Code:
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x]
ZeroAccess:
C:\Users\Hanss-Rauch\AppData\Local\{a4b8a65b-7c68-0548-2b35-dddac8e0ee63}
Hier der Fixlog
sorry falsch kopiert hier nun der richtige fixlog Code:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-08-2013 02
Ran by Hanss-Rauch at 2013-08-23 15:35:35 Run:1
Running from C:\Users\Hanss-Rauch\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [x]
ZeroAccess:
C:\Users\Hanss-Rauch\AppData\Local\{a4b8a65b-7c68-0548-2b35-dddac8e0ee63}
*****************
X6va008 => Service deleted successfully.
C:\Users\Hanss-Rauch\AppData\Local\{a4b8a65b-7c68-0548-2b35-dddac8e0ee63} => Moved successfully.
==== End of Fixlog ====
Und hier der neue FRST log
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2013 02
Ran by Hanss-Rauch (administrator) on 23-08-2013 15:37:25
Running from C:\Users\Hanss-Rauch\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Spotify Ltd) C:\Users\Hanss-Rauch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Users\Hanss-Rauch\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
(Spotify Ltd) C:\Users\Hanss-Rauch\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Hanss-Rauch\AppData\Local\WebPlayer\Online Weather\WebPlayer.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\klwtblfs.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Farbar) C:\Users\Hanss-Rauch\Desktop\FRST64 (1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3549528 2013-07-30] (Electronic Arts)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Hanss-Rauch\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-07] (Spotify Ltd)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1476104 2012-12-20] (Samsung)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [MusicManager] - C:\Users\Hanss-Rauch\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7345664 2013-06-21] (Google Inc.)
HKCU\...\Run: [Spotify] - C:\Users\Hanss-Rauch\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-07-07] (Spotify Ltd)
HKCU\...\Run: [Online Weather] - C:\Users\Hanss-Rauch\AppData\Local\WebPlayer\Online Weather\WebPlayer.exe [202752 2012-10-26] ()
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [581496 2012-09-24] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [310280 2012-12-20] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-15] (Apple Inc.)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376 2013-05-16] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)
HKLM-x32\...\Run: [BingDesktop] - C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2249352 2013-06-20] (Microsoft Corp.)
Startup: C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
ProxyServer: :
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2431} URL = hxxp://dts.search-results.com/web?src=ieb&gct=ds&appid=109&systemid=431&apn_dtid=BND431&apn_ptnrs=AGH&o=APN10656&apn_uid=1508500189704569&q={searchTerms}
SearchScopes: HKLM - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2431} URL = hxxp://dts.search-results.com/web?src=ieb&gct=ds&appid=109&systemid=431&apn_dtid=BND431&apn_ptnrs=AGH&o=APN10656&apn_uid=1508500189704569&q={searchTerms}
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5}
SearchScopes: HKLM-x32 - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKCU - Backup.Old.DefaultScope {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL =
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - GamesBar (W) - {2e94b700-eafb-4c9e-a696-77200aa3f89b} - C:\Program Files (x86)\gamesagogo_w3i\encyclopediabritannicagamesbarX.dll No File
DPF: HKLM-x32 {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.95.0.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [232448] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 01 %SystemRoot%\System32\mswsock.dll [326144] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\Firefox\Profiles\h8jupusy.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.11.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @ei.MyWebFace_5a.com/Plugin - C:\Program Files (x86)\MyWebFace_5aEI\Installr\1.bin\NP5aEISB.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hanss-Rauch\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Hanss-Rauch\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10174.dll (Amazon.com, Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: No Name - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF HKLM-x32\...\Firefox\Extensions: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
Chrome:
=======
CHR RestoreOnStartup: "https://www.google.de/", "hxxp://www.sat1.de/video"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hanss-Rauch\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_1\plugin/online_banking_npapi.dll (Kaspersky Lab ZAO)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10174.dll (Amazon.com, Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (PDF-XChange Viewer) - C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
CHR Plugin: (Google Update) - C:\Users\Hanss-Rauch\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Google Talk Plugin) - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Add to Amazon Wish List) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced\1.0.0.10_0
CHR Extension: (Google Search) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_1
CHR Extension: (Safe Money) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_1
CHR Extension: (Content Blocker) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_1
CHR Extension: (Virtual Keyboard) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_1
CHR Extension: (SmallringFX DarkBlue Theme) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfijmgohofmpjlcgmjplbpmkpchdhpk\1.7_0
CHR Extension: (Google Wallet Service) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_1
CHR Extension: (Battlefield Play4Free) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0
CHR Extension: (Gmail) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR Extension: (Anti-Banner) - C:\Users\HANSS-~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_1
CHR HKLM-x32\...\Chrome\Extension: [aaaaabfjnbeinlpljodiajipidiompfl] - C:\Users\Hanss-Rauch\AppData\Local\APN\GoogleCRXs\aaaaabfjnbeinlpljodiajipidiompfl_7.15.20.0.crx
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx
==================== Services (Whitelisted) =================
R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-23] (Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.)
S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137256 2013-05-24] ()
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376 2013-05-16] (Kaspersky Lab ZAO)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2012-09-24] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2012-09-24] (BlueStack Systems, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MpsSvc; C:\Windows\SysWow64\. [0 2013-08-23] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-07-17] ()
R2 PnkBstrB; C:\Windows\SysWow64\PnkBstrB.exe [290184 2013-08-23] ()
S3 TDslMgrService; C:\Program Files (x86)\DSL-Manager\DslMgrSvc.exe [307200 2008-10-23] (T-Systems Enterprise Services GmbH)
S2 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [x]
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [58088 2013-05-24] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [58088 2013-05-24] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2012-08-06] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2012-08-06] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-15] (AVG Technologies)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2012-09-24] (BlueStack Systems)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2012-09-24] (BlueStack Systems)
R1 DslMNLwf; C:\Windows\System32\DRIVERS\dslmnlwf.sys [19008 2007-08-01] (T-Systems Enterprise Services GmbH)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458584 2012-06-19] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [620128 2013-05-16] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29016 2013-05-16] (Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29528 2013-05-16] (Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-07-29] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-05-16] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S1 mbmiodrvr; C:\Windows\syswow64\mbmiodrvr.sys [4608 2004-04-10] (cansoft@livewiredev.com)
S1 mbmiodrvr; C:\Windows\syswow64\mbmiodrvr.sys [4608 2004-04-10] (cansoft@livewiredev.com)
S3 MEMSWEEP2; C:\Windows\system32\BF69.tmp [6144 2009-06-18] (Sophos Plc)
S3 MEMSWEEP2; C:\Windows\system32\BF69.tmp [6144 2009-06-18] (Sophos Plc)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-17] ()
S3 PciDumpr; C:\Program Files (x86)\Common Files\T-Com\DSLCheck\PciDumpr.sys [2144 2001-01-26] ()
S3 PciDumpr; C:\Program Files (x86)\Common Files\T-Com\DSLCheck\PciDumpr.sys [2144 2001-01-26] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S1 SAVRKBootTasks; C:\Windows\SysWow64\SAVRKBootTasks.sys [18816 2009-06-18] (Sophos Plc)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [x]
S1 SAVRKBootTasks; \??\C:\Windows\system32\SAVRKBootTasks.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-22 22:21 - 2013-08-22 22:21 - 00001145 _____ C:\Users\Hanss-Rauch\Desktop\checkup.txt
2013-08-22 20:54 - 2013-08-22 20:54 - 00891115 _____ C:\Users\Hanss-Rauch\Downloads\SecurityCheck.exe
2013-08-22 20:54 - 2013-08-22 20:54 - 00891115 _____ C:\Users\Hanss-Rauch\Desktop\SecurityCheck.exe
2013-08-22 12:54 - 2013-08-22 12:54 - 02347384 _____ (ESET) C:\Users\Hanss-Rauch\Downloads\esetsmartinstaller_enu.exe
2013-08-21 22:54 - 2013-08-21 22:54 - 00000000 ____D C:\Windows\SysWOW64\%Report%
2013-08-21 22:14 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-21 22:14 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-21 22:14 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-21 22:14 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-21 22:14 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-21 22:14 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-21 22:14 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-21 22:14 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-21 22:14 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-21 22:14 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-21 22:14 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-21 22:14 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-21 22:14 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-21 22:14 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-21 22:14 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-08-21 22:14 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-08-21 22:14 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-08-21 22:14 - 2012-06-02 16:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-08-21 22:06 - 2013-08-21 22:07 - 00000000 ____D C:\Windows\system32\MRT
2013-08-21 21:58 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-08-21 21:58 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-08-21 21:58 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-08-21 21:58 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-08-21 21:57 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-08-21 21:57 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-08-21 21:57 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-08-21 21:57 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-08-21 21:57 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-08-21 21:57 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-08-21 21:57 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-08-21 21:57 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-08-21 21:51 - 2013-08-21 21:51 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-08-21 21:51 - 2013-08-21 21:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-08-21 21:45 - 2013-08-21 21:45 - 01576476 _____ (Farbar) C:\Users\Hanss-Rauch\Desktop\FRST64 (1).exe
2013-08-21 21:44 - 2013-08-21 21:45 - 01576476 _____ (Farbar) C:\Users\Hanss-Rauch\Downloads\FRST64 (1).exe
2013-08-21 21:32 - 2013-08-21 21:32 - 00010604 _____ C:\Users\Hanss-Rauch\Desktop\JRT.txt
2013-08-21 21:20 - 2013-08-21 21:20 - 00000000 ____D C:\Windows\ERUNT
2013-08-21 21:19 - 2013-08-21 21:19 - 01018947 _____ (Thisisu) C:\Users\Hanss-Rauch\Downloads\JRT.exe
2013-08-21 21:19 - 2013-08-21 21:19 - 01018947 _____ (Thisisu) C:\Users\Hanss-Rauch\Desktop\JRT.exe
2013-08-21 21:06 - 2013-08-21 21:08 - 00000000 ____D C:\AdwCleaner
2013-08-21 21:04 - 2013-08-21 21:04 - 00975858 _____ C:\Users\Hanss-Rauch\Downloads\adwcleaner.exe
2013-08-21 17:53 - 2013-08-21 17:53 - 00001109 _____ C:\Users\Hanss-Rauch\Desktop\Malwarebytes Anti-Malware.lnk
2013-08-21 17:52 - 2013-08-21 17:52 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Hanss-Rauch\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-21 17:52 - 2013-08-21 17:52 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-08-21 17:52 - 2013-08-21 17:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-21 17:52 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-08-21 16:44 - 2013-08-21 16:44 - 00013393 _____ C:\Users\Hanss-Rauch\Desktop\ComboFix - Verknüpfung.lnk
2013-08-21 15:38 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-21 15:38 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-21 15:38 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-21 15:38 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-21 15:38 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-21 15:38 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-21 15:38 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-21 15:38 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-21 15:38 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-21 15:38 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-21 15:38 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-08-21 15:38 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-08-21 15:38 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-08-21 15:38 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-08-21 15:38 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-08-21 15:38 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-08-21 15:38 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-08-21 15:38 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-08-21 15:38 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-08-21 15:38 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-08-21 15:38 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-08-21 15:38 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-08-21 15:38 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-08-21 15:37 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-21 15:37 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-08-21 15:37 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-08-21 15:37 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-08-21 15:37 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-08-21 15:37 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-08-21 15:37 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-08-21 15:36 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-08-21 15:36 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-08-21 15:36 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-08-21 15:36 - 2013-02-27 07:52 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-08-21 15:36 - 2013-02-27 07:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-08-21 15:36 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-08-21 15:36 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-08-21 15:36 - 2013-02-27 06:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-08-21 15:36 - 2013-02-27 06:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-08-21 15:36 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-08-21 15:36 - 2013-01-04 07:46 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-08-21 15:36 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-21 15:36 - 2013-01-04 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-21 15:36 - 2013-01-04 04:47 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-21 15:36 - 2013-01-04 04:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-21 15:36 - 2013-01-04 04:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-21 15:36 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-08-21 15:36 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-08-21 15:36 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-08-21 15:36 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-08-21 15:36 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-08-21 15:36 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-08-21 15:35 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-08-21 15:35 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-08-21 15:35 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2013-08-21 15:35 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-08-21 15:35 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-08-21 15:35 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-08-21 15:35 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-08-21 15:35 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-08-21 15:35 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-08-21 15:35 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-08-21 15:35 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-08-21 15:35 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-08-21 15:35 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-08-21 15:35 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-08-21 15:35 - 2012-11-30 01:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-08-21 15:35 - 2012-11-30 01:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-08-21 15:35 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-08-21 15:35 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-08-21 15:35 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-08-21 15:35 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-08-21 15:35 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-08-21 15:35 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-08-21 15:35 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-08-21 15:35 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-08-21 15:35 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-08-21 15:35 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-08-21 15:35 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys
2013-08-21 15:35 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-08-21 15:34 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-21 15:34 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-21 15:34 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-21 15:34 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-21 15:34 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-08-21 15:34 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-08-21 15:34 - 2012-11-30 07:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-21 15:34 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-08-21 15:34 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-08-21 15:34 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-08-21 15:34 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-21 15:34 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-08-21 15:34 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-08-21 15:33 - 2013-06-05 05:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-08-21 15:33 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-08-21 15:33 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-08-21 15:33 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-08-21 15:33 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-08-21 15:33 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-08-21 15:33 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-08-21 15:32 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-21 15:32 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-08-21 15:32 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-08-21 15:32 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-08-21 15:32 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-08-21 15:32 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-08-21 15:32 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-08-21 15:32 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-08-21 15:32 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-08-21 15:32 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-08-21 15:32 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-08-21 15:32 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-08-21 15:31 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-08-21 15:31 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-08-21 15:31 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-08-21 15:31 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-08-21 15:31 - 2013-03-19 08:04 - 05550424 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-21 15:31 - 2013-03-19 07:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-08-21 15:31 - 2013-03-19 07:04 - 03968856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-21 15:31 - 2013-03-19 07:04 - 03913560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-21 15:31 - 2013-03-19 06:47 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-08-21 15:31 - 2013-03-19 05:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-08-21 15:06 - 2013-08-21 15:06 - 00075102 _____ C:\ComboFix.txt
2013-08-21 14:33 - 2013-08-21 15:06 - 00000000 ____D C:\Qoobox
2013-08-21 14:33 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-08-21 14:33 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-08-21 14:33 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-08-21 14:33 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-08-21 14:33 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-08-21 14:33 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-08-21 14:33 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-08-21 14:33 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-08-21 14:32 - 2013-08-21 15:04 - 00000000 ____D C:\Windows\erdnt
2013-08-21 14:31 - 2013-08-21 14:32 - 05109244 ____R (Swearware) C:\Users\Hanss-Rauch\Downloads\ComboFix.exe
2013-08-21 13:00 - 2013-08-21 13:00 - 00000000 ____D C:\FRST
2013-08-21 12:59 - 2013-08-21 12:59 - 01576164 _____ (Farbar) C:\Users\Hanss-Rauch\Downloads\FRST64.exe
2013-08-21 12:05 - 2013-08-21 12:05 - 00347424 _____ (Microsoft Corporation) C:\Users\Hanss-Rauch\Downloads\MicrosoftFixit.wu.Run.exe
2013-08-21 11:51 - 2013-08-21 11:51 - 01010176 _____ C:\Users\Hanss-Rauch\Downloads\MicrosoftFixit50884.msi
2013-08-19 17:53 - 2013-08-19 17:52 - 03042115 _____ C:\Users\Hanss-Rauch\Desktop\industrialcraft-2_1.115.308-lf (1).rar
2013-08-19 17:52 - 2013-08-19 17:52 - 03042115 _____ C:\Users\Hanss-Rauch\Downloads\industrialcraft-2_1.115.308-lf (1).rar
2013-08-18 16:19 - 2013-08-18 16:19 - 00029112 _____ C:\Users\Hanss-Rauch\Downloads\Printer-Block-Mod-1.5.2.zip
2013-08-18 16:15 - 2013-08-18 16:15 - 00300193 _____ C:\Users\Hanss-Rauch\Downloads\RoadWorks-Mod-1.5.2.rar
2013-08-18 16:13 - 2013-08-18 16:13 - 00230381 _____ C:\Users\Hanss-Rauch\Downloads\TwitchTV-IRC-Reborn-Mod-1.5.2.zip
2013-08-18 13:34 - 2013-08-18 13:34 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\resources
2013-08-18 13:33 - 2013-08-18 13:34 - 02999474 _____ C:\Users\Hanss-Rauch\Downloads\Project-Red-Mod-1.5.2.jar
2013-08-18 13:32 - 2013-08-18 13:33 - 02272553 _____ C:\Users\Hanss-Rauch\Downloads\Railcraft-Mod-1.5.2.jar
2013-08-17 19:15 - 2013-08-17 19:15 - 00124927 _____ C:\Users\Hanss-Rauch\Downloads\Instant-Blocks-Mod-1.5.2.zip
2013-08-17 19:13 - 2013-08-17 19:13 - 00117705 _____ C:\Users\Hanss-Rauch\Downloads\WR-CBE-Core-1.5.2.jar
2013-08-17 19:12 - 2013-08-17 19:12 - 00378337 _____ C:\Users\Hanss-Rauch\Downloads\Not-Enough-Items-1.5.2.jar
2013-08-17 19:08 - 2013-08-17 19:08 - 02225575 _____ C:\Users\Hanss-Rauch\Downloads\Chisel-Mod-1.5.2.jar
2013-08-17 18:56 - 2013-08-17 18:56 - 01229617 _____ C:\Users\Hanss-Rauch\Downloads\buildcraft-A-3.7.1.jar
2013-08-17 18:55 - 2013-08-17 18:55 - 00069465 _____ C:\Users\Hanss-Rauch\Downloads\Railcraft-Mod-1.5.2-API.zip
2013-08-17 18:48 - 2013-08-17 18:49 - 00167296 _____ C:\Users\Hanss-Rauch\Downloads\More-Pistons-Mod-1.5.2.zip
2013-08-17 18:45 - 2013-08-17 18:45 - 00037784 _____ C:\Users\Hanss-Rauch\Downloads\Light-Bridges-and-Doors-Mod-1.5.2.zip
2013-08-16 21:10 - 2013-08-16 21:10 - 00205945 _____ C:\Users\Hanss-Rauch\Downloads\More-Explosives-Mod-1.5.2.zip
2013-08-16 21:05 - 2013-08-16 21:05 - 00019040 _____ C:\Users\Hanss-Rauch\Downloads\[1.5.2] Useful Redstone Mod.zip
2013-08-16 19:18 - 2013-08-16 19:18 - 03042115 _____ C:\Users\Hanss-Rauch\Downloads\industrialcraft-2_1.115.308-lf.rar
2013-08-16 19:15 - 2013-08-16 19:15 - 00205948 _____ C:\Users\Hanss-Rauch\Downloads\MoreExplosivesModRelease3.5forMC1.5.1.zip
2013-08-16 19:14 - 2013-08-16 19:14 - 00199576 _____ C:\Users\Hanss-Rauch\Downloads\MoreExplosivesModRelease3.7forMinecraft1.6.2.zip
2013-08-16 19:10 - 2013-08-23 12:26 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\LogMeIn Hamachi
2013-08-16 19:10 - 2013-08-16 19:10 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-08-16 19:08 - 2013-08-16 19:08 - 04292608 _____ C:\Users\Hanss-Rauch\Downloads\hamachi_2.1.0.362.msi
2013-08-16 12:27 - 2013-08-16 12:27 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d (2).exe
2013-08-16 12:27 - 2013-08-16 12:27 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-08-16 12:27 - 2013-08-16 12:27 - 00000000 ____D C:\Program Files\WinRAR
2013-08-16 12:25 - 2013-08-16 12:33 - 2463242240 _____ C:\Users\Hanss-Rauch\Downloads\X15-65740 (1).iso
2013-08-16 12:18 - 2013-08-16 12:25 - 2147484386 _____ C:\Users\Hanss-Rauch\Downloads\X15-65740.iso
2013-08-12 18:06 - 2013-08-12 18:06 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\spc
2013-08-12 15:53 - 2013-08-12 15:53 - 01082179 _____ C:\Users\Hanss-Rauch\Downloads\SinglePlayerCommands-MC1.5.2_V4.8.jar
2013-08-12 15:49 - 2013-08-12 15:49 - 02033732 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge-universal-1.5.2-7.8.1.738.zip
2013-08-12 15:47 - 2013-08-12 15:47 - 05564661 _____ C:\Users\Hanss-Rauch\Downloads\1.5.2.jar
2013-08-12 15:42 - 2013-08-12 15:42 - 01950783 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge_universal_1_5_2_7_8_0_696.zip.zip
2013-08-12 15:25 - 2013-08-12 15:25 - 00267043 _____ C:\Users\Hanss-Rauch\Downloads\WirelessRedstone.zip
2013-08-12 15:25 - 2013-08-12 15:25 - 00267043 _____ C:\Users\Hanss-Rauch\Desktop\WirelessRedstone.zip
2013-08-12 15:21 - 2013-08-12 15:19 - 00675988 _____ C:\Users\Hanss-Rauch\Desktop\Minecraft (2).exe
2013-08-12 15:19 - 2013-08-12 15:19 - 00675988 _____ C:\Users\Hanss-Rauch\Downloads\Minecraft.exe
2013-08-11 20:24 - 2013-08-11 20:24 - 09304408 _____ (Wargaming.net ) C:\Users\Hanss-Rauch\Downloads\WoT_internet_install_eu.exe
2013-08-11 12:48 - 2013-08-07 18:33 - 01036312 _____ C:\Users\Hanss-Rauch\Desktop\ComputerCraft Mod 1.5.2 (2).zip
2013-08-09 18:11 - 2013-08-09 18:11 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-08-09 18:11 - 2013-08-09 18:11 - 00000000 ____D C:\Program Files (x86)\Java
2013-08-07 18:33 - 2013-08-07 18:33 - 01036312 _____ C:\Users\Hanss-Rauch\Downloads\ComputerCraft Mod 1.5.2.zip
2013-08-07 18:33 - 2013-08-07 18:33 - 01036312 _____ C:\Users\Hanss-Rauch\Desktop\ComputerCraft Mod 1.5.2.zip
2013-08-06 20:30 - 2013-08-06 20:30 - 00933417 _____ C:\Users\Hanss-Rauch\Downloads\WarGear V6.zip
2013-08-05 19:08 - 2013-08-05 20:15 - 53886249 _____ C:\Users\Hanss-Rauch\Downloads\Misa500 (1).zip
2013-08-05 17:38 - 2013-08-05 17:38 - 00109656 _____ C:\Users\Hanss-Rauch\Downloads\Nicht bestätigt 510151.crdownload
2013-08-04 22:34 - 2013-08-04 22:34 - 00000000 ____D C:\ProgramData\Package Cache
2013-08-04 22:31 - 2013-08-04 22:32 - 245472312 _____ (AMD Inc.) C:\Users\Hanss-Rauch\Downloads\amd_catalyst_13.8_beta.exe
2013-08-04 14:35 - 2013-08-04 14:35 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-08-01 20:49 - 2013-08-01 20:49 - 02143832 _____ C:\Users\Hanss-Rauch\Downloads\instsf449.exe
2013-08-01 20:34 - 2013-08-01 20:34 - 00002067 _____ C:\Users\Public\Desktop\AMD OverDrive.lnk
2013-08-01 20:32 - 2013-08-01 20:32 - 31829816 _____ (Advanced Micro Devices, Inc. ) C:\Users\Hanss-Rauch\Downloads\aod_setup_4.2.6.exe
2013-08-01 20:12 - 2013-08-01 20:12 - 00338140 _____ C:\Users\Hanss-Rauch\Downloads\CoreTemp32_rc5.zip
2013-08-01 20:12 - 2013-08-01 20:12 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\CoreTemp32_rc5
2013-08-01 19:48 - 2013-08-01 20:43 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\hwmonitor_123
2013-08-01 19:46 - 2013-08-01 19:46 - 01194216 _____ C:\Users\Hanss-Rauch\Downloads\hwmonitor_123.zip
2013-08-01 18:48 - 2013-08-01 18:48 - 00252446 _____ C:\Users\Hanss-Rauch\Downloads\1_5_2_reiminimap_v3_3_05.zip.zip
2013-08-01 18:41 - 2013-08-01 18:41 - 24831527 _____ C:\Users\Hanss-Rauch\Downloads\Master Pack 1.5.2.rar
2013-08-01 18:38 - 2013-08-01 18:38 - 00443952 _____ C:\Users\Hanss-Rauch\Downloads\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal (1).zip
2013-08-01 18:38 - 2013-08-01 18:38 - 00443952 _____ C:\Users\Hanss-Rauch\Desktop\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal (1).zip
2013-07-31 21:05 - 2013-07-31 21:06 - 22532237 _____ C:\Users\Hanss-Rauch\Downloads\JaninaCraft_1_5_1_Release_x64.zip
2013-07-31 17:52 - 2013-07-31 17:52 - 00443952 _____ C:\Users\Hanss-Rauch\Downloads\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal.zip
2013-07-31 16:19 - 2013-07-31 16:19 - 00472198 _____ C:\Users\Hanss-Rauch\Downloads\Sonic Ether's Unbelievable Shaders 1.5.2.zip
2013-07-31 16:14 - 2013-07-31 16:15 - 01082179 _____ C:\Users\Hanss-Rauch\Downloads\Single-Player-Commands-1.5.2.jar
2013-07-31 16:11 - 2013-07-31 16:11 - 01975130 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge-universal-1.5.2-7.8.0.684.zip
2013-07-31 16:10 - 2013-07-31 16:10 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d (1).exe
2013-07-31 15:05 - 2013-07-31 15:05 - 08483521 _____ C:\Users\Hanss-Rauch\Downloads\ProbeII_V10481_XpVistaWin7.zip
2013-07-31 15:05 - 2013-07-31 15:05 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\ProbeII_V10481_XpVistaWin7
2013-07-31 15:04 - 2013-07-31 15:04 - 04300194 _____ C:\Users\Hanss-Rauch\Downloads\PCProbe22502.zip
2013-07-31 15:00 - 2013-07-31 15:00 - 01282759 _____ (Alexander van Kaam ) C:\Users\Hanss-Rauch\Downloads\MBM5370.exe
2013-07-31 15:00 - 2013-07-31 15:00 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MBM 5
2013-07-31 15:00 - 2004-04-10 09:43 - 00004608 _____ (cansoft@livewiredev.com) C:\Windows\SysWOW64\mbmiodrvr.sys
2013-07-30 20:24 - 2013-07-30 20:24 - 12973435 _____ C:\Users\Hanss-Rauch\Downloads\craftbukkit-1.5.2-R1.0 (1).jar
2013-07-30 20:23 - 2013-07-30 20:23 - 04895118 _____ C:\Users\Hanss-Rauch\Downloads\bukkit-1.6.2-R0.1-20130724.060108-7.jar
2013-07-30 19:51 - 2013-07-30 19:51 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d.exe
2013-07-30 19:49 - 2013-07-30 19:51 - 00001621 _____ C:\Users\Hanss-Rauch\Desktop\startbat.rar
2013-07-30 19:46 - 2013-07-30 19:46 - 00001145 _____ C:\Users\Hanss-Rauch\Downloads\startbat.rar
2013-07-30 19:45 - 2013-07-30 19:46 - 12973435 _____ C:\Users\Hanss-Rauch\Downloads\craftbukkit-1.5.2-R1.0.jar
2013-07-29 14:25 - 2013-07-29 14:25 - 00262144 _____ C:\Windows\system32\config\elam
2013-07-29 14:22 - 2013-07-29 14:22 - 00002200 _____ C:\Users\Hanss-Rauch\Desktop\Online Weather.lnk
2013-07-29 14:22 - 2013-07-29 14:22 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online Weather
2013-07-29 14:22 - 2013-07-29 14:22 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\WebPlayer
2013-07-29 13:58 - 2013-07-29 13:55 - 00121013 _____ C:\Users\Hanss-Rauch\Desktop\BFp4f Funds Hack v2.0.rar
2013-07-29 13:30 - 2013-07-29 13:30 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\kavkisfile.com-15-July-2013
2013-07-29 13:19 - 2013-07-29 13:19 - 00002340 _____ C:\Users\Hanss-Rauch\Desktop\Sicherer Zahlungsverkehr.lnk
2013-07-29 13:18 - 2013-07-29 13:01 - 00248634 _____ C:\Users\Hanss-Rauch\Desktop\kavkisfile.com-15-July-2013.zip
2013-07-29 13:17 - 2013-07-29 13:17 - 00001146 _____ C:\Users\Public\Desktop\Kaspersky Internet Security 2013.lnk
2013-07-29 13:17 - 2013-05-16 07:27 - 00064856 _____ (Kaspersky Lab) C:\Windows\system32\klfphc.dll
2013-07-29 13:16 - 2013-08-23 14:43 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-07-29 13:16 - 2013-07-29 13:16 - 00000000 ____D C:\Windows\ELAMBKUP
2013-07-29 13:16 - 2013-07-29 13:16 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-07-29 13:16 - 2013-05-16 07:27 - 00620128 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-07-29 13:16 - 2013-05-16 07:27 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
==================== One Month Modified Files and Folders =======
2013-08-23 15:33 - 2012-10-28 22:29 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-23 15:27 - 2012-09-02 19:22 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Skype
2013-08-23 15:14 - 2012-12-11 11:04 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Spotify
2013-08-23 15:02 - 2012-10-12 11:32 - 00001144 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2922039653-137104462-887748758-1000UA.job
2013-08-23 15:00 - 2013-03-11 19:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-08-23 15:00 - 2012-05-24 18:17 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-08-23 14:59 - 2013-03-11 19:56 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-08-23 14:47 - 2012-08-21 12:16 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-23 14:43 - 2013-07-29 13:16 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-08-23 13:02 - 2012-06-04 15:18 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Mozilla
2013-08-23 12:32 - 2012-03-16 10:49 - 01186418 _____ C:\Windows\WindowsUpdate.log
2013-08-23 12:30 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-23 12:30 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-23 12:29 - 2012-12-11 11:06 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\Spotify
2013-08-23 12:29 - 2011-04-12 09:43 - 05005650 _____ C:\Windows\system32\perfh007.dat
2013-08-23 12:29 - 2011-04-12 09:43 - 01481046 _____ C:\Windows\system32\perfc007.dat
2013-08-23 12:29 - 2009-07-14 07:13 - 00005020 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-23 12:26 - 2013-08-16 19:10 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\LogMeIn Hamachi
2013-08-23 12:25 - 2012-10-28 22:29 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-23 12:25 - 2002-01-01 20:46 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-23 12:22 - 2010-11-21 05:47 - 00178778 _____ C:\Windows\PFRO.log
2013-08-23 12:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-23 12:22 - 2009-07-14 06:51 - 00113850 _____ C:\Windows\setupact.log
2013-08-22 22:21 - 2013-08-22 22:21 - 00001145 _____ C:\Users\Hanss-Rauch\Desktop\checkup.txt
2013-08-22 20:54 - 2013-08-22 20:54 - 00891115 _____ C:\Users\Hanss-Rauch\Downloads\SecurityCheck.exe
2013-08-22 20:54 - 2013-08-22 20:54 - 00891115 _____ C:\Users\Hanss-Rauch\Desktop\SecurityCheck.exe
2013-08-22 12:54 - 2013-08-22 12:54 - 02347384 _____ (ESET) C:\Users\Hanss-Rauch\Downloads\esetsmartinstaller_enu.exe
2013-08-22 12:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-08-21 23:19 - 2012-09-24 13:43 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\Deployment
2013-08-21 23:06 - 2012-03-19 15:43 - 00068344 _____ C:\Users\HANSS-~1\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-21 23:05 - 2012-03-16 10:49 - 00000000 ___RD C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-08-21 23:05 - 2012-03-16 10:49 - 00000000 ___RD C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-08-21 22:55 - 2009-07-14 06:45 - 01942224 _____ C:\Windows\system32\FNTCACHE.DAT
2013-08-21 22:54 - 2013-08-21 22:54 - 00000000 ____D C:\Windows\SysWOW64\%Report%
2013-08-21 22:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-08-21 22:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-08-21 22:52 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-08-21 22:07 - 2013-08-21 22:06 - 00000000 ____D C:\Windows\system32\MRT
2013-08-21 21:51 - 2013-08-21 21:51 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-08-21 21:51 - 2013-08-21 21:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-08-21 21:45 - 2013-08-21 21:45 - 01576476 _____ (Farbar) C:\Users\Hanss-Rauch\Desktop\FRST64 (1).exe
2013-08-21 21:45 - 2013-08-21 21:44 - 01576476 _____ (Farbar) C:\Users\Hanss-Rauch\Downloads\FRST64 (1).exe
2013-08-21 21:32 - 2013-08-21 21:32 - 00010604 _____ C:\Users\Hanss-Rauch\Desktop\JRT.txt
2013-08-21 21:20 - 2013-08-21 21:20 - 00000000 ____D C:\Windows\ERUNT
2013-08-21 21:19 - 2013-08-21 21:19 - 01018947 _____ (Thisisu) C:\Users\Hanss-Rauch\Downloads\JRT.exe
2013-08-21 21:19 - 2013-08-21 21:19 - 01018947 _____ (Thisisu) C:\Users\Hanss-Rauch\Desktop\JRT.exe
2013-08-21 21:08 - 2013-08-21 21:06 - 00000000 ____D C:\AdwCleaner
2013-08-21 21:08 - 2012-05-01 20:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-21 21:04 - 2013-08-21 21:04 - 00975858 _____ C:\Users\Hanss-Rauch\Downloads\adwcleaner.exe
2013-08-21 19:07 - 2012-10-03 15:08 - 00000000 ____D C:\Program Files (x86)\vGrabber-software
2013-08-21 17:53 - 2013-08-21 17:53 - 00001109 _____ C:\Users\Hanss-Rauch\Desktop\Malwarebytes Anti-Malware.lnk
2013-08-21 17:52 - 2013-08-21 17:52 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Hanss-Rauch\Downloads\mbam-setup-1.75.0.1300.exe
2013-08-21 17:52 - 2013-08-21 17:52 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-08-21 17:52 - 2013-08-21 17:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-21 16:44 - 2013-08-21 16:44 - 00013393 _____ C:\Users\Hanss-Rauch\Desktop\ComboFix - Verknüpfung.lnk
2013-08-21 15:47 - 2012-08-21 12:16 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-21 15:47 - 2012-08-21 12:16 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-21 15:47 - 2012-03-19 19:47 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-21 15:15 - 2012-11-01 19:42 - 00003234 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-08-21 15:06 - 2013-08-21 15:06 - 00075102 _____ C:\ComboFix.txt
2013-08-21 15:06 - 2013-08-21 14:33 - 00000000 ____D C:\Qoobox
2013-08-21 15:06 - 2012-09-24 13:43 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Local\Apps\2.0
2013-08-21 15:06 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-08-21 15:04 - 2013-08-21 14:32 - 00000000 ____D C:\Windows\erdnt
2013-08-21 14:59 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-08-21 14:54 - 2013-03-08 22:50 - 00000000 ____D C:\Program Files (x86)\DSL-Manager
2013-08-21 14:32 - 2013-08-21 14:31 - 05109244 ____R (Swearware) C:\Users\Hanss-Rauch\Downloads\ComboFix.exe
2013-08-21 13:59 - 2013-03-09 21:04 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-08-21 13:00 - 2013-08-21 13:00 - 00000000 ____D C:\FRST
2013-08-21 12:59 - 2013-08-21 12:59 - 01576164 _____ (Farbar) C:\Users\Hanss-Rauch\Downloads\FRST64.exe
2013-08-21 12:05 - 2013-08-21 12:05 - 00347424 _____ (Microsoft Corporation) C:\Users\Hanss-Rauch\Downloads\MicrosoftFixit.wu.Run.exe
2013-08-21 12:02 - 2012-10-12 11:32 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2922039653-137104462-887748758-1000Core.job
2013-08-21 11:51 - 2013-08-21 11:51 - 01010176 _____ C:\Users\Hanss-Rauch\Downloads\MicrosoftFixit50884.msi
2013-08-20 23:14 - 2013-03-16 13:55 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\.minecraft
2013-08-19 17:52 - 2013-08-19 17:53 - 03042115 _____ C:\Users\Hanss-Rauch\Desktop\industrialcraft-2_1.115.308-lf (1).rar
2013-08-19 17:52 - 2013-08-19 17:52 - 03042115 _____ C:\Users\Hanss-Rauch\Downloads\industrialcraft-2_1.115.308-lf (1).rar
2013-08-18 16:19 - 2013-08-18 16:19 - 00029112 _____ C:\Users\Hanss-Rauch\Downloads\Printer-Block-Mod-1.5.2.zip
2013-08-18 16:15 - 2013-08-18 16:15 - 00300193 _____ C:\Users\Hanss-Rauch\Downloads\RoadWorks-Mod-1.5.2.rar
2013-08-18 16:13 - 2013-08-18 16:13 - 00230381 _____ C:\Users\Hanss-Rauch\Downloads\TwitchTV-IRC-Reborn-Mod-1.5.2.zip
2013-08-18 13:34 - 2013-08-18 13:34 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\resources
2013-08-18 13:34 - 2013-08-18 13:33 - 02999474 _____ C:\Users\Hanss-Rauch\Downloads\Project-Red-Mod-1.5.2.jar
2013-08-18 13:33 - 2013-08-18 13:32 - 02272553 _____ C:\Users\Hanss-Rauch\Downloads\Railcraft-Mod-1.5.2.jar
2013-08-17 19:15 - 2013-08-17 19:15 - 00124927 _____ C:\Users\Hanss-Rauch\Downloads\Instant-Blocks-Mod-1.5.2.zip
2013-08-17 19:13 - 2013-08-17 19:13 - 00117705 _____ C:\Users\Hanss-Rauch\Downloads\WR-CBE-Core-1.5.2.jar
2013-08-17 19:12 - 2013-08-17 19:12 - 00378337 _____ C:\Users\Hanss-Rauch\Downloads\Not-Enough-Items-1.5.2.jar
2013-08-17 19:08 - 2013-08-17 19:08 - 02225575 _____ C:\Users\Hanss-Rauch\Downloads\Chisel-Mod-1.5.2.jar
2013-08-17 18:56 - 2013-08-17 18:56 - 01229617 _____ C:\Users\Hanss-Rauch\Downloads\buildcraft-A-3.7.1.jar
2013-08-17 18:55 - 2013-08-17 18:55 - 00069465 _____ C:\Users\Hanss-Rauch\Downloads\Railcraft-Mod-1.5.2-API.zip
2013-08-17 18:49 - 2013-08-17 18:48 - 00167296 _____ C:\Users\Hanss-Rauch\Downloads\More-Pistons-Mod-1.5.2.zip
2013-08-17 18:45 - 2013-08-17 18:45 - 00037784 _____ C:\Users\Hanss-Rauch\Downloads\Light-Bridges-and-Doors-Mod-1.5.2.zip
2013-08-16 21:10 - 2013-08-16 21:10 - 00205945 _____ C:\Users\Hanss-Rauch\Downloads\More-Explosives-Mod-1.5.2.zip
2013-08-16 21:05 - 2013-08-16 21:05 - 00019040 _____ C:\Users\Hanss-Rauch\Downloads\[1.5.2] Useful Redstone Mod.zip
2013-08-16 19:18 - 2013-08-16 19:18 - 03042115 _____ C:\Users\Hanss-Rauch\Downloads\industrialcraft-2_1.115.308-lf.rar
2013-08-16 19:15 - 2013-08-16 19:15 - 00205948 _____ C:\Users\Hanss-Rauch\Downloads\MoreExplosivesModRelease3.5forMC1.5.1.zip
2013-08-16 19:14 - 2013-08-16 19:14 - 00199576 _____ C:\Users\Hanss-Rauch\Downloads\MoreExplosivesModRelease3.7forMinecraft1.6.2.zip
2013-08-16 19:10 - 2013-08-16 19:10 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-08-16 19:08 - 2013-08-16 19:08 - 04292608 _____ C:\Users\Hanss-Rauch\Downloads\hamachi_2.1.0.362.msi
2013-08-16 12:33 - 2013-08-16 12:25 - 2463242240 _____ C:\Users\Hanss-Rauch\Downloads\X15-65740 (1).iso
2013-08-16 12:27 - 2013-08-16 12:27 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d (2).exe
2013-08-16 12:27 - 2013-08-16 12:27 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-08-16 12:27 - 2013-08-16 12:27 - 00000000 ____D C:\Program Files\WinRAR
2013-08-16 12:25 - 2013-08-16 12:18 - 2147484386 _____ C:\Users\Hanss-Rauch\Downloads\X15-65740.iso
2013-08-15 21:10 - 2012-11-01 18:17 - 00045856 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-08-12 18:06 - 2013-08-12 18:06 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\spc
2013-08-12 18:06 - 2013-06-09 16:02 - 00000046 _____ C:\Users\Hanss-Rauch\Desktop\teams.dat
2013-08-12 15:53 - 2013-08-12 15:53 - 01082179 _____ C:\Users\Hanss-Rauch\Downloads\SinglePlayerCommands-MC1.5.2_V4.8.jar
2013-08-12 15:49 - 2013-08-12 15:49 - 02033732 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge-universal-1.5.2-7.8.1.738.zip
2013-08-12 15:47 - 2013-08-12 15:47 - 05564661 _____ C:\Users\Hanss-Rauch\Downloads\1.5.2.jar
2013-08-12 15:42 - 2013-08-12 15:42 - 01950783 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge_universal_1_5_2_7_8_0_696.zip.zip
2013-08-12 15:25 - 2013-08-12 15:25 - 00267043 _____ C:\Users\Hanss-Rauch\Downloads\WirelessRedstone.zip
2013-08-12 15:25 - 2013-08-12 15:25 - 00267043 _____ C:\Users\Hanss-Rauch\Desktop\WirelessRedstone.zip
2013-08-12 15:19 - 2013-08-12 15:21 - 00675988 _____ C:\Users\Hanss-Rauch\Desktop\Minecraft (2).exe
2013-08-12 15:19 - 2013-08-12 15:19 - 00675988 _____ C:\Users\Hanss-Rauch\Downloads\Minecraft.exe
2013-08-11 20:25 - 2012-04-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-08-11 20:24 - 2013-08-11 20:24 - 09304408 _____ (Wargaming.net ) C:\Users\Hanss-Rauch\Downloads\WoT_internet_install_eu.exe
2013-08-11 20:24 - 2012-04-22 14:36 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-08-09 18:11 - 2013-08-09 18:11 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-08-09 18:11 - 2013-08-09 18:11 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-08-09 18:11 - 2013-08-09 18:11 - 00000000 ____D C:\Program Files (x86)\Java
2013-08-09 18:11 - 2012-06-12 16:21 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-08-09 18:11 - 2012-06-12 16:21 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-08-07 18:33 - 2013-08-11 12:48 - 01036312 _____ C:\Users\Hanss-Rauch\Desktop\ComputerCraft Mod 1.5.2 (2).zip
2013-08-07 18:33 - 2013-08-07 18:33 - 01036312 _____ C:\Users\Hanss-Rauch\Downloads\ComputerCraft Mod 1.5.2.zip
2013-08-07 18:33 - 2013-08-07 18:33 - 01036312 _____ C:\Users\Hanss-Rauch\Desktop\ComputerCraft Mod 1.5.2.zip
2013-08-06 21:39 - 2013-06-13 18:45 - 00000000 ____D C:\Program Files (x86)\MapCreator 2
2013-08-06 20:31 - 2012-03-24 19:33 - 00007614 _____ C:\Users\HANSS-~1\AppData\Local\Resmon.ResmonCfg
2013-08-06 20:30 - 2013-08-06 20:30 - 00933417 _____ C:\Users\Hanss-Rauch\Downloads\WarGear V6.zip
2013-08-06 16:44 - 2012-03-19 16:30 - 00000000 ____D C:\Users\Hanss-Rauch\Documents\Flight Simulator X-Dateien
2013-08-06 13:11 - 2012-10-28 22:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-08-05 20:15 - 2013-08-05 19:08 - 53886249 _____ C:\Users\Hanss-Rauch\Downloads\Misa500 (1).zip
2013-08-05 17:38 - 2013-08-05 17:38 - 00109656 _____ C:\Users\Hanss-Rauch\Downloads\Nicht bestätigt 510151.crdownload
2013-08-05 16:14 - 2012-03-16 11:13 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-04 22:34 - 2013-08-04 22:34 - 00000000 ____D C:\ProgramData\Package Cache
2013-08-04 22:32 - 2013-08-04 22:31 - 245472312 _____ (AMD Inc.) C:\Users\Hanss-Rauch\Downloads\amd_catalyst_13.8_beta.exe
2013-08-04 22:32 - 2012-11-26 10:10 - 00000000 ____D C:\AMD
2013-08-04 14:35 - 2013-08-04 14:35 - 00002212 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-08-04 14:11 - 2012-03-19 19:44 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2013-08-01 20:49 - 2013-08-01 20:49 - 02143832 _____ C:\Users\Hanss-Rauch\Downloads\instsf449.exe
2013-08-01 20:49 - 2012-03-19 19:44 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2013-08-01 20:43 - 2013-08-01 19:48 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\hwmonitor_123
2013-08-01 20:34 - 2013-08-01 20:34 - 00002067 _____ C:\Users\Public\Desktop\AMD OverDrive.lnk
2013-08-01 20:33 - 2012-11-27 22:09 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\Downloaded Installations
2013-08-01 20:32 - 2013-08-01 20:32 - 31829816 _____ (Advanced Micro Devices, Inc. ) C:\Users\Hanss-Rauch\Downloads\aod_setup_4.2.6.exe
2013-08-01 20:12 - 2013-08-01 20:12 - 00338140 _____ C:\Users\Hanss-Rauch\Downloads\CoreTemp32_rc5.zip
2013-08-01 20:12 - 2013-08-01 20:12 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\CoreTemp32_rc5
2013-08-01 19:46 - 2013-08-01 19:46 - 01194216 _____ C:\Users\Hanss-Rauch\Downloads\hwmonitor_123.zip
2013-08-01 18:48 - 2013-08-01 18:48 - 00252446 _____ C:\Users\Hanss-Rauch\Downloads\1_5_2_reiminimap_v3_3_05.zip.zip
2013-08-01 18:41 - 2013-08-01 18:41 - 24831527 _____ C:\Users\Hanss-Rauch\Downloads\Master Pack 1.5.2.rar
2013-08-01 18:38 - 2013-08-01 18:38 - 00443952 _____ C:\Users\Hanss-Rauch\Downloads\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal (1).zip
2013-08-01 18:38 - 2013-08-01 18:38 - 00443952 _____ C:\Users\Hanss-Rauch\Desktop\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal (1).zip
2013-08-01 08:07 - 2012-11-22 20:59 - 00001170 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2013-07-31 21:06 - 2013-07-31 21:05 - 22532237 _____ C:\Users\Hanss-Rauch\Downloads\JaninaCraft_1_5_1_Release_x64.zip
2013-07-31 17:52 - 2013-07-31 17:52 - 00443952 _____ C:\Users\Hanss-Rauch\Downloads\Flans Mod 2.3.1 for Minecraft 1.5.2 Universal.zip
2013-07-31 16:19 - 2013-07-31 16:19 - 00472198 _____ C:\Users\Hanss-Rauch\Downloads\Sonic Ether's Unbelievable Shaders 1.5.2.zip
2013-07-31 16:15 - 2013-07-31 16:14 - 01082179 _____ C:\Users\Hanss-Rauch\Downloads\Single-Player-Commands-1.5.2.jar
2013-07-31 16:11 - 2013-07-31 16:11 - 01975130 _____ C:\Users\Hanss-Rauch\Downloads\minecraftforge-universal-1.5.2-7.8.0.684.zip
2013-07-31 16:10 - 2013-07-31 16:10 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d (1).exe
2013-07-31 15:05 - 2013-07-31 15:05 - 08483521 _____ C:\Users\Hanss-Rauch\Downloads\ProbeII_V10481_XpVistaWin7.zip
2013-07-31 15:05 - 2013-07-31 15:05 - 00000000 ____D C:\Users\Hanss-Rauch\Downloads\ProbeII_V10481_XpVistaWin7
2013-07-31 15:05 - 2012-03-16 10:52 - 00001769 _____ C:\Windows\Language_trs.ini
2013-07-31 15:04 - 2013-07-31 15:04 - 04300194 _____ C:\Users\Hanss-Rauch\Downloads\PCProbe22502.zip
2013-07-31 15:00 - 2013-07-31 15:00 - 01282759 _____ (Alexander van Kaam ) C:\Users\Hanss-Rauch\Downloads\MBM5370.exe
2013-07-31 15:00 - 2013-07-31 15:00 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MBM 5
2013-07-31 15:00 - 2012-03-24 19:44 - 00000000 ____D C:\Program Files (x86)\Motherboard Monitor 5
2013-07-30 20:24 - 2013-07-30 20:24 - 12973435 _____ C:\Users\Hanss-Rauch\Downloads\craftbukkit-1.5.2-R1.0 (1).jar
2013-07-30 20:23 - 2013-07-30 20:23 - 04895118 _____ C:\Users\Hanss-Rauch\Downloads\bukkit-1.6.2-R0.1-20130724.060108-7.jar
2013-07-30 19:51 - 2013-07-30 19:51 - 01758824 _____ C:\Users\Hanss-Rauch\Downloads\winrar-x64-420d.exe
2013-07-30 19:51 - 2013-07-30 19:49 - 00001621 _____ C:\Users\Hanss-Rauch\Desktop\startbat.rar
2013-07-30 19:46 - 2013-07-30 19:46 - 00001145 _____ C:\Users\Hanss-Rauch\Downloads\startbat.rar
2013-07-30 19:46 - 2013-07-30 19:45 - 12973435 _____ C:\Users\Hanss-Rauch\Downloads\craftbukkit-1.5.2-R1.0.jar
2013-07-30 15:05 - 2012-11-16 20:05 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Origin
2013-07-30 15:05 - 2002-01-01 20:56 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\Origin
2013-07-29 14:25 - 2013-07-29 14:25 - 00262144 _____ C:\Windows\system32\config\elam
2013-07-29 14:23 - 2012-03-16 10:49 - 00000000 ____D C:\Users\Hanss-Rauch
2013-07-29 14:22 - 2013-07-29 14:22 - 00002200 _____ C:\Users\Hanss-Rauch\Desktop\Online Weather.lnk
2013-07-29 14:22 - 2013-07-29 14:22 - 00000000 ____D C:\Users\Hanss-Rauch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Online Weather
2013-07-29 14:22 - 2013-07-29 14:22 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\WebPlayer
2013-07-29 13:55 - 2013-07-29 13:58 - 00121013 _____ C:\Users\Hanss-Rauch\Desktop\BFp4f Funds Hack v2.0.rar
2013-07-29 13:41 - 2013-05-16 07:27 - 00054368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys
2013-07-29 13:31 - 2012-09-02 19:22 - 00002517 _____ C:\Users\Public\Desktop\Skype.lnk
2013-07-29 13:31 - 2012-09-02 19:22 - 00000000 ____D C:\ProgramData\Skype
2013-07-29 13:30 - 2013-07-29 13:30 - 00000000 ____D C:\Users\Hanss-Rauch\Desktop\kavkisfile.com-15-July-2013
2013-07-29 13:19 - 2013-07-29 13:19 - 00002340 _____ C:\Users\Hanss-Rauch\Desktop\Sicherer Zahlungsverkehr.lnk
2013-07-29 13:17 - 2013-07-29 13:17 - 00001146 _____ C:\Users\Public\Desktop\Kaspersky Internet Security 2013.lnk
2013-07-29 13:16 - 2013-07-29 13:16 - 00000000 ____D C:\Windows\ELAMBKUP
2013-07-29 13:16 - 2013-07-29 13:16 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-07-29 13:06 - 2012-03-19 15:43 - 00001912 _____ C:\Windows\epplauncher.mif
2013-07-29 13:01 - 2013-07-29 13:18 - 00248634 _____ C:\Users\Hanss-Rauch\Desktop\kavkisfile.com-15-July-2013.zip
2013-07-28 18:47 - 2012-05-24 18:16 - 00000000 ____D C:\Users\HANSS-~1\AppData\Local\PunkBuster
2013-07-26 07:13 - 2013-08-21 22:14 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-26 07:13 - 2013-08-21 22:14 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-26 07:13 - 2013-08-21 22:14 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-26 07:12 - 2013-08-21 22:14 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-26 07:12 - 2013-08-21 22:14 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-26 05:35 - 2013-08-21 22:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-26 05:13 - 2013-08-21 22:14 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-26 05:13 - 2013-08-21 22:14 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-26 05:12 - 2013-08-21 22:14 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-26 05:11 - 2013-08-21 22:14 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-26 05:11 - 2013-08-21 22:14 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-26 04:49 - 2013-08-21 22:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-26 04:39 - 2013-08-21 22:14 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-26 03:59 - 2013-08-21 22:14 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-25 11:25 - 2013-08-21 15:34 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-25 10:57 - 2013-08-21 15:34 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-08-16 11:57
==================== End Of Log ============================
--- --- ---
--- --- --- |
Farbar Service Scanner 