Trojaner-Board - Offen Externe Festplatte

vllt hilft ja das schon

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-12-2013

Ran by Paddy (administrator) on PADDY-PC on 26-12-2013 00:14:56

Running from C:\Users\Paddy\Desktop

Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) ===================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

() C:\Program Files\Freemium\SystemStore\Freemium.SystemStore.exe

(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe

(McAfee, Inc.) C:\Windows\System32\mfevtps.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

() C:\Users\Paddy\AppData\Roaming\okitspace\protect\PluginProtect.exe

() C:\Program Files\SoftwareUpdater\UpdaterService.exe

() C:\Program Files\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe

(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe

(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe

(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe

(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\AMCore\mcshield.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(TuneUp Software) C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

(Akamai Technologies, Inc.) C:\Users\Paddy\AppData\Local\Akamai\netsession_win.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McUICnt.exe

(Akamai Technologies, Inc.) C:\Users\Paddy\AppData\Local\Akamai\netsession_win.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

(McAfee, Inc.) C:\Program Files\McAfee\MAT\McPvTray.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe

(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [516912 2013-09-24] (McAfee, Inc.)

HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-03] (NVIDIA Corporation)

HKLM\...\Run: [Aeria Ignite] - C:\Program Files\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)

HKLM\...\Run: [NvBackend] - C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)

HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [mcpltui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [516912 2013-09-24] (McAfee, Inc.)

HKLM\...\Run: [EaseUS EPM tray] - C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd)

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Paddy\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)

HKCU\...\Run: [Pando Media Booster] - C:\Program Files\Pando Networks\Media Booster\PMB.exe [3093624 2013-02-05] ()

HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1

AppInit_DLLs: |œ/ [ ] ()

IFEO\aeriaignite.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\ccleaner.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\dw20.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\epmstartloader.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\excel.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\finder.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\infopath.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\msaccess.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\msoxmled.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\mspub.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\mspview.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\mstore.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\ois.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\outlook.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\overwolflauncher.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\owuninstaller.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\powerpnt.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\proflwiz.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\unins000.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\uninst.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

IFEO\winword.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2014\TUAutoReactivator32.exe"

BootExecute: autocheck autochk * sdnclean.exe
 

==================== Internet (Whitelisted) ====================
 

ProxyServer: localhost:8080

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://facebook.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x8061B8F4A024CD01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.delta-search.com/?affID=121561&tt=190313_wo3&babsrc=HP_ss&mntrId=E8A590E6BA4ED462

HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com

HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=E8A590E6BA4ED462&affID=120695&tsp=4932

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=ds&from=adks&uid=SAMSUNGXHD103UJ_S13PJ90SA07309&ts=1383847196&type=default&q={searchTerms}

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=ds&from=adks&uid=SAMSUNGXHD103UJ_S13PJ90SA07309&ts=1383847196&type=default&q={searchTerms}

URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

URLSearchHook: HKCU - (No Name) - {40c3cc16-7269-4b32-9531-17f2950fb06f} -  No File

URLSearchHook: HKCU - (No Name) - {990af1c2-5a27-4460-8149-ecc6bc122af3} -  No File

URLSearchHook: HKCU - (No Name) - {78e516ef-11de-47a1-8364-a99b917ec5ee} -  No File

StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.dosearches.com/?utm_source=b&utm_medium=adks&utm_campaign=rg&utm_content=sc&from=adks&uid=SAMSUNGXHD103UJ_S13PJ90SA07309&ts=1383847196

SearchScopes: HKLM - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms}

SearchScopes: HKCU - BrowserMngrDefaultScope {7863768C-0074-4B11-98DF-DA393E04CCD4}

SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

SearchScopes: HKCU - {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://www.firetab.org/?type=ds3se&p={searchTerms}

SearchScopes: HKCU - {DEFFDD02-590A-4A0A-95E1-8F8ECEEACFC6} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=vc_trans_8140&type=horus

BHO: OKitSpace Object - {3543619C-D563-43f7-95EA-4DA7E1CC396A} - C:\Users\Paddy\AppData\Roaming\okitspace\IE\OkitSpace.dll ()

BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)

BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: af0.Adblock.BHO - {90EFF544-3981-4d46-85C9-C0361D0931D6} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)

BHO: DNS Error Helper - {9B6B03F1-16CF-4491-BBBB-E872802DD717} - C:\ProgramData\DNSErrorHelper\bho.dll ()

BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Toolbar: HKLM - No Name - {DFEFCDEE-CF1A-4FC8-88AD-129872198372} -  No File

Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)

Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File

Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-129872198372} -  No File

Toolbar: HKCU - No Name - {40C3CC16-7269-4B32-9531-17F2950FB06F} -  No File

Toolbar: HKCU - No Name - {990AF1C2-5A27-4460-8149-ECC6BC122AF3} -  No File

Toolbar: HKCU - No Name - {78E516EF-11DE-47A1-8364-A99B917EC5EE} -  No File

Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)

Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
 

FireFox:

========

FF ProfilePath: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default

FF Homepage: user_pref("browser.startup.homepage", );

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()

FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)

FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin: @mcafee.com/MVT - C:\Program Files\McAfee\Supportability\MVT\npmvtplugin.dll (McAfee, Inc.)

FF Plugin: @mcafee.com/SAFFPlugin - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File

FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File

FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF SearchPlugin: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\searchplugins\aed6677c-c927-4858-ba8c-7a232a32db49.xml

FF SearchPlugin: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\searchplugins\babylon.xml

FF SearchPlugin: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\searchplugins\badoo.xml

FF SearchPlugin: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\searchplugins\BrowserDefender.xml

FF SearchPlugin: C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\searchplugins\delta.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml

FF Extension: No Name - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions

FF Extension: OneClickDownloader - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\profiles\extensions\OneClickDownload@OneClickDownload.com

FF Extension: No Name - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\profiles\extensions\searchplugins

FF Extension: DealPly  Shopping - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\addon@dealplyshopping.com

FF Extension: Amazon-Icon - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\amazon-icon@winload.de

FF Extension: No Name - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\staged

FF Extension: PriceGong - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}

FF Extension: Bitdefender QuickScan - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360}

FF Extension: PricePeep - C:\Users\Paddy\AppData\Roaming\Mozilla\Firefox\Profiles\oadnzpq4.default\Extensions\pricepeep@getpricepeep.com.xpi

FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor

FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor

FF HKLM\...\Firefox\Extensions: [OKitSpace@Vittalia.es] - C:\Users\Paddy\AppData\Roaming\okitspace\Firefox

FF Extension: OKitSpace - C:\Users\Paddy\AppData\Roaming\okitspace\Firefox

FF HKLM\...\Firefox\Extensions: [OKitSpace@OKitSpace.es] - C:\Users\Paddy\AppData\Roaming\okitSpace\Firefox

FF Extension: OKitSpace - C:\Users\Paddy\AppData\Roaming\okitSpace\Firefox

FF HKLM\...\Firefox\Extensions: [dnshelp@dnshelp.com] - C:\Users\Paddy\AppData\Roaming\Helper

FF Extension: Helper - C:\Users\Paddy\AppData\Roaming\Helper

FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK
 

========================== Services (Whitelisted) =================
 

R2 FreemiumSystemStoreService; C:\Program Files\Freemium\SystemStore\Freemium.SystemStore.exe [7244800 2012-09-13] ()

S3 Futuremark SystemInfo Service; C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe [135584 2011-12-09] (Futuremark Corporation)

R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)

R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [145088 2013-11-28] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [471592 2013-08-02] (McAfee, Inc.)

R2 mcpltsvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [643608 2013-11-26] (McAfee, Inc.)

R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169320 2013-11-04] (McAfee, Inc.)

R2 mfevtp; C:\Windows\system32\mfevtps.exe [172416 2013-11-04] (McAfee, Inc.)

R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14657824 2013-11-29] (NVIDIA Corporation)

S4 OverwolfUpdaterService; C:\Program Files\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)

R2 srvPlgProtect; C:\Users\Paddy\AppData\Roaming\okitspace\protect\PluginProtect.exe [90112 2013-11-13] ()

R2 SrvUpdater; C:\Program Files\SoftwareUpdater\UpdaterService.exe [29696 2013-11-05] ()

R2 SystemStore; C:\Program Files\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe [14848 2012-04-24] ()

R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1739576 2013-10-30] (TuneUp Software)

S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [x]
 

==================== Drivers (Whitelisted) ====================
 

S3 apf003; C:\Windows\system32\apf003.sys [13232 2013-11-03] ()

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2013-06-01] (Wondershare)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [60920 2013-11-04] (McAfee, Inc.)

S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [14920 2013-03-07] ()

S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9160 2013-03-07] ()

S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2013-12-25] (Malwarebytes Corporation)

R0 McPvDrv; C:\Windows\System32\drivers\McPvDrv.sys [66296 2013-09-09] (McAfee, Inc.)

R2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [133992 2013-11-04] (McAfee, Inc.)

R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [236000 2013-11-04] (McAfee, Inc.)

S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [65928 2013-11-04] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [365416 2013-11-04] (McAfee, Inc.)

R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [572528 2013-11-04] (McAfee, Inc.)

R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [319808 2013-11-26] (McAfee, Inc.)

S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [80752 2013-11-26] (McAfee, Inc.)

R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [213392 2013-11-04] (McAfee, Inc.)

R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [6504 2009-05-13] ()

R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)

R3 nusbhost; C:\Windows\System32\DRIVERS\nusbhst.sys [13824 2006-12-29] (SC)

R3 NUSBHUB; C:\Windows\System32\DRIVERS\nusbhub.sys [35840 2006-12-29] (SC)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-10-30] (NVIDIA Corporation)

R2 persg; C:\Windows\System32\DRIVERS\persg.sys [25176 2012-04-19] ()

R2 SBKUPNT; C:\Windows\system32\Drivers\SBKUPNT.SYS [14976 2001-07-13] ()

S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)

S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)

S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)

S3 tbhsd; C:\Windows\System32\drivers\tbhsd.sys [39016 2012-04-20] (RapidSolution Software AG)

R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-09-18] (TuneUp Software)

U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-12-26 00:14 - 2013-12-26 00:14 - 00022915 ____C C:\Users\Paddy\Desktop\FRST.txt

2013-12-26 00:13 - 2013-12-26 00:13 - 01061649 ____C (Farbar) C:\Users\Paddy\Desktop\FRST.exe

2013-12-25 23:23 - 2013-12-25 23:23 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys

2013-12-25 22:22 - 2013-12-25 23:06 - 00000000 ___DC C:\Users\Paddy\Desktop\Bilder

2013-12-25 21:25 - 2013-12-25 21:25 - 00100008 ____C C:\Users\Paddy\AppData\Local\GDIPFONTCACHEV1.DAT

2013-12-25 21:20 - 2013-12-25 21:37 - 00000336 _____ C:\Windows\setupact.log

2013-12-25 21:20 - 2013-12-25 21:20 - 03788504 _____ C:\Windows\system32\FNTCACHE.DAT

2013-12-25 21:20 - 2013-12-25 21:20 - 00000000 _____ C:\Windows\setuperr.log

2013-12-25 21:17 - 2013-12-25 21:19 - 00002480 _____ C:\Windows\logboot_25.12.2013.tureg.log

2013-12-25 01:20 - 2013-12-25 23:25 - 00000000 __RSD C:\Users\Paddy\Documents\McAfee-Tresore

2013-12-25 00:50 - 2013-12-25 00:50 - 00001349 _____ C:\Users\Public\Desktop\EaseUS Partition Master 9.2.2.lnk

2013-12-25 00:50 - 2013-12-25 00:50 - 00000000 ___DC C:\Program Files\EaseUS

2013-12-25 00:50 - 2013-04-11 14:10 - 02498216 _____ C:\Windows\system32\BootMan.exe

2013-12-25 00:50 - 2013-03-07 09:49 - 00087112 _____ C:\Windows\system32\setupempdrv03.exe

2013-12-25 00:50 - 2013-03-07 09:49 - 00019840 _____ C:\Windows\system32\EuEpmGdi.dll

2013-12-25 00:50 - 2013-03-07 09:49 - 00014920 _____ C:\Windows\system32\epmntdrv.sys

2013-12-25 00:50 - 2013-03-07 09:49 - 00009160 _____ C:\Windows\system32\EuGdiDrv.sys

2013-12-24 21:33 - 2013-12-24 21:33 - 00000550 _____ C:\Windows\SWISV3.INI

2013-12-24 21:33 - 2013-12-24 21:33 - 00000308 _____ C:\Windows\SKNIFE.INI

2013-12-24 21:33 - 2013-12-24 21:33 - 00000000 ___DC C:\Program Files\SWISSKNIFE

2013-12-24 21:33 - 2001-07-13 13:56 - 00014976 _____ C:\Windows\system32\Drivers\SBKUPNT.SYS

2013-12-24 21:33 - 1997-02-08 17:11 - 00013312 _____ C:\Windows\system32\DEVLOAD.EXE

2013-12-24 21:14 - 2010-04-26 11:41 - 00002944 _____ C:\Windows\SKLANG.INI

2013-12-23 21:11 - 2013-12-23 21:11 - 00000000 ___DC C:\Users\Paddy\AppData\Local\McAfee File Lock

2013-12-23 16:19 - 2013-09-23 13:48 - 00147912 ____C (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys

2013-12-19 19:53 - 2013-12-19 19:53 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Avg2014

2013-12-19 01:01 - 2013-10-30 10:45 - 00036152 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll

2013-12-19 01:00 - 2013-12-19 01:00 - 00002155 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk

2013-12-19 01:00 - 2013-12-19 01:00 - 00002135 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk

2013-12-19 01:00 - 2013-10-30 10:45 - 00036664 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe

2013-12-19 01:00 - 2013-10-30 10:45 - 00025400 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll

2013-12-19 00:59 - 2013-12-19 01:01 - 00000000 ___DC C:\Program Files\TuneUp Utilities 2014

2013-12-19 00:58 - 2013-12-19 01:05 - 00000000 _SHDC C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

2013-12-13 03:31 - 2013-12-13 03:31 - 00000000 ___DC C:\Program Files\Common Files\Overwolf

2013-12-13 03:05 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-12-13 03:05 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-12-13 03:05 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-12-13 03:05 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-12-13 03:05 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-12-13 03:05 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-12-13 03:05 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-12-13 03:05 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-12-13 03:05 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-12-13 03:05 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-12-13 03:05 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-12-13 03:05 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-12-13 03:05 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-12-13 03:05 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-12-13 03:05 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-12-13 03:05 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-12-13 03:05 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-12-13 03:05 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-12-13 03:05 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-12-13 03:01 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL

2013-12-13 03:01 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll

2013-12-12 23:07 - 2013-12-12 23:07 - 00000000 ____D C:\Users\Paddy\Downloads\Abschlepp-Simulator

2013-12-12 12:29 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2013-12-12 12:29 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2013-12-12 12:29 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll

2013-12-12 12:29 - 2013-10-30 02:27 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2013-12-12 12:29 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll

2013-12-12 12:29 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx

2013-12-12 12:29 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll

2013-12-12 12:29 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe

2013-12-12 12:29 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe

2013-12-12 12:29 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys

2013-12-12 12:29 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys

2013-12-10 23:18 - 2013-12-10 23:18 - 00002170 _____ C:\Users\Public\Desktop\Google Earth.lnk

2013-12-10 20:53 - 2013-12-10 20:53 - 00000220 ____C C:\Users\Paddy\Desktop\Need for Speed™ SHIFT.lnk

2013-12-10 20:40 - 2013-12-10 20:40 - 00000000 ___DC C:\Program Files\Electronic Arts

2013-12-09 23:19 - 2013-12-09 23:19 - 00000000 ___DC C:\Users\Paddy\AppData\Roaming\YoudaGames

2013-12-09 23:18 - 2013-12-09 23:18 - 00000000 ____D C:\Users\Public\Documents\AlawarWrapper

2013-12-09 23:17 - 2013-12-09 23:55 - 00000000 ___DC C:\Program Files\Alawar

2013-12-09 23:17 - 2013-12-09 23:17 - 00001899 ____C C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alawar Games.lnk

2013-12-09 21:29 - 2013-12-09 21:29 - 00001343 _____ C:\Users\Public\Desktop\18 WoS Extreme Trucker.lnk

2013-12-09 21:29 - 2013-12-09 21:29 - 00000000 ___DC C:\Program Files\18 WoS Extreme Trucker

2013-12-05 17:29 - 2013-12-05 17:29 - 00000000 ___DC C:\Program Files\I.A.S

2013-12-04 17:04 - 2013-12-04 17:04 - 00000887 _____ C:\Users\Public\Desktop\GUILD WARS.lnk

2013-12-04 17:04 - 2013-12-04 17:04 - 00000000 ___DC C:\Program Files\GUILD WARS

2013-12-03 15:47 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2013-12-03 15:47 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2013-12-02 18:19 - 2013-12-02 18:19 - 00000000 ___DC C:\Program Files\AGEIA Technologies

2013-12-02 18:14 - 2013-11-14 12:57 - 22951200 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 17560352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 10446112 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2013-12-02 18:14 - 2013-11-14 12:57 - 09663656 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 09619872 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 02947872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 02747680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 01049888 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3233182.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00893728 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3233182.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco32.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00609568 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00562464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00161056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys

2013-12-02 18:14 - 2013-11-14 12:57 - 00068384 _____ (NVIDIA Corporation) C:\Windows\system32\nvapo32v.dll

2013-12-02 18:14 - 2013-11-14 12:57 - 00028448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll

2013-12-02 16:39 - 2013-12-02 16:39 - 00000000 ___DC C:\Users\Paddy\AppData\Local\NVIDIA Corporation

2013-12-02 16:39 - 2013-11-29 17:56 - 00979744 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll

2013-12-02 16:38 - 2013-10-30 18:03 - 00034080 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys

2013-12-02 16:38 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll

2013-11-26 22:06 - 2013-11-26 22:06 - 00319808 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencbdc.sys

2013-11-26 22:06 - 2013-11-26 22:06 - 00080752 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencrk.sys

2013-11-26 22:06 - 2013-11-26 22:06 - 00010152 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeclnrk.sys

2013-11-26 11:36 - 2013-11-26 11:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-26 11:36 - 2013-11-26 11:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-26 11:36 - 2013-11-26 11:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-26 11:36 - 2013-11-26 11:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
 

==================== One Month Modified Files and Folders =======
 

2013-12-26 00:15 - 2013-12-26 00:14 - 00022915 ____C C:\Users\Paddy\Desktop\FRST.txt

2013-12-26 00:15 - 2013-09-21 20:00 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-12-26 00:13 - 2013-12-26 00:13 - 01061649 ____C (Farbar) C:\Users\Paddy\Desktop\FRST.exe

2013-12-25 23:53 - 2012-06-03 16:18 - 00000000 ___DC C:\Users\Paddy\AppData\Local\PMB Files

2013-12-25 23:53 - 2012-04-27 19:15 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-12-25 23:25 - 2013-12-25 01:20 - 00000000 __RSD C:\Users\Paddy\Documents\McAfee-Tresore

2013-12-25 23:23 - 2013-12-25 23:23 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys

2013-12-25 23:23 - 2013-09-21 20:00 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-12-25 23:10 - 2013-02-23 22:28 - 00000000 ___DC C:\FFOutput

2013-12-25 23:06 - 2013-12-25 22:22 - 00000000 ___DC C:\Users\Paddy\Desktop\Bilder

2013-12-25 23:03 - 2013-11-15 14:42 - 01094226 _____ C:\Windows\WindowsUpdate.log

2013-12-25 21:44 - 2009-07-14 05:34 - 00014608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-12-25 21:44 - 2009-07-14 05:34 - 00014608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-12-25 21:37 - 2013-12-25 21:20 - 00000336 _____ C:\Windows\setupact.log

2013-12-25 21:37 - 2012-04-27 18:16 - 00000000 ___DC C:\ProgramData\NVIDIA

2013-12-25 21:37 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-12-25 21:25 - 2013-12-25 21:25 - 00100008 ____C C:\Users\Paddy\AppData\Local\GDIPFONTCACHEV1.DAT

2013-12-25 21:20 - 2013-12-25 21:20 - 03788504 _____ C:\Windows\system32\FNTCACHE.DAT

2013-12-25 21:20 - 2013-12-25 21:20 - 00000000 _____ C:\Windows\setuperr.log

2013-12-25 21:20 - 2012-04-27 18:11 - 00000000 ___DC C:\Users\Paddy

2013-12-25 21:19 - 2013-12-25 21:17 - 00002480 _____ C:\Windows\logboot_25.12.2013.tureg.log

2013-12-25 21:19 - 2009-07-14 03:03 - 45875200 _____ C:\Windows\system32\config\SOFTWARE_tureg_old

2013-12-25 21:19 - 2009-07-14 03:03 - 22806528 _____ C:\Windows\system32\config\SYSTEM_tureg_old

2013-12-25 21:19 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\SECURITY_tureg_old

2013-12-25 21:15 - 2009-07-14 03:03 - 29097984 _____ C:\Windows\system32\config\COMPONENTS_tureg_old

2013-12-25 21:14 - 2009-07-14 03:03 - 01048576 _____ C:\Windows\system32\config\DEFAULT_tureg_old

2013-12-25 20:44 - 2009-07-14 03:03 - 00024576 _____ C:\Windows\system32\config\SAM_tureg_old

2013-12-25 18:49 - 2012-05-16 20:37 - 00000000 ___DC C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games

2013-12-25 10:43 - 2012-04-27 18:38 - 00000000 ___DC C:\Program Files\McAfee

2013-12-25 10:37 - 2012-04-27 18:13 - 00365334 _____ C:\Windows\system32\PerfStringBackup.INI

2013-12-25 01:20 - 2012-04-27 18:39 - 00000000 __RSD C:\Users\Paddy\Documents\McAfee-Depots

2013-12-25 01:18 - 2012-04-27 18:38 - 00000000 ___DC C:\Program Files\Common Files\Mcafee

2013-12-25 01:18 - 2012-04-27 18:32 - 00000000 ___DC C:\ProgramData\McAfee

2013-12-25 00:50 - 2013-12-25 00:50 - 00001349 _____ C:\Users\Public\Desktop\EaseUS Partition Master 9.2.2.lnk

2013-12-25 00:50 - 2013-12-25 00:50 - 00000000 ___DC C:\Program Files\EaseUS

2013-12-24 21:33 - 2013-12-24 21:33 - 00000550 _____ C:\Windows\SWISV3.INI

2013-12-24 21:33 - 2013-12-24 21:33 - 00000308 _____ C:\Windows\SKNIFE.INI

2013-12-24 21:33 - 2013-12-24 21:33 - 00000000 ___DC C:\Program Files\SWISSKNIFE

2013-12-23 22:14 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public

2013-12-23 21:11 - 2013-12-23 21:11 - 00000000 ___DC C:\Users\Paddy\AppData\Local\McAfee File Lock

2013-12-23 21:09 - 2013-07-27 17:05 - 00000000 ___DC C:\ProgramData\TuneUp Software

2013-12-23 13:31 - 2013-03-31 16:11 - 00000000 ____D C:\Users\Paddy\Documents\18 WoS Extreme Trucker

2013-12-23 01:01 - 2013-09-11 16:48 - 00000000 ___DC C:\Users\Paddy\Desktop\Handy

2013-12-22 01:40 - 2012-04-27 18:55 - 00000000 ____D C:\Windows\Panther

2013-12-20 02:04 - 2012-04-28 16:59 - 00000000 ___DC C:\Users\Paddy\AppData\Roaming\vlc

2013-12-19 19:53 - 2013-12-19 19:53 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Avg2014

2013-12-19 18:37 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET

2013-12-19 17:16 - 2012-05-16 23:01 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Windows Live

2013-12-19 05:22 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache

2013-12-19 04:46 - 2013-11-04 17:08 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Overwolf

2013-12-19 04:43 - 2009-07-14 09:47 - 00000000 ____D C:\Windows\system32\Drivers\de-DE

2013-12-19 04:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE

2013-12-19 01:05 - 2013-12-19 00:58 - 00000000 _SHDC C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

2013-12-19 01:05 - 2013-11-12 01:04 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Downloaded Installations

2013-12-19 01:01 - 2013-12-19 00:59 - 00000000 ___DC C:\Program Files\TuneUp Utilities 2014

2013-12-19 01:00 - 2013-12-19 01:00 - 00002155 _____ C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk

2013-12-19 01:00 - 2013-12-19 01:00 - 00002135 _____ C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk

2013-12-19 01:00 - 2013-07-27 17:07 - 00000000 ___DC C:\Users\Paddy\AppData\Roaming\TuneUp Software

2013-12-19 00:37 - 2012-07-09 13:38 - 00000000 ___DC C:\Users\Paddy\Desktop\Programme

2013-12-13 03:31 - 2013-12-13 03:31 - 00000000 ___DC C:\Program Files\Common Files\Overwolf

2013-12-13 03:31 - 2013-11-04 17:20 - 00000000 ___DC C:\Program Files\Overwolf

2013-12-13 03:05 - 2009-07-14 03:04 - 00000499 _____ C:\Windows\win.ini

2013-12-13 03:04 - 2013-08-15 02:30 - 00000000 ____D C:\Windows\system32\MRT

2013-12-13 03:02 - 2012-05-02 10:03 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-12-12 23:07 - 2013-12-12 23:07 - 00000000 ____D C:\Users\Paddy\Downloads\Abschlepp-Simulator

2013-12-12 14:55 - 2012-11-23 14:49 - 00000000 ___DC C:\Program Files\Steam

2013-12-11 19:53 - 2012-04-27 19:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe

2013-12-11 19:53 - 2012-04-27 19:15 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

2013-12-10 23:18 - 2013-12-10 23:18 - 00002170 _____ C:\Users\Public\Desktop\Google Earth.lnk

2013-12-10 23:18 - 2013-02-21 16:45 - 00000000 ___DC C:\Program Files\Google

2013-12-10 20:53 - 2013-12-10 20:53 - 00000220 ____C C:\Users\Paddy\Desktop\Need for Speed™ SHIFT.lnk

2013-12-10 20:40 - 2013-12-10 20:40 - 00000000 ___DC C:\Program Files\Electronic Arts

2013-12-09 23:55 - 2013-12-09 23:17 - 00000000 ___DC C:\Program Files\Alawar

2013-12-09 23:19 - 2013-12-09 23:19 - 00000000 ___DC C:\Users\Paddy\AppData\Roaming\YoudaGames

2013-12-09 23:18 - 2013-12-09 23:18 - 00000000 ____D C:\Users\Public\Documents\AlawarWrapper

2013-12-09 23:18 - 2013-04-20 23:07 - 00000000 ___DC C:\ProgramData\AlawarWrapper

2013-12-09 23:17 - 2013-12-09 23:17 - 00001899 ____C C:\Users\Paddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alawar Games.lnk

2013-12-09 21:29 - 2013-12-09 21:29 - 00001343 _____ C:\Users\Public\Desktop\18 WoS Extreme Trucker.lnk

2013-12-09 21:29 - 2013-12-09 21:29 - 00000000 ___DC C:\Program Files\18 WoS Extreme Trucker

2013-12-09 20:02 - 2012-06-22 15:24 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Apps\2.0

2013-12-09 16:47 - 2013-09-03 00:41 - 00000000 ___DC C:\Riot Games

2013-12-05 17:29 - 2013-12-05 17:29 - 00000000 ___DC C:\Program Files\I.A.S

2013-12-04 17:04 - 2013-12-04 17:04 - 00000887 _____ C:\Users\Public\Desktop\GUILD WARS.lnk

2013-12-04 17:04 - 2013-12-04 17:04 - 00000000 ___DC C:\Program Files\GUILD WARS

2013-12-02 18:19 - 2013-12-02 18:19 - 00000000 ___DC C:\Program Files\AGEIA Technologies

2013-12-02 18:19 - 2012-07-12 20:41 - 00000000 ___DC C:\ProgramData\NVIDIA Corporation

2013-12-02 18:19 - 2012-07-12 20:40 - 00000000 ___DC C:\Program Files\NVIDIA Corporation

2013-12-02 17:58 - 2013-07-01 20:47 - 00000000 ___DC C:\Users\Paddy\AppData\Local\NVIDIA

2013-12-02 16:39 - 2013-12-02 16:39 - 00000000 ___DC C:\Users\Paddy\AppData\Local\NVIDIA Corporation

2013-12-01 18:13 - 2012-05-26 20:59 - 00000000 _SHDC C:\AI_RecycleBin

2013-12-01 18:13 - 2012-05-04 20:55 - 00000000 __SHD C:\Windows\system32\AI_RecycleBin

2013-11-29 23:59 - 2012-11-24 00:18 - 00000000 ___DC C:\Users\Paddy\AppData\Local\Google

2013-11-29 23:58 - 2013-11-15 11:38 - 00000000 ___DC C:\ProgramData\Google

2013-11-29 17:56 - 2013-12-02 16:39 - 00979744 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap.dll

2013-11-26 22:06 - 2013-11-26 22:06 - 00319808 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencbdc.sys

2013-11-26 22:06 - 2013-11-26 22:06 - 00080752 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencrk.sys

2013-11-26 22:06 - 2013-11-26 22:06 - 00010152 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeclnrk.sys

2013-11-26 11:36 - 2013-11-26 11:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-26 11:36 - 2013-11-26 11:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-26 11:36 - 2013-11-26 11:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-26 11:36 - 2013-11-26 11:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-26 11:36 - 2013-11-26 11:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-26 11:36 - 2013-11-26 11:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-26 11:11 - 2013-12-13 03:05 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-26 10:23 - 2013-12-13 03:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-26 10:22 - 2013-12-13 03:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-26 09:53 - 2013-12-13 03:05 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-26 09:52 - 2013-12-13 03:05 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-26 09:38 - 2013-12-13 03:05 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-26 09:38 - 2013-12-13 03:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-26 09:36 - 2013-12-13 03:05 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-26 09:32 - 2013-12-13 03:05 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-26 09:29 - 2013-12-13 03:05 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-26 09:29 - 2013-12-13 03:05 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-26 09:28 - 2013-12-13 03:05 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-26 09:16 - 2013-12-13 03:05 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-26 09:13 - 2013-12-13 03:05 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-26 08:32 - 2013-12-13 03:05 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-26 08:26 - 2013-12-13 03:05 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-26 07:34 - 2013-12-13 03:05 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-26 07:33 - 2013-12-13 03:05 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-26 07:27 - 2013-12-13 03:05 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
 

Files to move or delete:

====================

C:\Users\Paddy\AppData\Roaming\skype.ini

C:\ProgramData\dsgsdgdsgdsgw.pad
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-12-22 18:14
 

==================== End Of Log ============================
--- --- ---