 14:47 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-26 14:47 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-26 14:47 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-26 14:47 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-26 13:34 - 2014-04-26 13:34 - 00003086 _____ () C:\Windows\System32\Tasks\fsupdate
2014-04-26 13:28 - 2014-04-26 13:28 - 00000192 _____ () C:\INSTALL.LOG
2014-04-26 13:27 - 2014-04-26 13:27 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\AlienGUIs Theme Manager - CHIP-Downloader.exe
2014-04-26 12:56 - 2014-04-26 13:23 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Winamp
2014-04-26 12:56 - 2014-04-26 12:57 - 00000000 ____D () C:\Program Files (x86)\Winamp
2014-04-26 12:56 - 2014-04-26 12:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2014-04-26 12:56 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-04-26 12:55 - 2014-04-26 12:55 - 12855384 _____ (Nullsoft, Inc.) C:\Users\de.nay\Downloads\winamp5666_full_de-de_b3516.exe
2014-04-26 12:54 - 2014-04-26 12:54 - 00069344 _____ (FNet Co., Ltd.) C:\Windows\system32\TurboShell_105.dll
2014-04-26 12:54 - 2014-04-26 12:54 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-04-26 04:41 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-04-26 04:35 - 2014-04-26 04:35 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-26 04:35 - 2014-04-26 04:35 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-26 04:35 - 2014-04-26 04:35 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-26 04:35 - 2014-04-26 04:35 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-26 04:35 - 2014-04-26 04:35 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-04-26 04:35 - 2014-04-26 04:35 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-26 04:35 - 2014-04-26 04:35 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-26 04:35 - 2014-04-26 04:35 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-04-26 04:35 - 2014-04-26 04:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-26 04:35 - 2014-04-26 04:35 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-04-26 04:35 - 2014-04-26 04:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-04-26 04:29 - 2014-04-26 04:41 - 00016242 _____ () C:\Windows\IE11_main.log
2014-04-26 04:10 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-04-26 04:01 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-04-26 04:01 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-04-26 04:01 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-04-26 04:01 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-04-26 04:01 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-04-26 04:01 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-04-26 04:01 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-04-26 04:01 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-04-26 03:57 - 2014-04-26 03:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-04-26 03:57 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-04-26 03:57 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-04-26 03:57 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-04-26 03:56 - 2014-04-26 03:56 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-04-26 03:56 - 2014-04-26 03:56 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-04-26 03:40 - 2014-04-26 03:40 - 00007597 _____ () C:\Users\de.nay\AppData\Local\Resmon.ResmonCfg
2014-04-26 03:35 - 2014-04-26 03:46 - 00000486 _____ () C:\Users\de.nay\Downloads\results-[4-26-2014]-[33545].log
2014-04-26 03:30 - 2014-04-26 03:33 - 00000658 _____ () C:\Users\de.nay\Downloads\results-[4-26-2014]-[33010].log
2014-04-26 03:29 - 2014-04-26 03:29 - 01093979 _____ () C:\Users\de.nay\Downloads\IntelBurnTest.zip
2014-04-26 03:29 - 2014-04-26 03:29 - 00000000 ____D () C:\Users\de.nay\Downloads\LinData
2014-04-26 03:29 - 2009-12-21 15:15 - 00081408 _____ (Ultimate Filez) C:\Users\de.nay\Downloads\IntelBurnTestV2.exe
2014-04-26 03:29 - 2009-12-21 15:10 - 00005809 _____ () C:\Users\de.nay\Downloads\Readme-IntelBurnTest.txt
2014-04-26 03:23 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-04-26 03:23 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-04-26 03:23 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-04-26 03:23 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-04-26 03:23 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-04-26 03:23 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-04-26 03:23 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-04-26 03:23 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-04-26 03:23 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-04-26 03:23 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-26 03:23 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-04-26 03:23 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-26 03:23 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-04-26 03:23 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-04-26 03:23 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-04-26 03:23 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-04-26 03:23 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-04-26 03:23 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-04-26 03:23 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-04-26 03:23 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-04-26 03:23 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-04-26 03:23 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-04-26 03:23 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-04-26 03:23 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-04-26 03:23 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-04-26 03:23 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-04-26 03:23 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-04-26 03:23 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-04-26 03:23 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-04-26 03:23 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-04-26 03:23 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-04-26 03:23 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-04-26 03:23 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-04-26 03:23 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-04-26 03:23 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-04-26 03:23 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-04-26 03:23 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-04-26 03:23 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-04-26 03:23 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-04-26 03:23 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-04-26 03:23 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-04-26 03:23 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-04-26 03:23 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-04-26 03:23 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-04-26 03:23 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-04-26 03:23 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-04-26 03:23 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-04-26 03:23 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-04-26 03:23 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-04-26 03:23 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-04-26 03:23 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-04-26 03:23 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-04-26 03:23 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-04-26 03:23 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-04-26 03:23 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-04-26 03:23 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-04-26 03:23 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-04-26 03:23 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-04-26 03:23 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-04-26 03:23 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-04-26 03:23 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-04-26 03:22 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-04-26 03:22 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-04-26 03:22 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-04-26 03:22 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-04-26 03:22 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-04-26 03:22 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-04-26 03:22 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-04-26 03:22 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-04-26 03:22 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-04-26 03:22 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-04-26 03:22 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-04-26 03:22 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-04-26 03:22 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-04-26 03:22 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-04-26 03:22 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-04-26 03:22 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-04-26 03:22 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-04-26 03:22 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-04-26 03:22 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-04-26 03:21 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-04-26 03:21 - 2013-12-06 04:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-04-26 03:21 - 2013-12-06 04:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-04-26 03:21 - 2013-12-06 04:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-04-26 03:21 - 2013-12-06 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-04-26 03:21 - 2013-11-12 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-04-26 03:21 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-04-26 03:21 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-04-26 03:21 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-04-26 03:21 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-04-26 03:21 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-04-26 03:21 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-04-26 03:21 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-04-26 03:21 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-04-26 03:21 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-04-26 03:21 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-04-26 03:21 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-04-26 03:21 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-04-26 03:21 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-04-26 03:21 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-04-26 03:21 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-04-26 03:21 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-04-26 03:21 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-04-26 03:21 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-04-26 03:21 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-04-26 03:21 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-04-26 03:21 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-04-26 03:21 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-04-26 03:21 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-04-26 03:21 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-04-26 03:21 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-04-26 03:21 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-04-26 03:21 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-04-26 03:20 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-04-26 03:20 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-04-26 03:20 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-04-26 03:20 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-04-26 03:20 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-04-26 03:20 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-04-26 03:20 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-04-26 03:20 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-04-26 03:20 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-04-26 03:20 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-04-26 03:20 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-04-26 03:20 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-04-26 03:20 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-04-26 03:20 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-04-26 03:20 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-04-26 03:20 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-04-26 03:20 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-04-26 03:20 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-04-26 03:20 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-04-26 03:20 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-04-26 03:20 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-04-26 03:20 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-04-26 03:20 - 2013-11-27 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-04-26 03:20 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-04-26 03:20 - 2013-09-25 04:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-04-26 03:20 - 2013-09-25 04:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-04-26 03:20 - 2013-09-25 04:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-04-26 03:20 - 2013-09-25 04:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-04-26 03:20 - 2013-09-25 04:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-04-26 03:20 - 2013-09-25 04:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-04-26 03:20 - 2013-09-25 04:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-04-26 03:20 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-04-26 03:20 - 2013-09-25 03:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-04-26 03:20 - 2013-09-25 03:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-04-26 03:20 - 2013-09-25 03:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-04-26 03:20 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-04-26 03:20 - 2013-09-25 03:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-04-26 03:20 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-04-26 03:20 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-04-26 03:20 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-04-26 03:20 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-04-26 03:20 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-04-26 03:20 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-04-26 03:20 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-04-26 03:20 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-04-26 03:20 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-04-26 03:20 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-04-26 03:20 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-04-26 03:20 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-04-26 03:20 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-04-26 03:20 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-04-26 03:20 - 2012-11-29 00:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-04-26 03:20 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-04-26 03:20 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-04-26 03:20 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-04-26 03:20 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-04-26 03:20 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-04-26 03:19 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-04-26 03:19 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-04-26 03:19 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-04-26 03:19 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-04-26 03:19 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-04-26 03:19 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-04-26 03:19 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-04-26 03:19 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-04-26 03:19 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-04-26 03:19 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-04-26 03:19 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-04-26 03:19 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-04-26 03:19 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-04-26 03:19 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-04-26 03:19 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-04-26 03:19 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-04-26 03:19 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-04-26 03:19 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-04-26 03:19 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-04-26 03:19 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-04-26 03:19 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-04-26 03:19 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-04-26 03:19 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-04-26 03:19 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-04-26 03:19 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-04-26 03:19 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-04-26 03:19 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-04-26 03:19 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-04-26 03:19 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-04-26 03:18 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-04-26 03:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-26 03:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-04-26 03:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-04-26 03:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-04-26 03:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-04-26 03:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-04-26 03:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-04-26 03:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-04-26 03:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-04-26 03:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-04-26 03:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-04-26 03:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-04-26 03:18 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-04-26 03:18 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-04-26 03:18 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-04-26 03:18 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-04-26 03:18 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-04-26 03:18 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-04-26 03:18 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-04-26 03:18 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-04-26 03:18 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-04-26 03:18 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-04-26 03:18 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-04-26 03:18 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-04-26 03:18 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-04-26 03:18 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-04-26 03:18 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-04-26 03:18 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-04-26 03:18 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-04-26 03:18 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-04-26 03:18 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-04-26 03:18 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-04-26 03:18 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-04-26 03:18 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-04-26 03:18 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-04-26 03:18 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-04-26 03:17 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-26 03:17 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-26 03:17 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-26 03:17 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-04-26 03:17 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-26 03:17 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-04-26 03:17 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-26 03:17 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-04-26 03:17 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-04-26 03:17 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-26 03:17 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-04-26 03:17 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-04-26 03:17 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-04-26 03:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-04-26 03:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-04-26 03:17 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-04-26 03:17 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-04-26 03:17 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-04-26 03:17 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-04-26 03:17 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-04-26 03:17 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-04-26 03:17 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-04-26 03:17 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-04-26 03:17 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-04-26 03:17 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-04-26 03:17 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-04-26 03:17 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-04-26 03:17 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-04-26 03:17 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-04-26 03:17 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-04-26 03:17 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-04-26 03:17 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-04-26 03:17 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-04-26 03:17 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-04-26 03:17 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-04-26 03:17 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-04-26 03:17 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-04-26 03:17 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-04-26 03:17 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-04-26 03:17 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-04-26 03:16 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-26 03:16 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-26 03:16 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-26 03:16 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-26 03:16 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-26 03:16 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-26 03:16 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-26 03:16 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-26 03:16 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-26 03:16 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-26 03:16 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-26 03:16 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-26 03:16 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-04-26 03:16 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-04-26 03:16 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-04-26 03:16 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-04-26 03:16 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-04-26 03:16 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-04-26 03:16 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-04-26 03:16 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-04-26 03:16 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-04-26 03:16 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-04-26 03:16 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-04-26 03:16 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-04-26 03:16 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-04-26 03:16 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-04-26 03:16 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-04-26 03:16 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-04-26 03:16 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-04-26 03:16 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-04-26 03:16 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-04-26 03:16 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-04-26 03:16 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-04-26 03:16 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-04-26 03:16 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-04-26 03:16 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-04-26 03:16 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-04-26 03:16 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-04-26 03:16 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-04-26 03:16 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-04-26 03:16 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-04-26 03:16 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-04-26 03:16 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-04-26 03:16 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-04-26 03:16 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-04-26 03:16 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-04-26 03:16 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-04-26 03:16 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-04-26 03:16 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-04-26 03:16 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-04-26 03:16 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-04-26 03:16 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-04-26 03:16 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-04-26 03:16 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-04-26 03:16 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-04-26 03:16 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-04-26 03:16 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-04-26 03:16 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-04-26 03:16 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-04-25 22:54 - 2014-04-25 22:55 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-04-25 22:44 - 2014-04-25 22:44 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\Notepad - CHIP-Downloader.exe
2014-04-25 21:25 - 2014-04-25 21:25 - 00000000 ____D () C:\Users\de.nay\Documents\Thief
2014-04-25 21:20 - 2014-04-25 21:20 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer(2).exe
2014-04-25 21:17 - 2014-04-25 21:18 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer(1).exe
2014-04-25 21:17 - 2014-04-25 21:17 - 00000801 _____ () C:\Users\de.nay\Desktop\CleanSilverlight.cmd
2014-04-25 21:15 - 2014-04-25 21:15 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer.exe
2014-04-25 21:11 - 2014-04-25 21:11 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Macromedia
2014-04-25 20:53 - 2014-04-26 16:12 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-25 20:53 - 2014-04-25 20:53 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-25 20:53 - 2014-04-25 20:53 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-25 20:53 - 2014-04-25 20:53 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-25 20:53 - 2014-04-25 20:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-25 20:52 - 2014-04-26 15:23 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Adobe
2014-04-25 20:52 - 2014-04-25 20:52 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-04-25 20:52 - 2014-04-25 20:52 - 00000000 ____D () C:\Windows\system32\Macromed
2014-04-25 20:39 - 2014-04-25 20:40 - 13084896 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_x64.exe
2014-04-25 20:35 - 2014-04-25 20:35 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\WinRAR
2014-04-25 19:26 - 2014-04-25 19:26 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Blizzard
2014-04-25 19:24 - 2014-04-25 19:26 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-04-25 19:24 - 2014-04-25 19:24 - 00001161 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-04-25 19:24 - 2014-04-25 19:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2014-04-25 19:23 - 2014-04-25 21:21 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Battle.net
2014-04-25 19:23 - 2014-04-25 19:26 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Battle.net
2014-04-25 19:23 - 2014-04-25 19:23 - 00001124 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Blizzard Entertainment
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-04-25 19:22 - 2014-04-25 19:22 - 07094224 _____ (Blizzard Entertainment) C:\Users\de.nay\Downloads\Hearthstone-Setup-deDE.exe
2014-04-25 19:22 - 2014-04-25 19:22 - 00000000 ____D () C:\ProgramData\Battle.net
2014-04-25 19:08 - 2014-04-25 19:08 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-04-25 19:08 - 2014-04-25 19:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-04-25 19:08 - 2014-04-25 19:08 - 00000000 ____D () C:\Program Files\CPUID
2014-04-25 19:07 - 2014-04-25 19:07 - 01489768 _____ ( ) C:\Users\de.nay\Downloads\cpu-z_1.69-setup-en.exe
2014-04-25 18:50 - 2014-04-25 18:50 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-04-25 18:50 - 2014-04-25 18:50 - 00000000 ____D () C:\Users\de.nay\AppData\Local\CrashDumps
2014-04-25 18:49 - 2014-04-25 18:49 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-04-25 18:48 - 2014-04-25 18:50 - 00000000 ____D () C:\Users\de.nay\Documents\3DMark 11
2014-04-25 18:48 - 2014-04-25 18:48 - 02621440 _____ () C:\Users\de.nay\Downloads\Futuremark_SystemInfo_v426_installer.msi
2014-04-25 18:48 - 2014-04-25 18:48 - 00000000 ____D () C:\Users\de.nay\AppData\Local\IsolatedStorage
2014-04-25 18:47 - 2014-04-25 18:47 - 00001227 _____ () C:\Users\Public\Desktop\3DMark 11.lnk
2014-04-25 18:47 - 2014-04-25 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2014-04-25 18:46 - 2014-04-25 18:46 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-04-25 18:36 - 2014-04-25 18:36 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\3DMark06 - CHIP-Downloader.exe
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Local\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Local\AMD
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\ProgramData\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-04-25 18:29 - 2014-04-25 18:29 - 00066505 _____ () C:\Windows\SysWOW64\CCCInstall_201404251829387680.log
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\ProgramData\AMD
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-04-25 18:28 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-04-25 18:28 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files\AMD
2014-04-25 18:28 - 2014-04-25 18:28 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-04-25 18:25 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-04-25 18:25 - 2014-04-25 18:29 - 00000000 ____D () C:\AMD
2014-04-25 18:25 - 2014-04-25 18:25 - 00000000 ____D () C:\Program Files\ATI
2014-04-25 18:23 - 2014-04-25 18:18 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\de.nay\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-04-25 18:21 - 2014-04-25 18:21 - 00059932 _____ () C:\Windows\SysWOW64\CCCInstall_201404251821080381.log
2014-04-25 18:19 - 2014-04-25 18:19 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\AMD CleanUninstall Utility - CHIP-Downloader.exe
2014-04-25 18:17 - 2014-04-25 18:18 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\de.nay\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2014-04-25 18:13 - 2014-04-25 18:13 - 00000000 ____D () C:\Users\de.nay\Downloads\3DMark11-v1-0-132
2014-04-25 18:11 - 2014-04-25 18:47 - 00000919 _____ () C:\Windows\DirectX.log
2014-04-25 18:11 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-04-25 18:11 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-04-25 18:11 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-04-25 18:11 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-04-25 18:11 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-04-25 18:11 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-04-25 18:11 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-04-25 18:11 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-04-25 18:11 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-04-25 18:10 - 2014-04-25 18:10 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Futuremark
2014-04-25 18:07 - 2014-04-25 18:07 - 00000000 ____D () C:\Program Files\Futuremark
2014-04-25 18:06 - 2014-04-25 18:06 - 31419822 _____ () C:\Users\de.nay\Downloads\JDownloader.zip
2014-04-25 18:05 - 2014-04-26 03:49 - 00000431 _____ () C:\Users\de.nay\Downloads\prime.txt
2014-04-25 18:05 - 2014-04-25 18:05 - 04668633 _____ () C:\Users\de.nay\Downloads\p95v279.win64.zip
2014-04-25 18:05 - 2014-04-25 18:05 - 00000148 _____ () C:\Users\de.nay\Downloads\local.txt
2014-04-25 18:03 - 2014-04-25 18:06 - 271860249 _____ () C:\Users\de.nay\Downloads\3DMark11-v1-0-132.zip
2014-04-25 18:03 - 2014-04-25 18:03 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\3DMark 11 - CHIP-Downloader.exe
2014-04-25 18:00 - 2014-04-25 17:07 - 00000000 ____D () C:\Windows\Panther
2014-04-25 17:56 - 2014-04-26 15:02 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-04-25 17:56 - 2014-04-26 15:02 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-04-25 17:56 - 2014-04-25 17:57 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Mozilla
2014-04-25 17:56 - 2014-04-25 17:57 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Mozilla
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\ProgramData\Mozilla
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-25 17:56 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-04-25 17:56 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-04-25 17:56 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-04-25 17:54 - 2014-04-25 17:54 - 00000871 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-04-25 17:54 - 2014-04-25 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-04-25 17:54 - 2014-04-25 17:54 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-25 17:53 - 2014-04-25 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-04-25 17:53 - 2014-04-25 17:53 - 00000000 ____D () C:\Program Files\7-Zip
2014-04-25 17:52 - 2014-04-25 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\ProgramData\Sun
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-25 17:51 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-04-25 17:51 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-04-25 17:51 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-04-25 17:51 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-04-25 17:51 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-04-25 17:51 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-04-25 17:51 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-04-25 17:51 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-04-25 17:51 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-04-25 17:48 - 2014-04-26 16:06 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-25 17:48 - 2014-04-26 15:58 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-25 17:48 - 2014-04-25 17:53 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-25 17:48 - 2014-04-25 17:53 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-25 17:48 - 2014-04-25 17:48 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-25 17:48 - 2014-04-25 17:48 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\AVAST Software
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Google
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-25 17:47 - 2014-04-25 17:47 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-25 17:47 - 2014-04-25 17:47 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-25 17:47 - 2014-04-25 17:47 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\Users\de.nay\Desktop\install exen
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-25 17:34 - 2014-04-26 12:51 - 00058400 _____ () C:\Users\de.nay\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-25 17:34 - 2014-04-25 17:34 - 00000000 _____ () C:\Windows\system32\spu_storage.bin
2014-04-25 17:32 - 2014-04-25 17:32 - 00066505 _____ () C:\Windows\SysWOW64\CCCInstall_201404251732094023.log
2014-04-25 17:29 - 2013-09-12 04:26 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as32.exe
2014-04-25 17:29 - 2013-09-12 04:26 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld32.exe
2014-04-25 17:26 - 2014-04-26 04:47 - 01591948 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-25 17:25 - 2014-04-25 18:47 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-25 17:22 - 2014-04-25 17:22 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\FNET
2014-04-25 17:19 - 2014-04-26 12:53 - 00000000 ____D () C:\ProgramData\Norton
2014-04-25 17:18 - 2014-04-26 15:23 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Adobe
2014-04-25 17:18 - 2014-04-25 17:18 - 00001009 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
2014-04-25 17:18 - 2014-04-25 17:18 - 00000997 _____ () C:\Users\Public\Desktop\Acrobat.com.lnk
2014-04-25 17:18 - 2014-04-25 17:18 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Macromedia
2014-04-25 17:17 - 2014-04-25 17:18 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-25 17:17 - 2014-04-25 17:17 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-04-25 17:17 - 2014-04-25 17:17 - 00002014 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-04-25 17:17 - 2014-04-25 17:17 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-25 17:16 - 2014-04-25 17:16 - 00002029 _____ () C:\Users\de.nay\Desktop\XFast LAN.lnk
2014-04-25 17:16 - 2014-04-25 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
2014-04-25 17:16 - 2014-04-25 17:16 - 00000000 ____D () C:\Program Files\ASRock
2014-04-25 17:16 - 2013-05-31 16:23 - 01814880 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2014-04-25 17:15 - 2014-04-25 17:15 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-04-25 17:15 - 2014-04-25 17:15 - 00001889 _____ () C:\Users\Public\Desktop\XFast USB.LNK
2014-04-25 17:15 - 2014-04-25 17:15 - 00001230 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk
2014-04-25 17:15 - 2014-04-25 17:15 - 00001120 _____ () C:\Users\Public\Desktop\ASRock InstantBoot.lnk
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Users\de.nay\AppData\Local\cFos
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\FNET
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\cFos
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files\ASRock Utility
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility
2014-04-25 17:15 - 2012-08-09 17:03 - 00034640 _____ (ASRock Inc.) C:\Windows\system32\Drivers\AsrRamDisk.sys
2014-04-25 17:15 - 2011-11-07 10:13 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys
2014-04-25 17:14 - 2014-04-25 17:14 - 00007696 _____ () C:\Windows\DPINST.LOG
2014-04-25 17:14 - 2014-04-25 17:14 - 00000000 ____D () C:\Program Files (x86)\ASM104xUSB3
2014-04-25 17:14 - 2011-04-21 20:17 - 00471144 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-04-25 17:14 - 2011-04-21 20:17 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-04-25 17:14 - 2011-04-21 20:17 - 00074272 _____ () C:\Windows\system32\RtNicProp64.dll
2014-04-25 17:13 - 2014-04-25 18:46 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-25 17:13 - 2014-04-25 17:14 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____D () C:\Program Files\Realtek
2014-04-25 17:13 - 2013-07-30 14:16 - 03564376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-04-25 17:13 - 2013-07-30 11:14 - 02585304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-04-25 17:13 - 2013-07-30 07:47 - 00620273 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-04-25 17:13 - 2013-07-29 12:41 - 00147672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-04-25 17:13 - 2013-07-29 07:48 - 30311936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-04-25 17:13 - 2013-07-26 21:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-04-25 17:13 - 2013-07-26 21:55 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-04-25 17:13 - 2013-07-26 21:55 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-04-25 17:13 - 2013-07-26 21:55 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-04-25 17:13 - 2013-07-26 08:26 - 05694504 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-04-25 17:13 - 2013-07-26 08:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 27519232 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 14042880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 03604224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 02032896 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 01904384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 01044736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 00933120 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 00920832 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 00660224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-04-25 17:13 - 2013-07-24 04:07 - 00650496 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-04-25 17:13 - 2013-07-23 19:45 - 00875776 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-04-25 17:13 - 2013-07-23 19:45 - 00845568 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-04-25 17:13 - 2013-07-23 19:45 - 00720128 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-04-25 17:13 - 2013-07-23 19:45 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-04-25 17:13 - 2013-07-22 09:37 - 01004248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-04-25 17:13 - 2013-07-19 09:55 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-04-25 17:13 - 2013-07-18 08:48 - 02795224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-04-25 17:13 - 2013-07-17 10:17 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-04-25 17:13 - 2013-07-08 12:32 - 04810008 _____ (ASUSTeKcomputer.Inc) C:\Windows\system32\RTKSMlfx.dll
2014-04-25 17:13 - 2013-07-08 12:31 - 00758104 _____ (A-Volute) C:\Windows\system32\RTKSMSettingsIPC.dll
2014-04-25 17:13 - 2013-06-25 06:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-04-25 17:13 - 2013-06-25 06:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-04-25 17:13 - 2013-06-25 06:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-04-25 17:13 - 2013-06-21 05:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-04-25 17:13 - 2013-06-18 11:00 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-04-25 17:13 - 2013-06-05 15:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-04-25 17:13 - 2013-04-24 11:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-04-25 17:13 - 2013-04-03 08:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-04-25 17:13 - 2013-02-20 12:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-04-25 17:13 - 2012-10-02 08:41 - 00501192 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-04-25 17:13 - 2012-10-02 08:41 - 00487368 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-04-25 17:13 - 2012-10-02 08:41 - 00415688 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-04-25 17:13 - 2012-08-31 13:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-04-25 17:13 - 2012-08-31 13:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-04-25 17:13 - 2012-08-31 13:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-04-25 17:13 - 2012-08-31 13:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-04-25 17:13 - 2012-08-31 13:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-04-25 17:13 - 2012-07-15 15:13 - 00394616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-04-25 17:13 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-04-25 17:13 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-04-25 17:13 - 2012-01-30 05:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-04-25 17:13 - 2012-01-10 04:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-04-25 17:13 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-04-25 17:13 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-04-25 17:13 - 2011-09-02 08:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-04-25 17:13 - 2011-09-02 08:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-04-25 17:13 - 2011-09-02 08:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-04-25 17:13 - 2011-08-23 11:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

de.nay · 26.04.2014, 15:24

zweiter teil

Code:

ATTFilter

2014-04-25 17:13 - 2011-05-31 03:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-04-25 17:13 - 2011-05-31 03:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-04-25 17:13 - 2011-03-17 06:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-04-25 17:13 - 2011-03-07 11:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-04-25 17:13 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-04-25 17:13 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-04-25 17:13 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-04-25 17:13 - 2010-07-22 10:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-04-25 17:13 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-04-25 17:13 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-04-25 17:13 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-04-25 17:13 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-04-25 17:08 - 2014-04-26 15:02 - 00001425 _____ () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-25 17:08 - 2014-04-26 12:54 - 00000000 ____D () C:\Users\de.nay\AppData\Local\VirtualStore
2014-04-25 17:08 - 2014-04-26 12:51 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-25 17:08 - 2014-04-26 12:51 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-25 17:08 - 2014-04-25 17:08 - 00000020 ___SH () C:\Users\de.nay\ntuser.ini
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Vorlagen
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Startmenü
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Netzwerkumgebung
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Lokale Einstellungen
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Eigene Dateien
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Druckumgebung
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Documents\Eigene Musik
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Documents\Eigene Bilder
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Local\Verlauf
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Local\Anwendungsdaten
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Anwendungsdaten
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 ____D () C:\Users\de.nay
2014-04-25 17:08 - 2009-07-14 06:59 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-25 17:08 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-04-25 17:07 - 2014-04-26 16:05 - 01491495 _____ () C:\Windows\WindowsUpdate.log
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 __SHD () C:\Recovery
2014-04-25 17:04 - 2014-04-25 17:04 - 00001355 _____ () C:\Windows\TSSysprep.log

==================== One Month Modified Files and Folders =======

2014-04-26 16:21 - 2014-04-26 15:11 - 00009885 _____ () C:\Users\de.nay\Desktop\FRST.txt
2014-04-26 16:20 - 2014-04-26 16:20 - 00002247 _____ () C:\Users\de.nay\Desktop\AdwCleaner[S0].txt
2014-04-26 16:20 - 2014-04-26 15:11 - 00000000 ____D () C:\FRST
2014-04-26 16:16 - 2014-04-26 16:16 - 00000760 _____ () C:\Users\de.nay\Desktop\JRT.txt
2014-04-26 16:13 - 2011-04-12 10:14 - 00699092 _____ () C:\Windows\system32\perfh007.dat
2014-04-26 16:13 - 2011-04-12 10:14 - 00149232 _____ () C:\Windows\system32\perfc007.dat
2014-04-26 16:13 - 2009-07-14 07:12 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-26 16:12 - 2014-04-25 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-26 16:09 - 2014-04-25 17:07 - 01491495 _____ () C:\Windows\WindowsUpdate.log
2014-04-26 16:08 - 2014-04-26 16:08 - 00000000 ____D () C:\Windows\ERUNT
2014-04-26 16:06 - 2014-04-26 14:47 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-26 16:06 - 2014-04-25 17:48 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-26 16:06 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-26 16:05 - 2009-07-14 06:56 - 00025497 _____ () C:\Windows\setupact.log
2014-04-26 16:05 - 2009-07-14 06:50 - 00018912 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-26 16:05 - 2009-07-14 06:50 - 00018912 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-26 16:04 - 2014-04-26 16:03 - 00000000 ____D () C:\AdwCleaner
2014-04-26 16:02 - 2014-04-26 16:02 - 01330861 _____ () C:\Users\de.nay\Desktop\adwcleaner.exe
2014-04-26 16:02 - 2014-04-26 16:02 - 01016261 _____ (Thisisu) C:\Users\de.nay\Desktop\JRT.exe
2014-04-26 15:58 - 2014-04-25 17:48 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-26 15:23 - 2014-04-25 20:52 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Adobe
2014-04-26 15:23 - 2014-04-25 17:18 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Adobe
2014-04-26 15:21 - 2014-04-26 15:21 - 00015700 _____ () C:\Users\de.nay\Desktop\FRST.7z
2014-04-26 15:12 - 2014-04-26 15:12 - 00024400 _____ () C:\Users\de.nay\Desktop\Addition.txt
2014-04-26 15:11 - 2014-04-26 15:11 - 02061824 _____ (Farbar) C:\Users\de.nay\Desktop\FRST64(1).exe
2014-04-26 15:02 - 2014-04-25 17:56 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-04-26 15:02 - 2014-04-25 17:56 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-04-26 15:02 - 2014-04-25 17:08 - 00001425 _____ () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-04-26 15:00 - 2010-11-21 05:47 - 00520666 _____ () C:\Windows\PFRO.log
2014-04-26 15:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-04-26 14:59 - 2014-04-26 14:59 - 02061824 _____ (Farbar) C:\Users\de.nay\Downloads\FRST64.exe
2014-04-26 14:47 - 2014-04-26 14:47 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\de.nay\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-26 14:47 - 2014-04-26 14:47 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-26 14:47 - 2014-04-26 14:47 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-26 13:34 - 2014-04-26 13:34 - 00003086 _____ () C:\Windows\System32\Tasks\fsupdate
2014-04-26 13:28 - 2014-04-26 13:28 - 00000192 _____ () C:\INSTALL.LOG
2014-04-26 13:27 - 2014-04-26 13:27 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\AlienGUIs Theme Manager - CHIP-Downloader.exe
2014-04-26 13:23 - 2014-04-26 12:56 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Winamp
2014-04-26 12:57 - 2014-04-26 12:56 - 00000000 ____D () C:\Program Files (x86)\Winamp
2014-04-26 12:56 - 2014-04-26 12:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2014-04-26 12:55 - 2014-04-26 12:55 - 12855384 _____ (Nullsoft, Inc.) C:\Users\de.nay\Downloads\winamp5666_full_de-de_b3516.exe
2014-04-26 12:54 - 2014-04-26 12:54 - 00069344 _____ (FNet Co., Ltd.) C:\Windows\system32\TurboShell_105.dll
2014-04-26 12:54 - 2014-04-26 12:54 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-04-26 12:54 - 2014-04-25 17:08 - 00000000 ____D () C:\Users\de.nay\AppData\Local\VirtualStore
2014-04-26 12:53 - 2014-04-25 17:19 - 00000000 ____D () C:\ProgramData\Norton
2014-04-26 12:51 - 2014-04-25 17:34 - 00058400 _____ () C:\Users\de.nay\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-26 12:51 - 2014-04-25 17:08 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-26 12:51 - 2014-04-25 17:08 - 00000000 ___RD () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-26 12:41 - 2009-07-14 06:50 - 00268080 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-26 12:39 - 2011-04-12 10:24 - 00000000 ____D () C:\Program Files\Windows Journal
2014-04-26 12:39 - 2009-07-14 07:38 - 00000000 ____D () C:\Program Files\Windows Defender
2014-04-26 12:39 - 2009-07-14 07:38 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-26 12:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-04-26 04:47 - 2014-04-25 17:26 - 01591948 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-26 04:41 - 2014-04-26 04:29 - 00016242 _____ () C:\Windows\IE11_main.log
2014-04-26 04:35 - 2014-04-26 04:35 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-26 04:35 - 2014-04-26 04:35 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-26 04:35 - 2014-04-26 04:35 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-26 04:35 - 2014-04-26 04:35 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-26 04:35 - 2014-04-26 04:35 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-04-26 04:35 - 2014-04-26 04:35 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-26 04:35 - 2014-04-26 04:35 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-26 04:35 - 2014-04-26 04:35 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-04-26 04:35 - 2014-04-26 04:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-26 04:35 - 2014-04-26 04:35 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-04-26 04:35 - 2014-04-26 04:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-04-26 04:35 - 2014-04-26 04:35 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-04-26 04:35 - 2014-04-26 04:35 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-04-26 04:31 - 2014-04-26 04:31 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-04-26 03:57 - 2014-04-26 03:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-04-26 03:56 - 2014-04-26 03:56 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-04-26 03:56 - 2014-04-26 03:56 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-04-26 03:49 - 2014-04-25 18:05 - 00000431 _____ () C:\Users\de.nay\Downloads\prime.txt
2014-04-26 03:46 - 2014-04-26 03:35 - 00000486 _____ () C:\Users\de.nay\Downloads\results-[4-26-2014]-[33545].log
2014-04-26 03:40 - 2014-04-26 03:40 - 00007597 _____ () C:\Users\de.nay\AppData\Local\Resmon.ResmonCfg
2014-04-26 03:33 - 2014-04-26 03:30 - 00000658 _____ () C:\Users\de.nay\Downloads\results-[4-26-2014]-[33010].log
2014-04-26 03:29 - 2014-04-26 03:29 - 01093979 _____ () C:\Users\de.nay\Downloads\IntelBurnTest.zip
2014-04-26 03:29 - 2014-04-26 03:29 - 00000000 ____D () C:\Users\de.nay\Downloads\LinData
2014-04-25 22:55 - 2014-04-25 22:54 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-04-25 22:54 - 2014-04-25 22:54 - 00000000 ____D () C:\Program Files (x86)\Notepad++
2014-04-25 22:44 - 2014-04-25 22:44 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\Notepad - CHIP-Downloader.exe
2014-04-25 21:25 - 2014-04-25 21:25 - 00000000 ____D () C:\Users\de.nay\Documents\Thief
2014-04-25 21:25 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-25 21:21 - 2014-04-25 19:23 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Battle.net
2014-04-25 21:20 - 2014-04-25 21:20 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer(2).exe
2014-04-25 21:18 - 2014-04-25 21:17 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer(1).exe
2014-04-25 21:17 - 2014-04-25 21:17 - 00000801 _____ () C:\Users\de.nay\Desktop\CleanSilverlight.cmd
2014-04-25 21:15 - 2014-04-25 21:15 - 09331416 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_Developer.exe
2014-04-25 21:11 - 2014-04-25 21:11 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Macromedia
2014-04-25 20:53 - 2014-04-25 20:53 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-25 20:53 - 2014-04-25 20:53 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-25 20:53 - 2014-04-25 20:53 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-25 20:53 - 2014-04-25 20:53 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-25 20:52 - 2014-04-25 20:52 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-04-25 20:52 - 2014-04-25 20:52 - 00000000 ____D () C:\Windows\system32\Macromed
2014-04-25 20:40 - 2014-04-25 20:39 - 13084896 _____ (Microsoft Corporation) C:\Users\de.nay\Downloads\Silverlight_x64.exe
2014-04-25 20:35 - 2014-04-25 20:35 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\WinRAR
2014-04-25 19:26 - 2014-04-25 19:26 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Blizzard
2014-04-25 19:26 - 2014-04-25 19:24 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-04-25 19:26 - 2014-04-25 19:23 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Battle.net
2014-04-25 19:24 - 2014-04-25 19:24 - 00001161 _____ () C:\Users\Public\Desktop\Hearthstone.lnk
2014-04-25 19:24 - 2014-04-25 19:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2014-04-25 19:23 - 2014-04-25 19:23 - 00001124 _____ () C:\Users\Public\Desktop\Battle.net.lnk
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Blizzard Entertainment
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2014-04-25 19:23 - 2014-04-25 19:23 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-04-25 19:22 - 2014-04-25 19:22 - 07094224 _____ (Blizzard Entertainment) C:\Users\de.nay\Downloads\Hearthstone-Setup-deDE.exe
2014-04-25 19:22 - 2014-04-25 19:22 - 00000000 ____D () C:\ProgramData\Battle.net
2014-04-25 19:08 - 2014-04-25 19:08 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-04-25 19:08 - 2014-04-25 19:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-04-25 19:08 - 2014-04-25 19:08 - 00000000 ____D () C:\Program Files\CPUID
2014-04-25 19:07 - 2014-04-25 19:07 - 01489768 _____ ( ) C:\Users\de.nay\Downloads\cpu-z_1.69-setup-en.exe
2014-04-25 18:50 - 2014-04-25 18:50 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-04-25 18:50 - 2014-04-25 18:50 - 00000000 ____D () C:\Users\de.nay\AppData\Local\CrashDumps
2014-04-25 18:50 - 2014-04-25 18:48 - 00000000 ____D () C:\Users\de.nay\Documents\3DMark 11
2014-04-25 18:49 - 2014-04-25 18:49 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2014-04-25 18:48 - 2014-04-25 18:48 - 02621440 _____ () C:\Users\de.nay\Downloads\Futuremark_SystemInfo_v426_installer.msi
2014-04-25 18:48 - 2014-04-25 18:48 - 00000000 ____D () C:\Users\de.nay\AppData\Local\IsolatedStorage
2014-04-25 18:47 - 2014-04-25 18:47 - 00001227 _____ () C:\Users\Public\Desktop\3DMark 11.lnk
2014-04-25 18:47 - 2014-04-25 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2014-04-25 18:47 - 2014-04-25 18:11 - 00000919 _____ () C:\Windows\DirectX.log
2014-04-25 18:47 - 2014-04-25 17:25 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-25 18:46 - 2014-04-25 18:46 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-04-25 18:46 - 2014-04-25 17:13 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-25 18:36 - 2014-04-25 18:36 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\3DMark06 - CHIP-Downloader.exe
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Local\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\Users\de.nay\AppData\Local\AMD
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 ____D () C:\ProgramData\ATI
2014-04-25 18:31 - 2014-04-25 18:31 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-04-25 18:29 - 2014-04-25 18:29 - 00066505 _____ () C:\Windows\SysWOW64\CCCInstall_201404251829387680.log
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\ProgramData\AMD
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-04-25 18:29 - 2014-04-25 18:29 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-04-25 18:29 - 2014-04-25 18:28 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-04-25 18:29 - 2014-04-25 18:28 - 00000000 ____D () C:\Program Files\AMD
2014-04-25 18:29 - 2014-04-25 18:25 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-04-25 18:29 - 2014-04-25 18:25 - 00000000 ____D () C:\AMD
2014-04-25 18:28 - 2014-04-25 18:28 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-04-25 18:25 - 2014-04-25 18:25 - 00000000 ____D () C:\Program Files\ATI
2014-04-25 18:21 - 2014-04-25 18:21 - 00059932 _____ () C:\Windows\SysWOW64\CCCInstall_201404251821080381.log
2014-04-25 18:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-04-25 18:19 - 2014-04-25 18:19 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\AMD CleanUninstall Utility - CHIP-Downloader.exe
2014-04-25 18:18 - 2014-04-25 18:23 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\de.nay\Desktop\13-12_win7_win8_64_dd_ccc_whql.exe
2014-04-25 18:18 - 2014-04-25 18:17 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\de.nay\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2014-04-25 18:13 - 2014-04-25 18:13 - 00000000 ____D () C:\Users\de.nay\Downloads\3DMark11-v1-0-132
2014-04-25 18:10 - 2014-04-25 18:10 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Futuremark
2014-04-25 18:07 - 2014-04-25 18:07 - 00000000 ____D () C:\Program Files\Futuremark
2014-04-25 18:06 - 2014-04-25 18:06 - 31419822 _____ () C:\Users\de.nay\Downloads\JDownloader.zip
2014-04-25 18:06 - 2014-04-25 18:03 - 271860249 _____ () C:\Users\de.nay\Downloads\3DMark11-v1-0-132.zip
2014-04-25 18:05 - 2014-04-25 18:05 - 04668633 _____ () C:\Users\de.nay\Downloads\p95v279.win64.zip
2014-04-25 18:05 - 2014-04-25 18:05 - 00000148 _____ () C:\Users\de.nay\Downloads\local.txt
2014-04-25 18:03 - 2014-04-25 18:03 - 00613200 _____ (Chip Digital GmbH) C:\Users\de.nay\Downloads\3DMark 11 - CHIP-Downloader.exe
2014-04-25 18:00 - 2009-07-14 07:43 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-04-25 18:00 - 2009-07-14 07:38 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-04-25 17:57 - 2014-04-25 17:56 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Mozilla
2014-04-25 17:57 - 2014-04-25 17:56 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Mozilla
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\ProgramData\Mozilla
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-25 17:56 - 2014-04-25 17:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-25 17:54 - 2014-04-25 17:54 - 00000871 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-04-25 17:54 - 2014-04-25 17:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-04-25 17:54 - 2014-04-25 17:54 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-25 17:53 - 2014-04-25 17:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-04-25 17:53 - 2014-04-25 17:53 - 00000000 ____D () C:\Program Files\7-Zip
2014-04-25 17:53 - 2014-04-25 17:48 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-25 17:53 - 2014-04-25 17:48 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-25 17:52 - 2014-04-25 17:52 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-25 17:52 - 2014-04-25 17:52 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\ProgramData\Sun
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-25 17:52 - 2014-04-25 17:52 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-25 17:48 - 2014-04-25 17:48 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-25 17:48 - 2014-04-25 17:48 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\AVAST Software
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Users\de.nay\AppData\Local\Google
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-04-25 17:48 - 2014-04-25 17:48 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-25 17:47 - 2014-04-25 17:47 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-25 17:47 - 2014-04-25 17:47 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-25 17:47 - 2014-04-25 17:47 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\Users\de.nay\Desktop\install exen
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-25 17:47 - 2014-04-25 17:47 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-25 17:34 - 2014-04-25 17:34 - 00000000 _____ () C:\Windows\system32\spu_storage.bin
2014-04-25 17:32 - 2014-04-25 17:32 - 00066505 _____ () C:\Windows\SysWOW64\CCCInstall_201404251732094023.log
2014-04-25 17:22 - 2014-04-25 17:22 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\FNET
2014-04-25 17:18 - 2014-04-25 17:18 - 00001009 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk
2014-04-25 17:18 - 2014-04-25 17:18 - 00000997 _____ () C:\Users\Public\Desktop\Acrobat.com.lnk
2014-04-25 17:18 - 2014-04-25 17:18 - 00000000 ____D () C:\Users\de.nay\AppData\Roaming\Macromedia
2014-04-25 17:18 - 2014-04-25 17:17 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-04-25 17:17 - 2014-04-25 17:17 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-04-25 17:17 - 2014-04-25 17:17 - 00002014 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-04-25 17:17 - 2014-04-25 17:17 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-25 17:16 - 2014-04-25 17:16 - 00002029 _____ () C:\Users\de.nay\Desktop\XFast LAN.lnk
2014-04-25 17:16 - 2014-04-25 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
2014-04-25 17:16 - 2014-04-25 17:16 - 00000000 ____D () C:\Program Files\ASRock
2014-04-25 17:15 - 2014-04-25 17:15 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-04-25 17:15 - 2014-04-25 17:15 - 00001889 _____ () C:\Users\Public\Desktop\XFast USB.LNK
2014-04-25 17:15 - 2014-04-25 17:15 - 00001230 _____ () C:\Users\Public\Desktop\ASRock eXtreme Tuner.lnk
2014-04-25 17:15 - 2014-04-25 17:15 - 00001120 _____ () C:\Users\Public\Desktop\ASRock InstantBoot.lnk
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Users\de.nay\AppData\Local\cFos
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\FNET
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\ProgramData\cFos
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files\ASRock Utility
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-04-25 17:15 - 2014-04-25 17:15 - 00000000 ____D () C:\Program Files (x86)\ASRock Utility
2014-04-25 17:14 - 2014-04-25 17:14 - 00007696 _____ () C:\Windows\DPINST.LOG
2014-04-25 17:14 - 2014-04-25 17:14 - 00000000 ____D () C:\Program Files (x86)\ASM104xUSB3
2014-04-25 17:14 - 2014-04-25 17:13 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-04-25 17:13 - 2014-04-25 17:13 - 00000000 ____D () C:\Program Files\Realtek
2014-04-25 17:13 - 2009-07-14 07:38 - 00000000 ____D () C:\Windows\system32\restore
2014-04-25 17:08 - 2014-04-25 17:08 - 00000020 ___SH () C:\Users\de.nay\ntuser.ini
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Vorlagen
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Startmenü
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Netzwerkumgebung
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Lokale Einstellungen
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Eigene Dateien
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Druckumgebung
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Documents\Eigene Musik
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Documents\Eigene Bilder
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Local\Verlauf
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\AppData\Local\Anwendungsdaten
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 _SHDL () C:\Users\de.nay\Anwendungsdaten
2014-04-25 17:08 - 2014-04-25 17:08 - 00000000 ____D () C:\Users\de.nay
2014-04-25 17:07 - 2014-04-25 18:00 - 00000000 ____D () C:\Windows\Panther
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-04-25 17:07 - 2014-04-25 17:07 - 00000000 __SHD () C:\Recovery
2014-04-25 17:07 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-04-25 17:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-04-25 17:05 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-25 17:04 - 2014-04-25 17:04 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-04-25 17:04 - 2009-07-14 07:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-25 17:04 - 2009-07-14 06:51 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-04-25 17:04 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-25 17:04 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-04-25 17:01 - 2011-04-12 10:24 - 00000000 ____D () C:\Windows\CSC
2014-04-03 09:51 - 2014-04-26 14:47 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-26 14:47 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-26 14:47 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-31 09:35 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\de.nay\AppData\Local\Temp\AMDCleanupUtility.exe
C:\Users\de.nay\AppData\Local\Temp\Cleanup.dll
C:\Users\de.nay\AppData\Local\Temp\msvcm80.dll
C:\Users\de.nay\AppData\Local\Temp\msvcp80.dll
C:\Users\de.nay\AppData\Local\Temp\msvcr80.dll
C:\Users\de.nay\AppData\Local\Temp\OptimizerPro.exe
C:\Users\de.nay\AppData\Local\Temp\PrefJsonCpp.exe
C:\Users\de.nay\AppData\Local\Temp\Quarantine.exe
C:\Users\de.nay\AppData\Local\Temp\setup.exe
C:\Users\de.nay\AppData\Local\Temp\sqlite3.exe
C:\Users\de.nay\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-25 17:01

==================== End Of Log ============================

schrauber · 26.04.2014, 18:49

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

PUP.optional eingefangen

Plagegeister aller Art und deren Bekämpfung: PUP.optional eingefangen