| whiskeyboy9 | 05.09.2013 16:32 |
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-09-2013
Ran by bob at 2013-09-05 15:17:00
Running from C:\Users\bob\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
7 Days to Die - Alpha version 0.9.1 (x32 Version: 0.9.1)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)
Adobe Reader X MUI (x32 Version: 10.0.0)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.9.620)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AuthenTec TrueAPI (Version: 1.2.1.33)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Avira SearchFree Toolbar plus Web Protection (x32 Version: 12.2.2.663)
Beans IDE 7.3.1 (Version: 7.3.1)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95)
Big Rig Europe (x32 Version: 2.2.0.95)
Blasterball 3 (x32 Version: 2.2.0.95)
Bounce Symphony (x32 Version: 2.2.0.95)
Cake Mania (x32 Version: 2.2.0.95)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0723.1944.33607)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
Crazy Chicken Kart 2 (x32 Version: 2.2.0.95)
CyberLink PowerDVD 10 (x32 Version: 10.0.3.2714)
CyberLink YouCam (x32 Version: 3.5.1.3908)
D3DX10 (x32 Version: 15.4.2368.0902)
Dark Souls: Prepare to Die Edition (x32)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95)
Don't Starve (x32)
Driver Fusion (x32 Version: 1.7.0)
Dxtory version 2.0.122 (x32 Version: 2.0.122)
Energy Star Digital Logo (x32 Version: 1.0.1)
erLT (x32 Version: 1.20.0137)
ESU for Microsoft Windows 7 (x32 Version: 1.0.0)
Evernote v. 4.2.2 (x32 Version: 4.2.2.3979)
Fallout 3 (x32)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE (x32 Version: 2.2.0.95)
Fishdom (x32 Version: 2.2.0.95)
Google Chrome (x32 Version: 29.0.1547.62)
Google Update Helper (x32 Version: 1.3.21.153)
HP 3D DriveGuard (Version: 4.1.5.1)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Connection Manager (x32 Version: 4.0.45.1)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.0.0)
HP Games (x32 Version: 1.0.2.4)
HP On Screen Display (x32 Version: 1.1.2)
HP Power Manager (x32 Version: 1.2.3)
HP Quick Launch (x32 Version: 2.3.6)
HP Setup (x32 Version: 8.6.4530.3651)
HP Setup Manager (x32 Version: 1.1.13231.3673)
HP SimplePass 2011 (x32 Version: 5.1.0.495)
HP Software Framework (x32 Version: 4.0.110.1)
HP Support Assistant (x32 Version: 5.2.9.2)
HPAsset component for HP Active Support Library (x32 Version: 3.0.2.2)
IDT Audio (x32 Version: 1.0.6329.0)
Intel PROSet Wireless
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 1.0.2.0511)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.0.3000)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.2.1004)
Intel(R) Wireless Display
Intel(R) Wireless Display (x32 Version: 2.0.30.0)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250)
Java(TM) 6 Update 24 (64-bit) (Version: 6.0.240)
Jewel Quest Solitaire (x32 Version: 2.2.0.95)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Lagarith Lossless Codec (1.3.27) (x32)
League of Legends (x32 Version: 3.0.1)
Logitech SetPoint 5.20 (Version: 5.20)
LogMeIn Hamachi (x32 Version: 2.1.0.374)
Magic Desktop (x32 Version: 3.0)
Mah Jong Medley (x32 Version: 2.2.0.95)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
Mystery P.I. - The London Caper (x32 Version: 2.2.0.95)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95)
Pando Media Booster (x32 Version: 2.6.0.7)
Penguins! (x32 Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.95)
PowerXpressHybrid (x32 Version: 1.00.0000)
PX Profile Update (x32 Version: 1.00.1.)
Realtek Ethernet Controller Driver (x32 Version: 7.41.216.2011)
Realtek PCIE Card Reader (x32 Version: 6.1.7600.74)
Recovery Manager (x32 Version: 2.0.0)
Reise nach Nordland (x32)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0)
Rogue Legacy (x32)
Sid Meier's Civilization V (x32)
Skype™ 5.10 (x32 Version: 5.10.116)
Slingo Deluxe (x32 Version: 2.2.0.95)
Steam (x32 Version: 1.0.0.0)
Synaptics TouchPad Driver (Version: 15.3.29.0)
TeamSpeak 3 Client (Version: 3.0.11.1)
The Witcher 2: Assassins of Kings Enhanced Edition (x32)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update Installer for WildTangent Games App (x32)
User's Guides (Version: 1.20.0000)
Validity WBF DDK (Version: 4.3.118.0)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95)
Wedding Dash (x32 Version: 2.2.0.95)
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3508.1109)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Zuma Deluxe (x32 Version: 2.2.0.95)
==================== Restore Points =========================
02-09-2013 12:32:02 Windows Update
02-09-2013 20:01:40 DirectX wurde installiert
03-09-2013 10:46:32 DirectX wurde installiert
03-09-2013 21:23:12 DirectX wurde installiert
03-09-2013 21:24:21 Microsoft Visual C++ 2005 Redistributable wird installiert
03-09-2013 21:24:54 Installed Microsoft Games for Windows - LIVE Redistributable
03-09-2013 21:50:26 Installed LogMeIn Hamachi
03-09-2013 21:52:07 Installed 7-Zip 9.20 (x64 edition)
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {01029FCD-6FA3-4CCB-B20F-6C40C2D29E44} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {05E9565A-A224-475C-A66A-948D4CCFD1F1} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2011-01-31] ()
Task: {1B4DB995-010B-47F7-9FDC-F509F69A2A22} - System32\Tasks\HPCeeScheduleForbob => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {8F5C4235-FC64-4B0A-A98F-12798E8043E7} - System32\Tasks\User_Feed_Synchronization-{0658ACE6-D92E-420F-86AC-FEAE60DAFA34} => C:\Windows\system32\msfeedssync.exe [2013-07-13] (Microsoft Corporation)
Task: {A1A39DF7-2037-45EC-8B64-150F93B91AF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {AFE87DF5-97BC-44C7-9EF0-CEE24717DA78} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-08-20] (Microsoft)
Task: {BD7A7534-F51B-4579-AA75-E5E9177D3FF8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-01] (Adobe Systems Incorporated)
Task: {C384C9D9-C889-44D0-9D9F-E958A00704A5} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation)
Task: {D10F61FC-FAFD-4F1B-8861-F223C3E1F3A2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {E38F0F29-EFC4-468F-914C-6AC4914A76C3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {EA4365B5-657B-4B9C-B9D5-040ACE793BAE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {F023EFF1-A580-48A2-98A2-E7F7FEAFB320} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-08] (CyberLink)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForbob.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2013-07-13 17:33 - 2011-03-11 12:23 - 04642816 _____ (IDT, Inc.) C:\Program Files\IDT\WDM\STLang64.dll
2013-07-13 17:33 - 2011-03-11 12:23 - 00652288 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2010-12-17 04:26 - 2011-10-14 04:35 - 00415528 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2011-10-14 04:35 - 2011-10-14 04:35 - 00226600 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2011-10-14 04:35 - 2011-10-14 04:35 - 10584360 _____ (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPRes.dll
2011-02-04 15:42 - 2011-02-04 15:42 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2011-02-04 16:20 - 2011-02-04 16:20 - 01070080 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
2011-03-02 12:10 - 2011-03-02 12:10 - 00045568 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\DEU\FrWrkDEU.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 00817664 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
2011-03-02 12:25 - 2011-03-02 12:25 - 00006144 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\DEU\WiTrDEU.dll
2011-02-04 16:30 - 2011-02-04 16:30 - 01737728 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 01044992 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.DLL
2011-02-04 16:24 - 2011-02-04 16:24 - 01999872 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00234496 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.dll
2011-02-04 16:26 - 2011-02-04 16:26 - 01323008 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\MurocApi.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 00831488 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\IntStngs.dll
2011-02-04 16:27 - 2011-02-04 16:27 - 00464384 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PanApi.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00176640 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
2011-03-02 12:18 - 2011-03-02 12:18 - 00096768 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\LangResources\DEU\PanTrDEU.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00846336 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\DbEngine.dll
2013-07-13 17:30 - 2011-01-27 18:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2013-07-13 17:30 - 2011-01-27 18:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-02-15 15:48 - 2011-02-15 15:48 - 00709688 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.dll
2011-02-15 15:53 - 2011-02-15 15:53 - 01919032 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpUIFramework.dll
2011-02-15 15:48 - 2011-02-15 15:48 - 00054840 _____ (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Shared.dll
2011-02-15 15:45 - 2011-02-15 15:45 - 00229376 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Resource.dll
2011-03-31 16:02 - 2011-03-31 16:02 - 00869888 _____ (HP) C:\Windows\assembly\GAC_MSIL\HP.SupportFramework\1.0.0.0__2a4860322af7ba08\HP.SupportFramework.dll
2011-02-15 15:53 - 2011-02-15 15:53 - 00063032 _____ ( ) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\Interop.hpCMSrv.dll
2011-02-15 15:49 - 2011-02-15 15:49 - 00112184 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\de\HP.Mobile.Resource.resources.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 01744200 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00379720 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\BioLayer.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00179528 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\TSLog.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00353096 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\TokenMachine.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00211880 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\jp2ssv.dll
2013-08-01 11:23 - 2013-08-01 11:23 - 22633864 ____R (Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\Flash64_11_8_800_94.ocx
2011-02-17 22:47 - 2011-02-17 22:47 - 00265544 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\DataManager.dll
2011-02-16 03:50 - 2011-02-16 03:50 - 06032712 _____ (AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueAPI.dll
2013-07-31 18:10 - 2013-08-28 23:47 - 00288680 _____ (Valve Corporation) C:\Program Files (x86)\Steam\crashhandler.dll
2013-07-15 14:32 - 2013-07-16 00:32 - 02895272 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steam.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 10654632 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamui.dll
2013-07-01 08:20 - 2013-08-22 00:18 - 00687104 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00263080 _____ (Valve Corporation) C:\Program Files (x86)\Steam\tier0_s.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00236456 _____ (Valve Corporation) C:\Program Files (x86)\Steam\vstdlib_s.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00122864 _____ (Valve) C:\Program Files (x86)\Steam\CSERHelper.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00169384 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\filesystem_stdio.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 00694696 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\vgui2_s.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 01120680 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-07-15 14:32 - 2013-08-07 21:31 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 09955112 _____ (The ICU Project) C:\Program Files (x86)\Steam\bin\icudt.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 07745960 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamclient.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 02449832 _____ (Valve Corporation) c:\program files (x86)\steam\bin\friendsui.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 01804712 _____ (Valve Corporation) c:\program files (x86)\steam\bin\serverbrowser.DLL
2010-11-21 05:24 - 2010-11-21 05:24 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2009-07-14 01:51 - 2009-07-14 03:14 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vidcap.ax
2010-11-21 05:24 - 2010-11-21 05:24 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kswdmcap.ax
2013-08-28 13:05 - 2010-12-17 23:34 - 00273408 _____ (Dxtory Software) C:\Program Files (x86)\Dxtory Software\Dxtory2.0\DxtoryVideo.dll
2013-08-01 11:23 - 2013-08-01 11:23 - 16230792 ____R (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_94.ocx
2013-08-17 11:35 - 2013-08-17 11:35 - 00475648 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\6c1d55eed243331c944206f8608fb850\IAStorUtil.ni.dll
2013-08-08 16:10 - 2013-08-08 16:10 - 00014336 _____ (Intel Corp.) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\571f0babf15ab38dc80829622caa99d3\IAStorCommon.ni.dll
2010-11-17 19:52 - 2010-11-17 19:52 - 00096904 _____ (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2011-02-28 15:06 - 2011-02-28 15:06 - 00797240 _____ (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hputils.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00055352 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cfglib.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00349752 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccguard.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00029240 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00229432 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdw.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00419384 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrd.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00027192 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrdrc.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00127544 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrdw.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00807992 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgen.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00049720 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgenrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00220216 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdate.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00028728 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00083000 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclic.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00009784 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclicrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00237624 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsg.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00010296 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsgrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00014392 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmainrc.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00218168 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpipc.dll
2011-03-31 15:59 - 2011-03-31 15:59 - 00052920 _____ (EasyBits Software Corp.) C:\Windows\SysWow64\EZUPBH~1.DLL
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/05/2013 03:16:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x12ac
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:15:42 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 844
Startzeit: 01ceaa39ca777360
Endzeit: 16
Anwendungspfad: C:\Users\bob\Desktop\FRST64.exe
Berichts-ID:
Error: (09/05/2013 03:15:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0xe44
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:14:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x498
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:13:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x15dc
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:11:14 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (09/05/2013 03:10:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/04/2013 09:51:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x15c8
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/04/2013 09:50:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x8f8
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/04/2013 09:49:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x9bc
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
System errors:
=============
Error: (09/05/2013 03:16:52 PM) (Source: DCOM) (User: )
Description: {2A8DDB1F-EE72-4FB7-A2F8-7B1530D94850}
Error: (09/05/2013 03:16:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (09/05/2013 03:15:52 PM) (Source: DCOM) (User: )
Description: {000098D5-6857-477B-B1D2-8B04CD9EB234}
Error: (09/05/2013 03:15:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (09/05/2013 03:14:52 PM) (Source: DCOM) (User: )
Description: {DCF1FC65-DA3B-404B-B4CC-BF8669E4947C}
Error: (09/05/2013 03:14:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 2 Mal passiert.
Error: (09/05/2013 03:13:50 PM) (Source: DCOM) (User: )
Description: {24DB46C8-C842-4E91-9AC4-8A9525A5551D}
Error: (09/05/2013 03:13:24 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/04/2013 09:52:24 PM) (Source: DCOM) (User: )
Description: {2A8DDB1F-EE72-4FB7-A2F8-7B1530D94850}
Error: (09/04/2013 09:51:54 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Microsoft Office Sessions:
=========================
Error: (09/05/2013 03:16:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f12ac01ceaa3a0c1cf8a1C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll5bb0e16a-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:15:42 PM) (Source: Application Hang)(User: )
Description: FRST64.exe0.0.0.084401ceaa39ca77736016C:\Users\bob\Desktop\FRST64.exe
Error: (09/05/2013 03:15:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41fe4401ceaa39e85378a7C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll37eaff37-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:14:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f49801ceaa39c48a24c2C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll141e8cd6-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:13:23 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f15dc01ceaa399f365d2eC:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dllf0e60835-162c-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:11:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bob\Desktop\virus bekämpfungs tools\esetsmartinstaller_enu.exe
Error: (09/05/2013 03:10:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/04/2013 09:51:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f15c801cea9a822943da3C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll72288aaa-159b-11e3-afd7-ac7289793ea1
Error: (09/04/2013 09:50:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f8f801cea9a7fecc52d4C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll4e655adc-159b-11e3-afd7-ac7289793ea1
Error: (09/04/2013 09:49:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f9bc01cea9a7db0419e3C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll2a98b50b-159b-11e3-afd7-ac7289793ea1
CodeIntegrity Errors:
===================================
Date: 2013-08-28 18:10:32.102
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-08-28 18:10:32.071
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 32%
Total physical RAM: 8139.86 MB
Available physical RAM: 5498.13 MB
Total Pagefile: 16277.9 MB
Available Pagefile: 13448.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:683.02 GB) (Free:583.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:15.32 GB) (Free:1.67 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: E21A8B36)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=683 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
==================== End Of Log ============================
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-09-2013
Ran by bob (administrator) on BOB-HP on 05-09-2013 15:16:09
Running from C:\Users\bob\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Logitech Inc.) C:\Program Files\Logitech\SetPoint II\SetPointII.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelWireless] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-02-04] (Intel(R) Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1811880 2013-08-28] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [17418928 2012-07-13] (Skype Technologies S.A.)
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-02-15] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [586296 2010-11-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [x]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetPointII.lnk
ShortcutTarget: SetPointII.lnk -> C:\Program Files\Logitech\SetPoint II\SetPointII.exe (Logitech Inc.)
Startup: C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
ShortcutTarget: Logitech . Produktregistrierung.lnk -> C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe (Leader Technologies/Logitech)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {20F6E0BA-D9AE-43EA-A258-276EF4814812} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-03-31] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\bob\AppData\Roaming\Mozilla\Firefox\Profiles\qucri2eo.default
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll No File
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
Chrome:
=======
CHR HomePage: hxxp://www.youtube.com/?gl=DE&hl=de
CHR RestoreOnStartup: "https://www.youtube.com/feed/subscriptions"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Google Docs) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Facebook Disconnect) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.3.0_0
CHR Extension: (AdBlock) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Don't Starve) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc\1.0.0.37_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-01-25] (CyberLink)
S4 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-02-04] ()
S4 APNMCP; "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe" [x]
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-07-31] (Avira Operations GmbH & Co. KG)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-05 15:14 - 2013-09-05 15:14 - 01947160 _____ (Farbar) C:\Users\bob\Desktop\FRST64.exe.kvietxr.partial
2013-09-05 15:12 - 2013-09-05 15:12 - 96044050 _____ C:\Windows\SysWOW64\鷗厷蹬L
2013-09-03 23:56 - 2013-09-03 23:56 - 00001073 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-09-03 23:56 - 2013-09-03 23:56 - 00000000 ___HD C:\Windows\PIF
2013-09-03 23:55 - 2013-09-03 23:56 - 00000000 ____D C:\Program Files (x86)\7DaysToDie-Alpha
2013-09-03 23:54 - 2013-09-03 23:57 - 00000000 ____D C:\Users\bob\Downloads\Crack
2013-09-03 23:54 - 2013-08-17 13:36 - 00000123 _____ C:\Users\bob\Downloads\Readme.txt
2013-09-03 23:54 - 2013-08-17 12:37 - 314134331 _____ (The Fun Pimps LLC ) C:\Users\bob\Downloads\7DTD_Alpha1_win32.exe
2013-09-03 23:53 - 2013-09-03 23:53 - 00000000 ____D C:\Users\bob\Downloads\7 Days To Die - Alpha1
2013-09-03 23:52 - 2013-09-03 23:52 - 01376768 _____ C:\Users\bob\Downloads\7z920-x64.msi
2013-09-03 23:52 - 2013-09-03 23:52 - 00000000 ____D C:\Program Files\7-Zip
2013-09-03 23:51 - 2013-09-05 15:10 - 00000000 ____D C:\Users\bob\AppData\Local\LogMeIn Hamachi
2013-09-03 23:51 - 2013-09-03 23:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-09-03 23:51 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-09-03 23:50 - 2013-09-03 23:50 - 04292608 _____ C:\Users\bob\Downloads\hamachi_2.1.0.362.msi
2013-09-03 23:46 - 2013-09-03 23:50 - 209715200 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part1.rar
2013-09-03 23:46 - 2013-09-03 23:49 - 105230808 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part2.rar
2013-09-03 23:25 - 2013-09-03 23:25 - 00000000 ____D C:\Users\bob\AppData\Local\Fallout3
2013-09-02 22:03 - 2013-09-03 23:23 - 00000000 ____D C:\Users\bob\Documents\My Games
2013-09-02 22:03 - 2013-09-03 12:48 - 00000000 ____D C:\Users\bob\AppData\Local\My Games
2013-09-02 18:01 - 2013-09-02 18:01 - 00000000 ____D C:\Users\bob\AppData\Local\Mozilla
2013-09-02 18:00 - 2013-09-02 18:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-02 14:43 - 2013-09-02 14:43 - 00000000 ____D C:\HP_TOOLS_mountHPSF
2013-09-02 14:32 - 2013-09-02 14:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-02 14:26 - 2013-09-02 14:26 - 00000000 ____D C:\Users\bob\AppData\Local\LogiShrd
2013-09-02 14:23 - 2013-09-02 14:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\Leadertech
2013-09-02 14:22 - 2013-09-02 14:22 - 00003563 _____ C:\Windows\LDPINST.LOG
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Users\Public\Documents\LogiShrd
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Logitech
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Common Files\Logishrd
2013-09-02 14:21 - 2013-09-02 14:22 - 01121848 _____ C:\Windows\SetPointII_000.log
2013-09-02 14:21 - 2013-09-02 14:22 - 00000000 ____D C:\ProgramData\LogiShrd
2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\bob\AppData\Local\Downloaded Installations
2013-09-02 08:05 - 2013-09-05 15:15 - 00000000 ____D C:\Users\bob\Desktop\virus bekämpfungs tools
2013-09-01 18:52 - 2013-09-05 15:16 - 00000000 ____D C:\Users\bob\AppData\Roaming\Skype
2013-09-01 18:52 - 2013-09-02 14:32 - 00000000 ____D C:\ProgramData\Skype
2013-09-01 18:23 - 2013-09-01 18:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\LolClient
2013-09-01 16:07 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\.minecraft
2013-09-01 16:02 - 2013-09-01 17:24 - 00000000 ____D C:\Users\bob\Downloads\Direwolf20
2013-09-01 16:01 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\ftblauncher
2013-09-01 16:00 - 2013-09-01 16:00 - 00512825 _____ () C:\Users\bob\Desktop\FTB_Launcher.exe
2013-09-01 15:58 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-09-01 15:58 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-09-01 15:58 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-09-01 15:57 - 2013-09-01 15:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-09-01 15:55 - 2013-09-01 15:55 - 00000000 ____D C:\Users\bob\AppData\Local\Evernote
2013-09-01 15:35 - 2013-09-01 15:35 - 00000000 ____D C:\Users\bob\unifl_registry_backup
2013-09-01 15:31 - 2013-09-01 15:31 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-09-01 15:29 - 2013-09-01 15:29 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-09-01 15:26 - 2013-09-01 15:26 - 00000000 ____D C:\Program Files\ATI
2013-09-01 15:25 - 2013-09-01 15:28 - 00000000 ____D C:\Program Files\ATI Technologies
2013-09-01 15:19 - 2013-03-29 05:37 - 01155264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00970912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00139696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00118584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00112440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00092304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 08272136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 07233336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 06985624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 05944264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 05000320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 04450264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2013-09-01 15:19 - 2013-03-29 05:35 - 11658752 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-09-01 15:19 - 2013-03-29 05:13 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00076288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2013-09-01 15:19 - 2013-03-29 05:13 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2013-09-01 15:19 - 2013-03-29 05:12 - 29150720 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2013-09-01 15:19 - 2013-03-29 05:10 - 23810560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2013-09-01 15:19 - 2013-03-29 05:04 - 24229376 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2013-09-01 15:19 - 2013-03-29 04:59 - 00522872 _____ C:\Windows\SysWOW64\atiapfxx.blb
2013-09-01 15:19 - 2013-03-29 04:59 - 00522872 _____ C:\Windows\system32\atiapfxx.blb
2013-09-01 15:19 - 2013-03-29 04:57 - 00163840 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-09-01 15:19 - 2013-03-29 04:55 - 16082944 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2013-09-01 15:19 - 2013-03-29 04:51 - 13703168 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2013-09-01 15:19 - 2013-03-29 04:48 - 19870720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2013-09-01 15:19 - 2013-03-29 04:38 - 03309936 _____ C:\Windows\system32\atiumd6a.cap
2013-09-01 15:19 - 2013-03-29 04:38 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-09-01 15:19 - 2013-03-29 04:35 - 00562688 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-09-01 15:19 - 2013-03-29 04:35 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2013-09-01 15:19 - 2013-03-29 04:34 - 00241152 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-09-01 15:19 - 2013-03-29 04:33 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00026112 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-09-01 15:19 - 2013-03-29 04:24 - 03342768 _____ C:\Windows\SysWOW64\atiumdva.cap
2013-09-01 15:19 - 2013-03-29 04:10 - 00636416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00430080 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00044032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00017920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2013-09-01 15:19 - 2013-03-29 04:09 - 00581120 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-09-01 15:19 - 2013-03-29 04:09 - 00034816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2013-09-01 15:19 - 2013-03-29 04:07 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-09-01 15:19 - 2013-03-12 08:38 - 00695006 _____ C:\Windows\system32\atiicdxx.dat
2013-09-01 15:19 - 2013-03-04 21:52 - 00230836 _____ C:\Windows\system32\ativvaxy_cik.dat
2013-09-01 15:19 - 2013-02-27 21:08 - 00044066 _____ C:\Windows\atiogl.xml
2013-09-01 15:19 - 2012-11-22 18:14 - 00230064 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2013-09-01 15:19 - 2011-09-13 01:06 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat
2013-09-01 15:19 - 2011-09-13 01:06 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-09-01 14:50 - 2013-09-01 14:50 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-01 14:49 - 2013-09-01 15:11 - 00000000 ____D C:\Program Files (x86)\Driver Fusion
2013-09-01 14:49 - 2013-09-01 14:49 - 00000000 ____D C:\Users\bob\AppData\Roaming\OpenCandy
2013-09-01 14:39 - 2013-09-01 14:39 - 339266608 _____ (leshcat ) C:\Users\bob\Desktop\Catalyst_13.4_WHQL_UnifL_v2.exe
2013-09-01 14:20 - 2013-09-01 15:57 - 00000000 __SHD C:\AI_RecycleBin
2013-09-01 14:20 - 2013-09-01 14:20 - 00000000 ____D C:\Riot Games
2013-09-01 14:17 - 2013-09-04 22:38 - 00000000 ____D C:\Users\bob\AppData\Local\PMB Files
2013-09-01 14:17 - 2013-09-04 22:01 - 00000000 ____D C:\ProgramData\PMB Files
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-08-30 20:10 - 2013-08-30 22:48 - 00000000 ____D C:\Users\bob\Documents\Witcher 2
2013-08-30 20:10 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\AppData\Local\The Witcher 2
2013-08-29 18:22 - 2013-08-29 18:22 - 417789012 _____ C:\Windows\MEMORY.DMP
2013-08-29 18:22 - 2013-08-29 18:22 - 00266288 _____ C:\Windows\Minidump\082913-25802-01.dmp
2013-08-29 18:22 - 2013-08-29 18:22 - 00000000 ____D C:\Windows\Minidump
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\ProgramData\AMD
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-08-28 18:09 - 2013-03-29 05:13 - 00222720 _____ C:\Windows\system32\clinfo.exe
2013-08-28 18:09 - 2013-03-29 05:13 - 00064000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2013-08-28 18:09 - 2013-03-29 05:12 - 00056320 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2013-08-28 18:09 - 2013-03-29 05:09 - 00054784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-08-28 18:09 - 2013-03-29 05:09 - 00050176 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-08-28 18:09 - 2013-03-29 05:00 - 00076800 _____ (AMD) C:\Windows\system32\coinst_12.104.dll
2013-08-28 18:08 - 2013-02-01 03:14 - 00075600 _____ C:\Windows\system32\ativce02.dat
2013-08-28 17:52 - 2013-08-29 17:49 - 01592836 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-08-28 17:29 - 2013-08-28 17:29 - 00000000 ____D C:\ProgramData\Synaptics
2013-08-28 13:57 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-08-28 13:57 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-08-28 13:57 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-08-28 13:57 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-08-28 13:57 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-08-28 13:57 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-08-28 13:57 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-08-28 13:57 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-08-28 13:57 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-08-28 13:57 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-08-28 13:57 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-08-28 13:57 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-08-28 13:57 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-08-28 13:57 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-08-28 13:57 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-08-28 13:57 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-08-28 13:57 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-08-28 13:57 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-08-28 13:57 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-08-28 13:57 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-08-28 13:57 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-08-28 13:57 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-08-28 13:57 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-28 13:57 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-08-28 13:57 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-08-28 13:55 - 2013-08-28 13:57 - 00000000 ____D C:\Windows\system32\MRT
2013-08-28 13:55 - 2013-08-05 16:14 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-28 13:47 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-28 13:47 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-28 13:47 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-28 13:47 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-28 13:47 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-28 13:47 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-28 13:47 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-28 13:47 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-28 13:47 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-28 13:47 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-28 13:47 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-28 13:47 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-08-28 13:47 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-08-28 13:47 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-08-28 13:47 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-08-28 13:47 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-08-28 13:47 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-08-28 13:47 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-08-28 13:47 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-08-28 13:47 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-08-28 13:38 - 2013-03-22 09:39 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-08-28 13:38 - 2013-03-09 05:10 - 00080384 _____ C:\Windows\system32\igdde64.dll
2013-08-28 13:38 - 2013-03-09 05:10 - 00064512 _____ C:\Windows\SysWOW64\igdde32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00963452 _____ C:\Windows\SysWOW64\igcodeckrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00963452 _____ C:\Windows\system32\igcodeckrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00272928 _____ C:\Windows\SysWOW64\igvpkrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00272928 _____ C:\Windows\system32\igvpkrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp
2013-08-28 13:38 - 2013-03-09 05:06 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp
2013-08-28 13:38 - 2013-03-09 05:06 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp
2013-08-28 13:38 - 2011-01-27 18:24 - 00335872 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2013-08-28 13:38 - 2011-01-27 18:23 - 00385024 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2013-08-28 13:10 - 2013-08-28 13:10 - 00715038 _____ C:\Windows\unins000.exe
2013-08-28 13:10 - 2013-08-28 13:10 - 00001986 _____ C:\Windows\unins000.dat
2013-08-28 13:10 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2013-08-28 13:10 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Roaming\NetBeans
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Local\NetBeans
2013-08-28 13:07 - 2013-08-28 13:07 - 00000000 ____D C:\Users\bob\Documents\Let's Play
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Users\bob\AppData\Local\Dxtory Software
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2013-08-28 13:05 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\Windows\SysWOW64\DxtoryCodec.dll
2013-08-28 13:05 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\Windows\system32\DxtoryCodec.dll
2013-08-28 12:46 - 2013-08-28 12:48 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-28 12:21 - 2013-08-28 12:21 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-08-28 12:12 - 2013-08-28 13:06 - 00000000 ____D C:\Users\bob\.nbi
2013-08-27 15:45 - 2013-08-30 15:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\Rogue Legacy
2013-08-27 15:45 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\Documents\SavedGames
2013-08-27 15:44 - 2013-08-27 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-25 21:18 - 2013-08-25 21:18 - 00000000 ____D C:\Users\bob\Documents\Klei
2013-08-19 11:38 - 2013-09-02 14:36 - 00000324 _____ C:\Windows\Tasks\HPCeeScheduleForbob.job
2013-08-19 11:38 - 2013-09-02 14:20 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForbob
2013-08-19 11:38 - 2013-08-19 11:48 - 00000000 ____D C:\Program Files (x86)\Reise nach Nordland
2013-08-19 11:38 - 1998-10-21 18:43 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\Public\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\Documents\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\AppData\Roaming\CyberLink
2013-08-18 16:30 - 2013-08-18 16:33 - 00000000 ____D C:\Users\bob\Desktop\Camera
2013-08-18 16:25 - 2013-08-18 16:27 - 00000000 ____D C:\Users\bob\Desktop\Images
2013-08-18 16:24 - 2013-08-18 16:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-08-17 10:49 - 2013-07-25 05:54 - 17830400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-17 10:49 - 2013-07-25 05:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-17 10:49 - 2013-07-25 05:35 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-17 10:49 - 2013-07-25 05:31 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-17 10:49 - 2013-07-25 05:30 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-17 10:49 - 2013-07-25 05:29 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-17 10:49 - 2013-07-25 05:29 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-17 10:49 - 2013-07-25 05:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-17 10:49 - 2013-07-25 05:27 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-17 10:49 - 2013-07-25 05:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-17 10:49 - 2013-07-25 05:26 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-17 10:49 - 2013-07-25 04:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-17 10:49 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-17 10:49 - 2013-07-25 04:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-17 10:49 - 2013-07-25 04:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-17 10:49 - 2013-07-25 04:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-17 10:49 - 2013-07-25 04:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-17 10:49 - 2013-07-25 04:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-17 10:49 - 2013-07-25 04:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-17 10:49 - 2013-07-25 04:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-17 10:49 - 2013-07-25 04:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-17 10:49 - 2013-07-25 04:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-16 14:34 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-16 14:34 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-16 14:34 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-16 14:34 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-16 14:33 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-16 14:33 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-16 14:33 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-16 14:33 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-16 14:33 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-16 14:33 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-16 14:25 - 2013-09-05 15:10 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-16 14:25 - 2013-09-04 22:30 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-16 14:25 - 2013-08-16 14:25 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-08-16 14:25 - 2013-08-16 14:25 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 20:56 - 2013-08-12 21:05 - 00000000 ____D C:\Qoobox
2013-08-12 20:56 - 2013-08-12 21:04 - 00000000 ____D C:\Windows\erdnt
2013-08-12 20:56 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-08-12 20:56 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-08-12 20:56 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-08-12 12:18 - 2013-08-26 20:29 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:29 - 2013-08-16 14:25 - 00000000 ____D C:\Program Files (x86)\Google
==================== One Month Modified Files and Folders =======
2013-09-05 15:16 - 2013-09-01 18:52 - 00000000 ____D C:\Users\bob\AppData\Roaming\Skype
2013-09-05 15:15 - 2013-09-02 08:05 - 00000000 ____D C:\Users\bob\Desktop\virus bekämpfungs tools
2013-09-05 15:15 - 2013-07-13 17:34 - 01453633 _____ C:\Windows\WindowsUpdate.log
2013-09-05 15:14 - 2013-09-05 15:14 - 01947160 _____ (Farbar) C:\Users\bob\Desktop\FRST64.exe.kvietxr.partial
2013-09-05 15:12 - 2013-09-05 15:12 - 96044050 _____ C:\Windows\SysWOW64\鷗厷蹬L
2013-09-05 15:11 - 2013-07-31 18:10 - 00000000 ____D C:\Program Files (x86)\Steam
2013-09-05 15:10 - 2013-09-03 23:51 - 00000000 ____D C:\Users\bob\AppData\Local\LogMeIn Hamachi
2013-09-05 15:10 - 2013-08-16 14:25 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-05 15:10 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-05 15:10 - 2009-07-14 06:51 - 00052474 _____ C:\Windows\setupact.log
2013-09-04 22:38 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Local\PMB Files
2013-09-04 22:38 - 2013-07-31 18:56 - 00000000 ____D C:\Users\bob\AppData\Roaming\TS3Client
2013-09-04 22:30 - 2013-08-16 14:25 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-04 22:01 - 2013-09-01 14:17 - 00000000 ____D C:\ProgramData\PMB Files
2013-09-04 21:53 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-04 21:53 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-04 21:43 - 2013-08-01 11:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-04 18:39 - 2013-07-13 19:17 - 00000000 ___RD C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-04 17:28 - 2013-07-13 19:17 - 00003914 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{0658ACE6-D92E-420F-86AC-FEAE60DAFA34}
2013-09-04 13:27 - 2013-08-01 20:49 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-04 13:27 - 2013-07-31 19:34 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-04 13:27 - 2013-07-31 19:34 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-03 23:57 - 2013-09-03 23:54 - 00000000 ____D C:\Users\bob\Downloads\Crack
2013-09-03 23:56 - 2013-09-03 23:56 - 00001073 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-09-03 23:56 - 2013-09-03 23:56 - 00000000 ___HD C:\Windows\PIF
2013-09-03 23:56 - 2013-09-03 23:55 - 00000000 ____D C:\Program Files (x86)\7DaysToDie-Alpha
2013-09-03 23:53 - 2013-09-03 23:53 - 00000000 ____D C:\Users\bob\Downloads\7 Days To Die - Alpha1
2013-09-03 23:52 - 2013-09-03 23:52 - 01376768 _____ C:\Users\bob\Downloads\7z920-x64.msi
2013-09-03 23:52 - 2013-09-03 23:52 - 00000000 ____D C:\Program Files\7-Zip
2013-09-03 23:51 - 2013-09-03 23:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-09-03 23:50 - 2013-09-03 23:50 - 04292608 _____ C:\Users\bob\Downloads\hamachi_2.1.0.362.msi
2013-09-03 23:50 - 2013-09-03 23:46 - 209715200 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part1.rar
2013-09-03 23:49 - 2013-09-03 23:46 - 105230808 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part2.rar
2013-09-03 23:25 - 2013-09-03 23:25 - 00000000 ____D C:\Users\bob\AppData\Local\Fallout3
2013-09-03 23:24 - 2011-03-31 15:53 - 00186487 _____ C:\Windows\DirectX.log
2013-09-03 23:23 - 2013-09-02 22:03 - 00000000 ____D C:\Users\bob\Documents\My Games
2013-09-03 12:48 - 2013-09-02 22:03 - 00000000 ____D C:\Users\bob\AppData\Local\My Games
2013-09-03 12:12 - 2013-07-31 18:27 - 00000000 ____D C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-09-02 18:01 - 2013-09-02 18:01 - 00000000 ____D C:\Users\bob\AppData\Local\Mozilla
2013-09-02 18:01 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-02 18:01 - 2013-07-31 19:35 - 00000000 ____D C:\Users\bob\AppData\Roaming\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-02 16:13 - 2013-07-13 19:17 - 00001409 _____ C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-02 14:43 - 2013-09-02 14:43 - 00000000 ____D C:\HP_TOOLS_mountHPSF
2013-09-02 14:36 - 2013-08-19 11:38 - 00000324 _____ C:\Windows\Tasks\HPCeeScheduleForbob.job
2013-09-02 14:32 - 2013-09-02 14:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-02 14:32 - 2013-09-01 18:52 - 00000000 ____D C:\ProgramData\Skype
2013-09-02 14:26 - 2013-09-02 14:26 - 00000000 ____D C:\Users\bob\AppData\Local\LogiShrd
2013-09-02 14:23 - 2013-09-02 14:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\Leadertech
2013-09-02 14:22 - 2013-09-02 14:22 - 00003563 _____ C:\Windows\LDPINST.LOG
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Users\Public\Documents\LogiShrd
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Logitech
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Common Files\Logishrd
2013-09-02 14:22 - 2013-09-02 14:21 - 01121848 _____ C:\Windows\SetPointII_000.log
2013-09-02 14:22 - 2013-09-02 14:21 - 00000000 ____D C:\ProgramData\LogiShrd
2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\bob\AppData\Local\Downloaded Installations
2013-09-02 14:20 - 2013-08-19 11:38 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForbob
2013-09-02 09:45 - 2013-07-13 19:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\hpqLog
2013-09-01 18:23 - 2013-09-01 18:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\LolClient
2013-09-01 17:24 - 2013-09-01 16:02 - 00000000 ____D C:\Users\bob\Downloads\Direwolf20
2013-09-01 16:07 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\.minecraft
2013-09-01 16:07 - 2013-09-01 16:01 - 00000000 ____D C:\Users\bob\AppData\Roaming\ftblauncher
2013-09-01 16:00 - 2013-09-01 16:00 - 00512825 _____ () C:\Users\bob\Desktop\FTB_Launcher.exe
2013-09-01 15:57 - 2013-09-01 15:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-09-01 15:57 - 2013-09-01 14:20 - 00000000 __SHD C:\AI_RecycleBin
2013-09-01 15:55 - 2013-09-01 15:55 - 00000000 ____D C:\Users\bob\AppData\Local\Evernote
2013-09-01 15:50 - 2013-07-13 17:46 - 00000000 ____D C:\ProgramData\Norton
2013-09-01 15:50 - 2010-11-21 05:47 - 00433662 _____ C:\Windows\PFRO.log
2013-09-01 15:35 - 2013-09-01 15:35 - 00000000 ____D C:\Users\bob\unifl_registry_backup
2013-09-01 15:35 - 2013-07-13 19:13 - 00000000 ____D C:\Users\bob
2013-09-01 15:31 - 2013-09-01 15:31 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-09-01 15:29 - 2013-09-01 15:29 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-09-01 15:28 - 2013-09-01 15:25 - 00000000 ____D C:\Program Files\ATI Technologies
2013-09-01 15:26 - 2013-09-01 15:26 - 00000000 ____D C:\Program Files\ATI
2013-09-01 15:11 - 2013-09-01 14:49 - 00000000 ____D C:\Program Files (x86)\Driver Fusion
2013-09-01 15:11 - 2013-07-13 19:41 - 00000000 ____D C:\Users\bob\AppData\Local\CrashDumps
2013-09-01 14:56 - 2013-07-13 19:38 - 00000000 ____D C:\Users\bob\AppData\Roaming\ATI
2013-09-01 14:56 - 2013-07-13 19:38 - 00000000 ____D C:\Users\bob\AppData\Local\ATI
2013-09-01 14:56 - 2013-07-13 17:31 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-09-01 14:50 - 2013-09-01 14:50 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-01 14:49 - 2013-09-01 14:49 - 00000000 ____D C:\Users\bob\AppData\Roaming\OpenCandy
2013-09-01 14:39 - 2013-09-01 14:39 - 339266608 _____ (leshcat ) C:\Users\bob\Desktop\Catalyst_13.4_WHQL_UnifL_v2.exe
2013-09-01 14:20 - 2013-09-01 14:20 - 00000000 ____D C:\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-08-30 22:48 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\Documents\Witcher 2
2013-08-30 20:10 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\AppData\Local\The Witcher 2
2013-08-30 15:07 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\AppData\Roaming\Rogue Legacy
2013-08-29 18:22 - 2013-08-29 18:22 - 417789012 _____ C:\Windows\MEMORY.DMP
2013-08-29 18:22 - 2013-08-29 18:22 - 00266288 _____ C:\Windows\Minidump\082913-25802-01.dmp
2013-08-29 18:22 - 2013-08-29 18:22 - 00000000 ____D C:\Windows\Minidump
2013-08-29 17:49 - 2013-08-28 17:52 - 01592836 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-08-29 17:49 - 2011-04-01 01:25 - 00699162 _____ C:\Windows\system32\perfh007.dat
2013-08-29 17:49 - 2011-04-01 01:25 - 00149270 _____ C:\Windows\system32\perfc007.dat
2013-08-29 17:49 - 2009-07-14 07:13 - 01592836 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-28 20:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\ProgramData\AMD
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-08-28 18:06 - 2013-07-13 17:29 - 00000000 ____D C:\Program Files (x86)\Intel
2013-08-28 17:29 - 2013-08-28 17:29 - 00000000 ____D C:\ProgramData\Synaptics
2013-08-28 17:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-08-28 13:57 - 2013-08-28 13:55 - 00000000 ____D C:\Windows\system32\MRT
2013-08-28 13:10 - 2013-08-28 13:10 - 00715038 _____ C:\Windows\unins000.exe
2013-08-28 13:10 - 2013-08-28 13:10 - 00001986 _____ C:\Windows\unins000.dat
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Roaming\NetBeans
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Local\NetBeans
2013-08-28 13:07 - 2013-08-28 13:07 - 00000000 ____D C:\Users\bob\Documents\Let's Play
2013-08-28 13:06 - 2013-08-28 12:12 - 00000000 ____D C:\Users\bob\.nbi
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Users\bob\AppData\Local\Dxtory Software
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2013-08-28 12:48 - 2013-08-28 12:46 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-28 12:21 - 2013-08-28 12:21 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-08-28 12:21 - 2011-03-31 16:01 - 00972712 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-08-28 12:21 - 2011-03-31 16:01 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00000000 ____D C:\Program Files\Java
2013-08-27 15:45 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\Documents\SavedGames
2013-08-27 15:44 - 2013-08-27 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-26 20:29 - 2013-08-12 12:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-25 21:18 - 2013-08-25 21:18 - 00000000 ____D C:\Users\bob\Documents\Klei
2013-08-19 17:04 - 2013-07-13 19:14 - 00000000 ____D C:\Users\bob\AppData\Local\VirtualStore
2013-08-19 11:48 - 2013-08-19 11:38 - 00000000 ____D C:\Program Files (x86)\Reise nach Nordland
2013-08-19 11:38 - 2013-07-13 19:15 - 00000000 ____D C:\Users\bob\AppData\Roaming\Hewlett-Packard
2013-08-19 11:38 - 2013-07-13 19:15 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\Public\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\Documents\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\AppData\Roaming\CyberLink
2013-08-19 11:37 - 2013-07-13 17:49 - 00000000 ____D C:\ProgramData\CyberLink
2013-08-18 20:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-08-18 16:33 - 2013-08-18 16:30 - 00000000 ____D C:\Users\bob\Desktop\Camera
2013-08-18 16:27 - 2013-08-18 16:25 - 00000000 ____D C:\Users\bob\Desktop\Images
2013-08-18 16:24 - 2013-08-18 16:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-08-17 20:15 - 2013-07-31 18:35 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-08-17 13:36 - 2013-09-03 23:54 - 00000123 _____ C:\Users\bob\Downloads\Readme.txt
2013-08-17 12:37 - 2013-09-03 23:54 - 314134331 _____ (The Fun Pimps LLC ) C:\Users\bob\Downloads\7DTD_Alpha1_win32.exe
2013-08-16 14:25 - 2013-08-16 14:25 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-08-16 14:25 - 2013-08-16 14:25 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-08-16 14:25 - 2013-08-09 13:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-08-16 14:25 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Deployment
2013-08-16 14:24 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Apps\2.0
2013-08-12 21:06 - 2013-07-13 19:16 - 00003700 _____ C:\Windows\System32\Tasks\Registration
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 21:05 - 2013-08-12 20:56 - 00000000 ____D C:\Qoobox
2013-08-12 21:04 - 2013-08-12 20:56 - 00000000 ____D C:\Windows\erdnt
2013-08-12 21:03 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:23 - 2009-07-14 07:08 - 00014230 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-09 13:20 - 2013-07-13 17:47 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2011
Files to move or delete:
====================
C:\Users\bob\AppData\Local\Temp\SkypeSetup.exe
C:\Users\bob\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\is-OPBCN.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\is-FQ1PN.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CTLUD.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\aicustact.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\aipackagechainer.exe
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\lzmaextractor.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\Prereq.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\ResourceCleaner.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\TxtUpdater.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-01 00:45
==================== End Of Log ============================
--- --- ---
--- --- --- |
