| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7 wirft mich auf den Desktop in unregelmäßigen Abständen (überwiegend bei Spielen aufgefallen)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
23.05.2014, 18:54
| #1 |
 |  Windows 7 wirft mich auf den Desktop in unregelmäßigen Abständen (überwiegend bei Spielen aufgefallen) Guten Abend, ich habe seit längerem das Problem das Windows mich ständig auf den Desktop wirft vorallem beim zocken nervt das sehr, ich kann nicht viel dazu sagen ich starte ein Spiel und irgendwann minimiert es sich und ich sehe den Desktop. Leider ist das schon länger so das ich nicht mehr weiß seit wann das Problem auftritt. Und eine andere kleinigkeit gäbe es da noch, in 80-90% der Fälle stürzt die explorer.exe ab wenn ich versuche über die Systemsteuerung->Software Programme zu de-installieren, ich konnte das zum Glück durch REVO Uninstaller umgehen aber eine Dauerlösung ist das ja auch nicht zumal ich nicht mal weiß wie es dazu kommt. Für eure Hilfe bin sehr dankbar Noch ein paar Daten zu meinem PC. Packard Bell Easy note LS13HR CPU: Core i5 2410m Grafik: Intel HD 3000, AMD Radeon HD 6650M - 2GB VRAM HDD: 640 GB RAM: 6GB FRST Log Datei FRST.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by Don Corleone (administrator) on DONCORLEONE-PC on 23-05-2014 19:20:55
Running from C:\Users\Don Corleone\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SANDBOXIE L.T.D) D:\Programme\Windows Sandbox\SbieSvc.exe
(AVAST Software) D:\Programme\AVAST Software\Avast\AvastSvc.exe
() D:\Programme\PowerDVD11 Ultra\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
(CyberLink) D:\Programme\PowerDVD11 Ultra\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
(CyberLink) D:\Programme\PowerDVD11 Ultra\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\ProgramData\Internet Manager\OnlineUpdate\LiveUpd.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) D:\Programme\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Safer-Networking Ltd.) D:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) D:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(SiSoftware) F:\Programme\SiSoftware Sandra Lite 2014.SP2\RpcAgentSrv.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(AppWork GmbH) D:\Programme\JDownloader 2\JDownloader v2.0\JDownloader2.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-03-22] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => D:\Programme\AVAST Software\Avast\AvastUI.exe [3873704 2014-05-11] (AVAST Software)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-05-15] (Raptr, Inc)
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [1967616 2014-04-17] (AMD)
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\Policies\Explorer: [NoAutoTrayNotify] 0
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\MountPoints2: {5e31bf16-405f-11e3-8a38-dc0ea10ddbd3} - G:\AutoRun.exe
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\MountPoints2: {5e31bf25-405f-11e3-8a38-dc0ea10ddbd3} - G:\AutoRun.exe
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\MountPoints2: {5e31bfb2-405f-11e3-8a38-dc0ea10ddbd3} - F:\AutoRun.exe
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\MountPoints2: {a391a184-e16a-11e3-b674-dc0ea10ddbd3} - G:\Autorun.exe
HKU\S-1-5-21-1672272528-3360620030-3742580433-1000\...\MountPoints2: {e48290c6-4099-11e2-8d62-dc0ea10ddbd3} - G:\CTT-Startmenu.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xE207433E9241CF01
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: ArcPluginIEBHO Class - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - D:\Programme\ARC Client\Arc\Plugins\ArcPluginIE.dll (Perfect World Entertainment Inc)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com/bin/srldetect_intel_4.5.22.0.cab
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{2A812DA1-111F-4EDA-AE7C-93F4568EE599}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{4291DCC6-2FBC-4719-A60E-52E6D90A8716}: [NameServer]10.74.210.210 10.74.210.211
FireFox:
========
FF ProfilePath: C:\Users\Don Corleone\AppData\Roaming\Mozilla\Firefox\Profiles\sps3luce.default-1400314111250
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin - D:\Programme\ARC Client\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - D:\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - D:\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Don Corleone\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Don Corleone\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Don Corleone\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Don Corleone\AppData\Roaming\Mozilla\Firefox\Profiles\sps3luce.default-1400314111250\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - D:\Programme\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - D:\Programme\AVAST Software\Avast\WebRep\FF [2014-03-31]
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Java(TM) Platform SE 7 U9) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Google Update) - C:\Users\Don Corleone\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Uplay PC) - D:\Programme\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Extension: (Google Drive) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-26]
CHR Extension: (YouTube) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-26]
CHR Extension: (Google-Suche) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-26]
CHR Extension: (YTBookMaarK) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbgaldchpdlibgibolafkiheflddbicf [2014-02-17]
CHR Extension: (avast! Online Security) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-03-31]
CHR Extension: (Google Wallet) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-29]
CHR Extension: (Google Mail) - C:\Users\Don Corleone\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-26]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - D:\Programme\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-05-11]
==================== Services (Whitelisted) =================
S3 ArcService; D:\Programme\ARC Client\Arc\ArcService.exe [88400 2014-02-24] (Perfect World Entertainment Inc)
R2 avast! Antivirus; D:\Programme\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-11] (AVAST Software)
R2 CLHNServiceForPowerDVD; D:\Programme\PowerDVD11 Ultra\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [83240 2011-08-24] ()
R2 CyberLink PowerDVD 11.0 Monitor Service; D:\Programme\PowerDVD11 Ultra\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [75048 2011-09-02] (CyberLink)
R2 CyberLink PowerDVD 11.0 Service; D:\Programme\PowerDVD11 Ultra\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [292136 2011-09-02] (CyberLink)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [868224 2010-10-29] (Acer Incorporated)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-03-22] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-06-17] ()
R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [255376 2012-04-05] (Acer Incorporated)
S3 MatSvc; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [343856 2011-06-13] (Microsoft Corporation)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 RzMaelstromVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe [4249088 2014-03-06] (A-Volute)
R3 SandraAgentSrv; F:\Programme\SiSoftware Sandra Lite 2014.SP2\RpcAgentSrv.exe [72344 2008-04-08] (SiSoftware)
R2 SbieSvc; D:\Programme\Windows Sandbox\SbieSvc.exe [123664 2012-12-16] (SANDBOXIE L.T.D)
R2 SDScannerService; D:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
S2 SDUpdateService; D:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; D:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [15888 2013-02-11] (Intel(R) Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [57344 2011-08-10] (Atheros)
==================== Drivers (Whitelisted) ====================
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-11] ()
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [211456 2013-06-05] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-22] (Disc Soft Ltd)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [41032 2013-05-23] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-02-13] (GFI Software)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [238080 2012-04-23] (Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [25448 2013-01-07] (Intel Corporation)
S3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2013-04-09] ( )
S3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1989504 2013-04-09] (Creative Technology Ltd.)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [128200 2013-04-03] (Qualcomm Atheros Co., Ltd.)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2013-06-05] ()
S2 lirsgt; C:\Windows\SysWOW64\DRIVERS\lirsgt.sys [18048 2013-06-05] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-03-20] (Intel Corporation)
R2 ntk_PowerDVD; D:\Programme\PowerDVD11 Ultra\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [75248 2011-08-24] (Cyberlink Corp.)
R3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [40696 2014-03-06] (Windows (R) Win 7 DDK provider)
R3 SANDRA; F:\Programme\SiSoftware Sandra Lite 2014.SP2\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R3 SbieDrv; D:\Programme\Windows Sandbox\SbieDrv.sys [202632 2012-12-16] (SANDBOXIE L.T.D)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44344 2013-04-09] (Synaptics Incorporated)
R3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2609784 2013-04-09] (Sunplus Technology)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2011-03-31] (C-Media Electronics Inc)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [113952 2014-02-25] (Oracle Corporation)
S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [10368 2012-12-07] ()
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; D:\Programme\PowerDVD11 Ultra\PowerDVD11\Common\NavFilter\000.fcl [148976 2011-09-02] (CyberLink Corp.)
R3 ALSysIO; \??\C:\Users\DONCOR~1\AppData\Local\Temp\ALSysIO64.sys [X]
S3 TVICPORT; \??\C:\Windows\system32\DRIVERS\TVICPORT.SYS [X]
S3 XFDriver64; \??\C:\Program Files (x86)\Xfire2\XFDriver64.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-23 19:20 - 2014-05-23 19:21 - 00022652 _____ () C:\Users\Don Corleone\Downloads\FRST.txt
2014-05-23 19:20 - 2014-05-23 19:20 - 00000000 ____D () C:\FRST
2014-05-23 19:18 - 2014-05-23 19:18 - 02067456 _____ (Farbar) C:\Users\Don Corleone\Downloads\FRST64.exe
2014-05-23 17:21 - 2014-05-23 17:25 - 00000000 ____D () C:\Users\Don Corleone\Documents\HospitalTycoon
2014-05-23 17:20 - 2014-05-23 17:20 - 00000794 _____ () C:\Users\Don Corleone\Desktop\Hospital Tycoon.lnk
2014-05-23 17:20 - 2014-05-23 17:20 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Codemasters
2014-05-23 16:41 - 2014-05-23 16:42 - 47208309 _____ () C:\Users\Don Corleone\Downloads\3dgamemaker.zip
2014-05-23 15:36 - 2014-05-23 16:34 - 14151680 _____ () C:\Users\Don Corleone\AppData\Roaming\Sandra.mdb
2014-05-23 14:51 - 2014-05-23 14:51 - 00000540 _____ () C:\Windows\WMFDist64.log
2014-05-23 14:48 - 2014-05-23 14:48 - 00000845 _____ () C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.SP2.lnk
2014-05-23 14:48 - 2014-05-23 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2014-05-23 14:43 - 2014-05-23 14:46 - 00000000 ____D () C:\Users\Don Corleone\Downloads\Systemprogramme
2014-05-23 14:43 - 2014-05-23 14:45 - 69069552 _____ (SiSoftware ) C:\Users\Don Corleone\Downloads\san2025.exe
2014-05-23 14:39 - 2014-05-23 14:39 - 00000017 _____ () C:\Users\Don Corleone\AppData\Local\resmon.resmoncfg
2014-05-23 14:13 - 2014-05-23 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeepSilver
2014-05-22 19:56 - 2014-05-22 19:56 - 00003035 _____ () C:\Users\Don Corleone\Desktop\Stadtbahn Simulator Düsseldorf.lnk
2014-05-22 19:56 - 2014-05-22 19:56 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stadtbahn Simulator Düsseldorf
2014-05-22 17:21 - 2014-05-22 17:21 - 00000000 ____D () C:\Users\Don Corleone\Documents\Atari
2014-05-22 17:16 - 2014-05-22 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
2014-05-22 07:07 - 2014-05-22 07:07 - 00000000 ____D () C:\Users\Don Corleone\Documents\Stronghold 3
2014-05-22 06:58 - 2014-05-22 06:58 - 00000927 _____ () C:\Users\Public\Desktop\Stronghold 3 Gold.lnk
2014-05-22 06:41 - 2014-05-22 06:41 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-05-22 06:30 - 2014-05-22 06:30 - 00000000 ____D () C:\Users\Don Corleone\Documents\DIE SIEDLER - Aufstieg eines Königreichs
2014-05-22 01:29 - 2014-05-22 01:29 - 11803391 _____ () C:\Users\Don Corleone\Desktop\The Godfather - Main Title (The Godfather Waltz) - HQ - Nino Rota (480p).mp4
2014-05-22 01:27 - 2014-05-22 01:27 - 11945569 _____ () C:\Users\Don Corleone\Desktop\The Godfather Love Theme (480p).mp4
2014-05-21 07:13 - 2014-05-21 07:13 - 00004096 _____ () C:\Windows\d3dx.dat
2014-05-21 07:13 - 2014-05-21 07:13 - 00000000 ____D () C:\Users\Public\Documents\Deutschland Spielt
2014-05-21 04:44 - 2014-05-21 04:44 - 00000000 ____D () C:\Users\Don Corleone\Downloads\AC2_THEME
2014-05-21 04:43 - 2014-05-21 04:44 - 02923720 _____ () C:\Users\Don Corleone\Downloads\AC2_THEME.ZIP
2014-05-19 22:00 - 2014-05-19 22:04 - 61252232 _____ (Ubisoft) C:\Users\Don Corleone\Downloads\UplayInstaller.exe
2014-05-19 18:24 - 2014-05-19 18:24 - 00000000 _____ () C:\Users\Don Corleone\Desktop\Neue Bitmap.bmp
2014-05-19 17:42 - 2014-05-19 17:42 - 00000823 _____ () C:\Users\Don Corleone\Desktop\Uplay.lnk
2014-05-19 17:40 - 2014-05-19 17:41 - 61252232 _____ (Ubisoft) C:\Users\Don Corleone\Downloads\UplayInstaller_4.5.0.exe
2014-05-19 17:03 - 2014-05-19 17:03 - 00626688 _____ () C:\Users\Don Corleone\Downloads\Detection(1).msi
2014-05-19 16:33 - 2014-05-23 17:21 - 00200192 _____ () C:\Windows\DirectX.log
2014-05-17 21:24 - 2014-05-23 15:02 - 00000896 _____ () C:\Windows\setupact.log
2014-05-17 21:24 - 2014-05-22 12:46 - 00005998 _____ () C:\Windows\PFRO.log
2014-05-17 21:24 - 2014-05-17 21:24 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-17 21:22 - 2014-05-17 21:22 - 01325827 _____ () C:\Users\Don Corleone\Downloads\adwcleaner_3.208.exe
2014-05-17 21:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-17 10:08 - 2014-05-17 10:08 - 00000000 ____D () C:\Users\Don Corleone\Desktop\Alte Firefox-Daten
2014-05-17 09:18 - 2014-05-17 09:18 - 23792584 _____ (Foofind Labs, S.L. ) C:\Users\Don Corleone\Downloads\foofind_download_manager_redist.exe
2014-05-17 09:18 - 2014-05-17 09:18 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Foofind Download Manager
2014-05-17 09:17 - 2014-05-17 09:17 - 00166112 _____ () C:\Users\Don Corleone\Desktop\Foofind-Download-Manager_0.3-20140421.exe
2014-05-17 09:09 - 2014-05-17 09:09 - 00000000 ____D () C:\Users\Don Corleone\Desktop\ost
2014-05-17 04:21 - 2014-05-17 04:21 - 01001280 _____ (DivX, LLC) C:\Users\Don Corleone\Desktop\DivXInstaller.exe
2014-05-15 05:23 - 2014-05-15 05:23 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 05:21 - 2014-05-08 09:14 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-15 05:21 - 2014-05-08 08:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-15 05:21 - 2014-05-08 07:52 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-15 05:21 - 2014-05-08 07:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 05:21 - 2014-05-08 06:57 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-15 05:21 - 2014-05-08 06:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-15 05:10 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-15 05:10 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-15 05:10 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-15 05:10 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-15 05:09 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-15 05:09 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-15 05:09 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-15 05:09 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-15 05:09 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-15 05:09 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-15 05:09 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-15 05:09 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-15 05:09 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-15 05:09 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-15 05:09 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-15 05:09 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-15 05:09 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-15 05:09 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-15 05:09 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-15 05:09 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-15 05:09 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-15 05:09 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-15 05:09 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-11 06:11 - 2014-05-11 06:11 - 21745912 _____ () C:\Users\Don Corleone\Desktop\_Scarface_ (1983) - End Credits theme (original) HD - Giorgio Moroder - YouTube [720p].mp4
2014-05-11 02:40 - 2014-05-11 02:40 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201405110240294523.log
2014-05-11 02:40 - 2014-05-11 02:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-11 02:40 - 2014-05-11 02:40 - 00000000 ____D () C:\ProgramData\ATI
2014-05-11 02:35 - 2014-05-11 02:35 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-05-11 02:34 - 2014-05-23 19:03 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Raptr
2014-05-11 02:31 - 2014-05-11 02:40 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-11 02:31 - 2014-05-11 02:31 - 00000000 ____D () C:\Program Files\ATI
2014-05-11 02:30 - 2014-05-11 02:39 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-11 02:27 - 2014-04-18 05:43 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-05-11 02:27 - 2014-04-18 05:43 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-05-11 02:27 - 2014-04-18 05:43 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-05-11 02:27 - 2014-04-18 05:43 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 08866928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 08010968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 07520200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 06799688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 06796592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 01117184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 00126336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 00117584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-05-11 02:27 - 2014-04-18 05:42 - 00099520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-05-11 02:27 - 2014-04-18 05:36 - 15376384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-05-11 02:27 - 2014-04-18 05:23 - 00231424 _____ () C:\Windows\system32\clinfo.exe
2014-05-11 02:27 - 2014-04-18 05:22 - 28685824 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-05-11 02:27 - 2014-04-18 05:22 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-05-11 02:27 - 2014-04-18 05:22 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-05-11 02:27 - 2014-04-18 05:22 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-05-11 02:27 - 2014-04-18 05:22 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-05-11 02:27 - 2014-04-18 05:19 - 24107520 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-05-11 02:27 - 2014-04-18 05:17 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-05-11 02:27 - 2014-04-18 05:17 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-05-11 02:27 - 2014-04-18 05:13 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-05-11 02:27 - 2014-04-18 05:13 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-05-11 02:27 - 2014-04-18 05:12 - 27907584 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-05-11 02:27 - 2014-04-18 05:12 - 05442048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-05-11 02:27 - 2014-04-18 04:58 - 04358656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-05-11 02:27 - 2014-04-18 04:51 - 23409152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-05-11 02:27 - 2014-04-18 04:46 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-05-11 02:27 - 2014-04-18 04:46 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-05-11 02:27 - 2014-04-18 04:46 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-05-11 02:27 - 2014-04-18 04:46 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-05-11 02:27 - 2014-04-18 04:46 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-05-11 02:27 - 2014-04-18 04:45 - 00091136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-05-11 02:27 - 2014-04-18 04:45 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-05-11 02:27 - 2014-04-18 04:42 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-05-11 02:27 - 2014-04-18 04:33 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-05-11 02:27 - 2014-04-18 04:33 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-05-11 02:27 - 2014-04-18 04:30 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-05-11 02:27 - 2014-04-18 04:30 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-05-11 02:27 - 2014-04-18 04:29 - 00586240 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-05-11 02:27 - 2014-04-18 04:29 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-05-11 02:27 - 2014-04-18 04:28 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-05-11 02:27 - 2014-04-18 04:28 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-05-11 02:27 - 2014-04-18 04:21 - 00806912 _____ (AMD) C:\Windows\system32\coinst_14.100.dll
2014-05-11 02:27 - 2014-04-18 04:17 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-05-11 02:27 - 2014-04-18 04:09 - 01177600 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-05-11 02:27 - 2014-04-18 04:09 - 00848896 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-05-11 02:27 - 2014-04-18 04:07 - 00638976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-05-11 02:27 - 2014-04-18 04:07 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-05-11 02:27 - 2014-04-18 04:07 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-05-11 02:27 - 2014-04-18 04:07 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-05-11 02:27 - 2014-04-18 04:07 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-05-11 02:27 - 2014-04-18 04:07 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-05-11 02:27 - 2014-04-18 04:04 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-05-11 02:27 - 2014-04-10 20:58 - 00082128 _____ () C:\Windows\system32\ativce02.dat
2014-05-11 02:27 - 2014-04-01 01:06 - 00234804 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-05-11 02:27 - 2014-04-01 01:04 - 00233008 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-05-11 02:27 - 2014-02-06 18:45 - 00134192 _____ () C:\Windows\system32\ativce03.dat
2014-05-11 02:27 - 2014-01-16 20:00 - 00273712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-05-11 02:27 - 2014-01-16 19:59 - 00275124 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-05-11 02:27 - 2014-01-16 11:34 - 00723841 _____ () C:\Windows\system32\atiicdxx.dat
2014-05-11 02:27 - 2013-07-05 13:13 - 00532720 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-05-11 02:27 - 2013-07-05 13:13 - 00532720 _____ () C:\Windows\system32\atiapfxx.blb
2014-05-11 02:27 - 2013-07-05 13:10 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-05-11 02:27 - 2013-04-10 18:34 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-05-11 02:27 - 2013-04-10 18:34 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-05-11 02:13 - 2014-05-11 02:13 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-11 02:13 - 2014-05-11 02:13 - 00000000 ____D () C:\Program Files\Realtek
2014-05-11 02:12 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-05-11 02:12 - 2013-10-09 20:12 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-05-11 02:12 - 2013-08-24 03:14 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-05-11 02:12 - 2013-08-24 03:14 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-05-11 02:12 - 2013-08-24 03:14 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-05-11 02:12 - 2013-08-24 03:14 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-05-11 02:12 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-05-11 02:12 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-05-11 02:12 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-05-11 02:12 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-05-11 02:12 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-05-11 02:12 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-05-11 02:12 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-05-11 02:12 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-05-11 02:12 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-05-11 02:12 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-05-11 02:12 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-05-11 02:12 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-05-11 02:12 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-05-11 02:12 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-05-11 02:12 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-05-11 02:11 - 2013-11-05 19:47 - 03707864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-05-11 02:11 - 2013-11-05 18:54 - 38385664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-05-11 02:11 - 2013-11-05 15:48 - 00681905 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-05-11 02:11 - 2013-11-04 19:26 - 00153304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-05-11 02:11 - 2013-11-04 11:11 - 02587864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-05-11 02:11 - 2013-10-30 16:31 - 00929080 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-05-11 02:11 - 2013-10-28 17:29 - 01021656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-05-11 02:11 - 2013-10-18 16:41 - 01286360 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-05-11 02:11 - 2013-10-07 11:05 - 02810072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-05-11 02:11 - 2013-10-02 17:10 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-05-11 02:11 - 2013-09-09 15:32 - 05681192 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-05-11 02:11 - 2013-04-24 17:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-05-11 02:11 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-05-11 02:11 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-05-11 02:11 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-05-11 02:11 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-05-11 02:11 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-05-11 02:11 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-05-11 02:11 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-05-11 02:11 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-05-11 02:11 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-05-11 02:10 - 2014-05-11 02:10 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-11 02:10 - 2013-10-25 10:49 - 05751576 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-05-11 02:10 - 2013-10-09 20:13 - 01286400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-05-11 02:10 - 2013-10-09 20:12 - 03714304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-05-11 02:10 - 2013-08-14 16:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-05-11 02:10 - 2013-08-14 16:35 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-05-11 02:10 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-05-11 02:09 - 2014-05-11 02:09 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-11 02:09 - 2013-10-09 20:13 - 01921792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-05-11 02:09 - 2013-10-09 20:12 - 27644160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-05-11 02:09 - 2013-10-09 20:12 - 14152960 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-05-11 02:09 - 2013-10-09 20:12 - 02036992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-05-11 02:09 - 2013-10-09 20:12 - 01012992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-05-11 02:09 - 2013-07-23 15:39 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-05-11 02:08 - 2013-10-09 20:13 - 01345280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-05-11 02:08 - 2013-08-14 16:35 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-05-11 02:08 - 2013-08-14 16:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-05-11 02:08 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-05-11 02:08 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-05-11 02:07 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-05-11 02:07 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-05-11 02:07 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-05-11 02:07 - 2013-08-05 18:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-05-11 02:07 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-05-11 02:06 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-05-11 02:06 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-05-11 02:06 - 2013-09-10 04:02 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-05-11 02:06 - 2013-09-10 04:02 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-05-11 02:06 - 2013-09-10 04:01 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-05-11 02:06 - 2013-09-10 04:01 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-05-11 02:06 - 2013-08-20 17:37 - 00605496 _____ () C:\Windows\system32\audioLibVc.dll
2014-05-11 02:06 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-05-11 02:06 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-05-11 01:35 - 2014-05-11 01:35 - 00000998 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-11 01:33 - 2014-05-11 01:33 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-05-11 01:33 - 2014-05-11 01:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-05-10 23:45 - 2014-05-10 23:45 - 00001438 _____ () C:\Users\Don Corleone\Desktop\Razer Synapse 2.0 und Razer Surround 7.1.lnk
2014-05-10 23:42 - 2014-05-10 23:42 - 00000000 ____D () C:\ProgramData\RzMaelstromVAD_1.1.52.1675
2014-05-10 23:39 - 2014-05-10 23:39 - 00002089 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-05-10 23:14 - 2012-05-15 07:13 - 00144896 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2014-05-10 23:14 - 2012-05-15 06:20 - 00104448 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2014-05-10 23:12 - 2014-05-10 23:12 - 00000000 ____D () C:\Intel
2014-05-10 22:38 - 2014-05-10 22:38 - 00001171 _____ () C:\Users\Don Corleone\Desktop\Driver Genius.lnk
2014-05-10 22:38 - 2014-05-10 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius
2014-05-10 21:11 - 2014-05-10 21:11 - 00000000 ____D () C:\Users\Don Corleone\SystemRequirementsLab
2014-05-10 13:49 - 2014-05-10 13:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-08 20:33 - 2014-05-08 20:33 - 00000000 _____ () C:\Users\Don Corleone\Desktop\Neues Textdokument (2).txt
2014-05-08 18:26 - 2014-05-08 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vLite
2014-05-08 18:26 - 2014-05-08 18:26 - 00000000 ____D () C:\Program Files (x86)\vLite
2014-05-08 12:10 - 2014-05-08 12:13 - 00000000 ____D () C:\Users\Don Corleone\Documents\New Unity Project
2014-05-06 19:51 - 2014-05-06 19:51 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Tritton
2014-05-06 19:48 - 2014-05-06 19:48 - 00000000 ____D () C:\Program Files\Tritton
2014-05-03 21:02 - 2014-05-03 21:02 - 00000000 ____D () C:\Users\Don Corleone\Documents\Activision
2014-05-03 19:57 - 2014-05-03 19:57 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-03 19:57 - 2014-05-03 19:57 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-02 23:45 - 2014-05-10 23:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-02 23:44 - 2014-05-10 23:41 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-02 13:36 - 2014-05-02 13:36 - 00117223 _____ () C:\Users\Don Corleone\Documents\Unbenannt (2).wma
2014-05-02 13:35 - 2014-05-02 13:35 - 00076813 _____ () C:\Users\Don Corleone\Documents\Unbenannt.wma
2014-05-01 01:50 - 2014-03-01 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-01 01:50 - 2014-03-01 06:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-01 01:50 - 2014-03-01 06:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-01 01:50 - 2014-03-01 06:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-01 01:50 - 2014-03-01 06:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-01 01:50 - 2014-03-01 06:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-01 01:50 - 2014-03-01 06:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-01 01:50 - 2014-03-01 06:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-01 01:50 - 2014-03-01 06:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-01 01:50 - 2014-03-01 06:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-01 01:50 - 2014-03-01 06:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-01 01:50 - 2014-03-01 06:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-01 01:50 - 2014-03-01 06:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-01 01:50 - 2014-03-01 05:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-01 01:50 - 2014-03-01 05:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-01 01:50 - 2014-03-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-01 01:50 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-01 01:50 - 2014-03-01 05:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-01 01:50 - 2014-03-01 05:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-01 01:50 - 2014-03-01 05:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-01 01:50 - 2014-03-01 05:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-01 01:50 - 2014-03-01 05:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-01 01:50 - 2014-03-01 05:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-01 01:50 - 2014-03-01 05:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-01 01:50 - 2014-03-01 05:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-01 01:50 - 2014-03-01 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-01 01:50 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-01 01:50 - 2014-03-01 05:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-01 01:50 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-01 01:50 - 2014-03-01 05:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-01 01:50 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-01 01:50 - 2014-03-01 04:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-01 01:50 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-01 01:50 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-01 01:50 - 2014-03-01 04:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-01 01:50 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-01 01:49 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-05-01 01:49 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-05-01 01:49 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-05-01 01:49 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-05-01 01:48 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-05-01 01:48 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-05-01 01:48 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-05-01 01:48 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-05-01 01:48 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-05-01 01:48 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-01 01:48 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-01 01:46 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-01 01:46 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-05-01 01:46 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-05-01 01:46 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-05-01 01:46 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-05-01 01:46 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-05-01 01:46 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-01 01:46 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-05-01 01:46 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-05-01 01:46 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-05-01 01:46 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-05-01 01:46 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-05-01 01:46 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-05-01 01:46 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-05-01 01:43 - 2014-05-01 01:48 - 00004238 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-24 07:39 - 2014-04-24 07:39 - 00000000 ____D () C:\Windows\ERUNT
2014-04-24 02:38 - 2014-04-24 02:38 - 00004511 _____ () C:\STF88CF.tmp
==================== One Month Modified Files and Folders =======
2014-05-23 19:21 - 2014-05-23 19:20 - 00022652 _____ () C:\Users\Don Corleone\Downloads\FRST.txt
2014-05-23 19:20 - 2014-05-23 19:20 - 00000000 ____D () C:\FRST
2014-05-23 19:18 - 2014-05-23 19:18 - 02067456 _____ (Farbar) C:\Users\Don Corleone\Downloads\FRST64.exe
2014-05-23 19:07 - 2012-12-06 23:55 - 30007680 _____ () C:\Windows\WindowsUpdate.log
2014-05-23 19:03 - 2014-05-11 02:34 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Raptr
2014-05-23 18:51 - 2013-01-26 03:04 - 00001148 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1672272528-3360620030-3742580433-1000UA.job
2014-05-23 17:25 - 2014-05-23 17:21 - 00000000 ____D () C:\Users\Don Corleone\Documents\HospitalTycoon
2014-05-23 17:21 - 2014-05-19 16:33 - 00200192 _____ () C:\Windows\DirectX.log
2014-05-23 17:20 - 2014-05-23 17:20 - 00000794 _____ () C:\Users\Don Corleone\Desktop\Hospital Tycoon.lnk
2014-05-23 17:20 - 2014-05-23 17:20 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Codemasters
2014-05-23 16:47 - 2012-12-11 23:28 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-05-23 16:42 - 2014-05-23 16:41 - 47208309 _____ () C:\Users\Don Corleone\Downloads\3dgamemaker.zip
2014-05-23 16:34 - 2014-05-23 15:36 - 14151680 _____ () C:\Users\Don Corleone\AppData\Roaming\Sandra.mdb
2014-05-23 15:10 - 2009-07-14 06:45 - 00023520 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-23 15:10 - 2009-07-14 06:45 - 00023520 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-23 15:02 - 2014-05-17 21:24 - 00000896 _____ () C:\Windows\setupact.log
2014-05-23 15:02 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-23 14:51 - 2014-05-23 14:51 - 00000540 _____ () C:\Windows\WMFDist64.log
2014-05-23 14:48 - 2014-05-23 14:48 - 00000845 _____ () C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.SP2.lnk
2014-05-23 14:48 - 2014-05-23 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2014-05-23 14:48 - 2013-02-11 11:32 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Windows Live
2014-05-23 14:46 - 2014-05-23 14:43 - 00000000 ____D () C:\Users\Don Corleone\Downloads\Systemprogramme
2014-05-23 14:45 - 2014-05-23 14:43 - 69069552 _____ (SiSoftware ) C:\Users\Don Corleone\Downloads\san2025.exe
2014-05-23 14:39 - 2014-05-23 14:39 - 00000017 _____ () C:\Users\Don Corleone\AppData\Local\resmon.resmoncfg
2014-05-23 14:13 - 2014-05-23 14:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeepSilver
2014-05-23 14:13 - 2013-06-05 17:41 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-23 13:49 - 2013-01-23 04:16 - 00003982 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{F848FC5F-70B1-4207-B3CC-1E729BEFD9A0}
2014-05-22 19:56 - 2014-05-22 19:56 - 00003035 _____ () C:\Users\Don Corleone\Desktop\Stadtbahn Simulator Düsseldorf.lnk
2014-05-22 19:56 - 2014-05-22 19:56 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stadtbahn Simulator Düsseldorf
2014-05-22 17:21 - 2014-05-22 17:21 - 00000000 ____D () C:\Users\Don Corleone\Documents\Atari
2014-05-22 17:16 - 2014-05-22 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
2014-05-22 15:59 - 2014-03-06 03:03 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\vlc
2014-05-22 12:46 - 2014-05-17 21:24 - 00005998 _____ () C:\Windows\PFRO.log
2014-05-22 07:07 - 2014-05-22 07:07 - 00000000 ____D () C:\Users\Don Corleone\Documents\Stronghold 3
2014-05-22 06:58 - 2014-05-22 06:58 - 00000927 _____ () C:\Users\Public\Desktop\Stronghold 3 Gold.lnk
2014-05-22 06:58 - 2012-12-14 23:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2014-05-22 06:44 - 2009-07-14 19:58 - 00736716 _____ () C:\Windows\system32\perfh007.dat
2014-05-22 06:44 - 2009-07-14 19:58 - 00160462 _____ () C:\Windows\system32\perfc007.dat
2014-05-22 06:44 - 2009-07-14 07:13 - 01709418 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-22 06:42 - 2013-01-23 04:12 - 00003160 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-05-22 06:41 - 2014-05-22 06:41 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-05-22 06:30 - 2014-05-22 06:30 - 00000000 ____D () C:\Users\Don Corleone\Documents\DIE SIEDLER - Aufstieg eines Königreichs
2014-05-22 04:51 - 2013-01-26 03:04 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1672272528-3360620030-3742580433-1000Core.job
2014-05-21 22:38 - 2014-03-02 06:42 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-05-21 22:37 - 2014-03-31 07:25 - 00004174 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-05-21 07:13 - 2014-05-21 07:13 - 00004096 _____ () C:\Windows\d3dx.dat
2014-05-21 07:13 - 2014-05-21 07:13 - 00000000 ____D () C:\Users\Public\Documents\Deutschland Spielt
2014-05-19 22:04 - 2014-05-19 22:00 - 61252232 _____ (Ubisoft) C:\Users\Don Corleone\Downloads\UplayInstaller.exe
2014-05-19 18:24 - 2014-05-19 18:24 - 00000000 _____ () C:\Users\Don Corleone\Desktop\Neue Bitmap.bmp
2014-05-19 17:42 - 2014-05-19 17:42 - 00000823 _____ () C:\Users\Don Corleone\Desktop\Uplay.lnk
2014-05-19 17:42 - 2012-12-07 22:27 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Ubisoft Game Launcher
2014-05-19 17:41 - 2014-05-19 17:40 - 61252232 _____ (Ubisoft) C:\Users\Don Corleone\Downloads\UplayInstaller_4.5.0.exe
2014-05-19 17:14 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-19 17:04 - 2014-03-02 04:15 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-05-19 17:03 - 2014-05-19 17:03 - 00626688 _____ () C:\Users\Don Corleone\Downloads\Detection(1).msi
2014-05-17 21:24 - 2014-05-17 21:24 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-17 21:23 - 2014-04-12 23:28 - 00000000 ____D () C:\AdwCleaner
2014-05-17 21:23 - 2013-01-26 03:15 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-17 21:23 - 2012-12-17 17:47 - 00000969 _____ () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-17 21:23 - 2012-12-07 00:58 - 00001025 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-17 21:22 - 2014-05-17 21:22 - 01325827 _____ () C:\Users\Don Corleone\Downloads\adwcleaner_3.208.exe
2014-05-17 21:07 - 2014-03-02 03:33 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\CrashDumps
2014-05-17 10:08 - 2014-05-17 10:08 - 00000000 ____D () C:\Users\Don Corleone\Desktop\Alte Firefox-Daten
2014-05-17 09:18 - 2014-05-17 09:18 - 23792584 _____ (Foofind Labs, S.L. ) C:\Users\Don Corleone\Downloads\foofind_download_manager_redist.exe
2014-05-17 09:18 - 2014-05-17 09:18 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Foofind Download Manager
2014-05-17 09:17 - 2014-05-17 09:17 - 00166112 _____ () C:\Users\Don Corleone\Desktop\Foofind-Download-Manager_0.3-20140421.exe
2014-05-17 09:15 - 2012-12-07 00:01 - 00000000 ___RD () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-17 04:24 - 2014-02-18 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-05-17 04:24 - 2012-12-13 01:18 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-05-17 04:24 - 2012-12-13 01:16 - 00000000 ____D () C:\ProgramData\DivX
2014-05-17 04:21 - 2014-05-17 04:21 - 01001280 _____ (DivX, LLC) C:\Users\Don Corleone\Desktop\DivXInstaller.exe
2014-05-17 00:54 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-16 01:22 - 2014-03-02 14:45 - 00000000 ____D () C:\Windows\rescache
2014-05-15 15:45 - 2014-03-31 07:25 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-15 15:45 - 2014-03-31 07:25 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-15 15:45 - 2014-03-31 07:25 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-15 15:40 - 2009-07-14 06:45 - 00439144 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-15 05:23 - 2014-05-15 05:23 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 05:19 - 2014-02-07 21:37 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 13:20 - 2012-12-07 02:19 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-11 02:40 - 2014-05-11 02:40 - 00062044 _____ () C:\Windows\SysWOW64\CCCInstall_201405110240294523.log
2014-05-11 02:40 - 2014-05-11 02:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-11 02:40 - 2014-05-11 02:40 - 00000000 ____D () C:\ProgramData\ATI
2014-05-11 02:40 - 2014-05-11 02:31 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-11 02:40 - 2012-12-07 03:30 - 00000000 ____D () C:\ProgramData\AMD
2014-05-11 02:40 - 2012-12-07 01:47 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\ATI
2014-05-11 02:40 - 2012-12-07 01:47 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\ATI
2014-05-11 02:39 - 2014-05-11 02:30 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-11 02:35 - 2014-05-11 02:35 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-05-11 02:31 - 2014-05-11 02:31 - 00000000 ____D () C:\Program Files\ATI
2014-05-11 02:31 - 2013-07-10 02:21 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-11 02:13 - 2014-05-11 02:13 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-11 02:13 - 2014-05-11 02:13 - 00000000 ____D () C:\Program Files\Realtek
2014-05-11 02:10 - 2014-05-11 02:10 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-11 02:09 - 2014-05-11 02:09 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-11 02:04 - 2012-12-07 00:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-11 01:35 - 2014-05-11 01:35 - 00000998 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-05-11 01:33 - 2014-05-11 01:33 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-05-11 01:33 - 2014-05-11 01:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-05-11 01:33 - 2014-03-31 07:25 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1400161518694
2014-05-11 01:33 - 2014-03-31 07:25 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1400161518694
2014-05-11 01:33 - 2014-03-31 07:25 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-05-11 01:33 - 2014-03-31 07:25 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-05-11 01:33 - 2014-03-31 07:25 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-05-11 01:33 - 2014-03-31 07:24 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-05-11 01:33 - 2014-03-31 07:24 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-05-11 00:02 - 2012-12-07 01:08 - 00113952 _____ () C:\Users\Don Corleone\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-10 23:45 - 2014-05-10 23:45 - 00001438 _____ () C:\Users\Don Corleone\Desktop\Razer Synapse 2.0 und Razer Surround 7.1.lnk
2014-05-10 23:42 - 2014-05-10 23:42 - 00000000 ____D () C:\ProgramData\RzMaelstromVAD_1.1.52.1675
2014-05-10 23:41 - 2014-05-02 23:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-10 23:41 - 2014-05-02 23:44 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-10 23:41 - 2013-02-12 23:37 - 00000000 ____D () C:\Windows\pss
2014-05-10 23:39 - 2014-05-10 23:39 - 00002089 _____ () C:\Users\Public\Desktop\Razer Game Booster.lnk
2014-05-10 23:39 - 2013-01-19 07:50 - 00000000 ____D () C:\ProgramData\Razer
2014-05-10 23:39 - 2012-12-18 20:17 - 00000000 ___RD () C:\Users\Don Corleone\Desktop\Spiele
2014-05-10 23:38 - 2013-06-27 21:20 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Razer
2014-05-10 23:14 - 2012-12-07 01:50 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-05-10 23:12 - 2014-05-10 23:12 - 00000000 ____D () C:\Intel
2014-05-10 23:12 - 2012-12-07 00:36 - 00000000 ____D () C:\Program Files\Intel
2014-05-10 22:39 - 2009-07-14 04:34 - 00001369 _____ () C:\Windows\system32\Drivers\etc\hosts.old
2014-05-10 21:19 - 2014-03-27 08:43 - 00000000 ____D () C:\Users\Don Corleone\Desktop\von chip
2014-05-10 21:11 - 2014-05-10 21:11 - 00000000 ____D () C:\Users\Don Corleone\SystemRequirementsLab
2014-05-10 21:11 - 2012-12-07 00:01 - 00000000 ____D () C:\Users\Don Corleone
2014-05-10 13:49 - 2014-05-10 13:49 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-09 08:14 - 2014-05-15 05:10 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-15 05:10 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 18:27 - 2013-03-24 15:59 - 00000000 ____D () C:\Program Files (x86)\nLite
2014-05-08 18:26 - 2014-05-08 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vLite
2014-05-08 18:26 - 2014-05-08 18:26 - 00000000 ____D () C:\Program Files (x86)\vLite
2014-05-08 12:13 - 2014-05-08 12:10 - 00000000 ____D () C:\Users\Don Corleone\Documents\New Unity Project
2014-05-08 12:13 - 2013-10-24 21:04 - 00000000 ____D () C:\ProgramData\Unity
2014-05-08 09:14 - 2014-05-15 05:21 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-08 08:37 - 2014-05-15 05:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-08 07:52 - 2014-05-15 05:21 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-08 07:27 - 2014-05-15 05:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-08 06:57 - 2014-05-15 05:21 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-08 06:04 - 2014-05-15 05:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-06 19:51 - 2014-05-06 19:51 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Tritton
2014-05-06 19:48 - 2014-05-06 19:48 - 00000000 ____D () C:\Program Files\Tritton
2014-05-05 22:34 - 2013-04-16 17:21 - 00000000 ____D () C:\ProgramData\Steam
2014-05-04 17:12 - 2012-12-16 17:49 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-03 21:23 - 2013-08-01 23:33 - 00003347 _____ () C:\Windows\Cm106.ini.imi
2014-05-03 21:02 - 2014-05-03 21:02 - 00000000 ____D () C:\Users\Don Corleone\Documents\Activision
2014-05-03 21:02 - 2013-02-08 12:11 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Activision
2014-05-03 19:57 - 2014-05-03 19:57 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-03 19:57 - 2014-05-03 19:57 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-03 19:53 - 2012-12-07 02:22 - 00000000 ____D () C:\Users\Don Corleone\AppData\Local\Adobe
2014-05-03 19:45 - 2014-04-08 15:44 - 00000663 _____ () C:\Users\Don Corleone\AppData\Roaming\MPQEditor.ini
2014-05-03 19:44 - 2012-12-18 20:17 - 00000000 ___RD () C:\Users\Don Corleone\Desktop\Programme
2014-05-03 19:36 - 2012-12-07 22:34 - 00000000 ____D () C:\ProgramData\Ubisoft
2014-05-03 19:20 - 2013-01-07 22:31 - 00000000 ____D () C:\ProgramData\Solidshield
2014-05-02 23:58 - 2014-03-02 13:21 - 00626688 _____ () C:\Users\Don Corleone\Downloads\Detection.msi
2014-05-02 13:36 - 2014-05-02 13:36 - 00117223 _____ () C:\Users\Don Corleone\Documents\Unbenannt (2).wma
2014-05-02 13:35 - 2014-05-02 13:35 - 00076813 _____ () C:\Users\Don Corleone\Documents\Unbenannt.wma
2014-05-01 14:18 - 2013-05-20 04:52 - 00000000 ____D () C:\Users\Don Corleone\AppData\Roaming\StarTrekPC
2014-05-01 01:48 - 2014-05-01 01:43 - 00004238 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-05-01 01:43 - 2014-03-27 03:22 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-27 22:29 - 2013-04-08 19:48 - 00000000 ____D () C:\ProgramData\SecTaskMan
2014-04-24 07:39 - 2014-04-24 07:39 - 00000000 ____D () C:\Windows\ERUNT
2014-04-24 07:05 - 2013-07-10 02:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-04-24 07:03 - 2013-07-10 02:09 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-04-24 04:11 - 2012-12-15 04:17 - 00000000 ____D () C:\Users\Don Corleone\Documents\My Games
2014-04-24 02:38 - 2014-04-24 02:38 - 00004511 _____ () C:\STF88CF.tmp
2014-04-24 01:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-23 05:46 - 2013-05-29 21:39 - 00000000 ____D () C:\Windows\Minidump
Some content of TEMP:
====================
C:\Users\Don Corleone\AppData\Local\Temp\20140517091718.754.exe
C:\Users\Don Corleone\AppData\Local\Temp\BackupSetup.exe
C:\Users\Don Corleone\AppData\Local\Temp\proxy_vole2931698619205979779.dll
C:\Users\Don Corleone\AppData\Local\Temp\Quarantine.exe
C:\Users\Don Corleone\AppData\Local\Temp\ubi7984.tmp.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
LastRegBack: 2014-05-19 19:28
==================== End Of Log ============================
Danke für eure Hilfe |
| Themen zu Windows 7 wirft mich auf den Desktop in unregelmäßigen Abständen (überwiegend bei Spielen aufgefallen) |
| administrator, amd radeon, auf desktop geworfen, explorer.exe, focus, homepage, installation, microsoft, microsoft fix it, mozilla, programm minimiert sich, programme, pup.optional.oneinstaller, pup.optional.opencandy, pup.optional.qone8, pup.optional.tarma.a, revo uninstaller, services.exe, svchost.exe, systemsteuerung, uplay, win32/downware.w, win32/elex.ad, win32/installcore.by, win32/installerex.m, win32/mypcbackup.a, win32/thinknice.b, win32/toolbar.widgi.b, windows 7 |
Baum-Darstellung