| |
| |||||||
Log-Analyse und Auswertung: Windows 7: Grün unterstrichene Wörter-links öffnen sich unerwünscht/ und langsames SystemWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
21.01.2014, 19:15
| #1 |
 |  Windows 7: Grün unterstrichene Wörter-links öffnen sich unerwünscht/ und langsames System Hallo zusammen, ich habe folgendes Problem: Seit ca. 1 Woche werden auf Webseiten und in manchen E-Mails Wörter doppelt grün unterstrichen und so dämliche links offnen sich immer. Ist echt nervig  Außerdem arbeitet mein System furchtbar langsam - es dauert eine Ewigkeit für den Seitenaufbau. Ich habe bereits von mir nicht mehr benötigte Programme gelöscht, hat aber leider nicht viel gebracht :-( Ich würde mich freuen wenn mir jemand bei der Systembereinigung helfen könnte. Hier schon mal die log files: Defogger Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 14:01 on 21/01/2014 (Games)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed
Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)
-=E.O.F=-
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-01-2014
Ran by Games (administrator) on JAMES-PC on 21-01-2014 14:49:32
Running from C:\Users\Games\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe
(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
() C:\Users\Games\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe
(Starfield Technologies) C:\Users\Games\AppData\Local\Workspace\workspaceupdate.exe
(Starfield Technologies, LLC) C:\Users\Games\AppData\Local\Workspace\wben.exe
(Starfield Technologies) C:\Users\Games\AppData\Local\Workspace\workspacestatus.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Users\Games\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
(Starfield Technologies) C:\Program Files (x86)\Workspace\offSyncService.exe
() C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe
(TorchMedia Inc.) C:\Users\James\AppData\Local\Torch\Update\TorchCrashHandler.exe
() C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
() C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Update\29.0.0.5394\TorchUpdate.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(Torch Media Inc.) C:\Users\Games\AppData\Local\Torch\Application\torch.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
() C:\Program Files (x86)\Mobogenie\mgusb.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VizorHtmlDialog.exe] - C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe [1123664 2010-10-08] (Trend Micro Inc.)
HKLM\...\Run: [Trend Micro Client Framework] - C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [192520 2010-10-12] (Trend Micro Inc.)
HKLM\...\Run: [Trend Micro Titanium] - C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [322384 2010-09-17] (Trend Micro Inc.)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Setwallpaper] - c:\programdata\SetWallpaper.cmd
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ISW] - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [1127592 2012-11-02] (Check Point Software Technologies)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
HKLM-x32\...\Run: [SonicMasterTray] - C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-14] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
HKLM-x32\...\Run: [TkBellExe] - "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160 2009-06-17] (Elaborate Bytes AG)
HKLM-x32\...\Run: [ROC_roc_dec12] - "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
HKLM-x32\...\Run: [ConnectionCenter] - C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [304568 2010-10-12] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [SearchProtection] - C:\ProgramData\Search Protection\_run.bat
HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73392 2012-11-19] (Check Point Software Technologies LTD)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-15] (Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761024 2013-12-13] ()
HKCU\...\Run: [Facebook Update] - C:\Users\Games\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-09-03] (Facebook Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [AppsHat] - C:\Users\Games\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Run: [Starfield Updater] - C:\Users\Games\AppData\Local\Workspace\WorkspaceUpdate.exe [35008 2013-11-26] (Starfield Technologies)
HKCU\...\Run: [wben] - C:\Users\Games\AppData\Local\Workspace\wben.exe [1569488 2013-09-16] (Starfield Technologies, LLC)
HKCU\...\Run: [Workspace Status] - C:\Users\Games\AppData\Local\Workspace\workspacestatus.exe [694760 2013-11-26] (Starfield Technologies)
HKCU\...\Run: [BitTorrent Sync] - "C:\Program Files (x86)\BitTorrent Sync\BTSync.exe" /MINIMIZED
HKCU\...\Run: [Guard] - C:\Users\Games\AppData\Local\Guard\Guard.exe
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKCU\...\Run: [LiveSupport] - "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
MountPoints2: I - I:\AutoRun.exe
MountPoints2: {02aafaee-1934-11e3-91cd-c4cc425a36e5} - I:\AutoRun.exe
MountPoints2: {02aafafb-1934-11e3-91cd-c4cc425a36e5} - I:\AutoRun.exe
MountPoints2: {0ccc2540-1afd-11e3-800d-ee577923bae4} - I:\AutoRun.exe
MountPoints2: {0ff0cd1d-9aea-11e2-83eb-b34a023c20f8} - I:\AutoRun.exe
MountPoints2: {37f98a62-f380-11e2-9d37-9006d26c93ea} - F:\Autorun.exe
MountPoints2: {97952342-24f4-11e3-9b62-d9c80c2f1fee} - I:\AutoRun.exe
MountPoints2: {a2f22f42-6d4b-11e3-bd5a-d7e31b3443e6} - I:\Startme.exe
MountPoints2: {a66f1d5f-2ab0-11e1-b714-806e6f6e6963} - E:\AUTORUN.EXE
MountPoints2: {bf606c9d-f1b4-11e1-bd91-74de2bb7ace5} - I:\AutoRun.exe
MountPoints2: {bfc9cc75-14c6-11e3-aae1-fd9bfadfc2e7} - F:\Setup.exe
MountPoints2: {bfc9cc77-14c6-11e3-aae1-fd9bfadfc2e7} - H:\Autorun.exe
MountPoints2: {fb0e5302-1a12-11e3-b263-e14b5e0e32e9} - I:\AutoRun.exe
AppInit_DLLs: C:\PROGRA~2\GS_X64~1.ENA => C:\Program Files (x86)\GS_x64.Enabler [2759168 2014-01-02] ()
HKLM\...\AppCertDlls: [mfpmtion] -> C:\Windows\system32\autoesvr.dll
HKLM\...\AppCertDlls: [TSThfWrp] -> C:\Windows\system32\autoesvr64.dll
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mysearchresults.com/?c=3513&t=01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://uk.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBF77C3C4CB80CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
URLSearchHook: HKLM-x32 - uTorrentBar_DE Toolbar - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTo1.dll No File
URLSearchHook: HKCU - UsProvider Class - {539F76FD-084E-4858-86D5-62F02F54AE86} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=394&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=394&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {EB2D70B7-C1A5-403A-A2D5-C267DBB982D3} URL =
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=394&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.chatzum.com/?q={searchTerms}
SearchScopes: HKCU - DefaultScope {37664FDF-0036-43BD-BF7B-ECEED6BD302B} URL = hxxp://search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=f82dc08500000000000000ff805ee3c7&toi=16056&r=847
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.golsearch.com/?q={searchTerms}&babsrc=SP_ss_Btisdt6&mntrId=F82D00FF805EE3C7&affID=121565&tsp=4996
SearchScopes: HKCU - {19027504-8460-4C52-8C4A-7BC79B712D81} URL = hxxp://www.mysearchresults.com/search?c=3513&t=07&q={searchTerms}
SearchScopes: HKCU - {37664FDF-0036-43BD-BF7B-ECEED6BD302B} URL = hxxp://search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=f82dc08500000000000000ff805ee3c7&toi=16056&r=847
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {DE3D5F51-5F6F-11E3-849C-D676A7E547E8} URL = hxxp://searchinfinitas.com/?affilt=4&q={searchTerms}&id={6BE548BB-91B9-47D3-9797-1AD6469DBDA3}
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll No File
BHO: Web Assistant - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension64.dll ()
BHO: YoutubeAdblocker - {546FD75D-C2F5-AD49-A431-4859AD4BFEED} - C:\Program Files (x86)\YoutubeAdblocker\c.x64.dll ()
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: SNT - {7960809A-4DE7-55B5-64CD-D8E731939AD2} - C:\Program Files (x86)\SNT\T9MtGrsa.x64.dll ()
BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: groeAtsaver - {9BDC6275-A11F-E7FA-19E4-28624CD3EF4F} - C:\Program Files (x86)\groeAtsaver\ml.x64.dll ()
BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL No File
BHO: KangoBHO - {A88DE8D3-9C38-4F0D-8981-A4C17F7677A1} - C:\Program Files (x86)\Notificatoin\1.0.0\KangoBHO64.dll (Kango)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File
BHO-x32: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: bflix Class - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files (x86)\TheBflix\TheBflix.dll (bflix)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.22.0\bh\zonealarm.dll No File
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
BHO-x32: Web Assistant - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll ()
BHO-x32: No Name - {546FD75D-C2F5-AD49-A431-4859AD4BFEED} - No File
BHO-x32: Incredibar.com Helper Object - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll No File
BHO-x32: No Name - {7960809A-4DE7-55B5-64CD-D8E731939AD2} - No File
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Games\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll No File
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll No File
BHO-x32: No Name - {9BDC6275-A11F-E7FA-19E4-28624CD3EF4F} - No File
BHO-x32: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\Datamngr\BROWSE~1.DLL No File
BHO-x32: KangoBHO - {A88DE8D3-9C38-4F0D-8981-A4C17F7677A1} - C:\Program Files (x86)\Notificatoin\1.0.0\KangoBHO.dll (Kango)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll No File
BHO-x32: MinibarBHO - {AA74D58F-ACD0-450D-A85E-6C04B171C044} - C:\Program Files (x86)\Minibar\Minibar.dll (KangoExtensions)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: uTorrentBar_DE Toolbar - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTo1.dll No File
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
BHO-x32: Softonic Helper Object - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files (x86)\Softonic\Softonic\1.8.28.14\bh\Softonic.dll (Softonic.com)
BHO-x32: SweetIM Toolbar Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll No File
BHO-x32: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE.dll No File
Toolbar: HKLM - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
Toolbar: HKLM - Kango - {F051F6BF-82D9-49A7-9E6C-BA63CDB487D2} - C:\Program Files (x86)\Notificatoin\1.0.0\KangoBHO64.dll (Kango)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" No File
Toolbar: HKLM-x32 - SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll No File
Toolbar: HKLM-x32 - uTorrentBar_DE Toolbar - {c840e246-6b95-475e-9bd7-caa1c7eca9f2} - C:\Program Files (x86)\uTorrentBar_DE\prxtbuTo1.dll No File
Toolbar: HKLM-x32 - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files (x86)\Softonic\Softonic\1.8.28.14\SoftonicTlbr.dll (Softonic.com)
Toolbar: HKLM-x32 - Incredibar Toolbar - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll No File
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll No File
Toolbar: HKLM-x32 - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.22.0\zonealarmTlbr.dll No File
Toolbar: HKLM-x32 - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll No File
Toolbar: HKCU - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)
Toolbar: HKCU - No Name - {C840E246-6B95-475E-9BD7-CAA1C7ECA9F2} - No File
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {784797A8-342D-4072-9486-03C8D0F2F0A1} hxxp://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.137.0.cab
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll No File
Tcpip\..\Interfaces\{2EA9336C-F105-401F-B9E7-AF4A770D910A}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{4E3762F9-0DAD-48D6-8C77-93FDD423227E}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{80EB6B9E-6BDF-4DB8-B204-D2DBEA8EF2E3}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{DB44198F-8EEC-4BD3-9262-AD9DC82D60AE}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{F9B82A9F-9EFA-4855-83C0-DED52AD8A417}: [NameServer]193.189.244.225 193.189.244.206
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (SNT) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\eijadeleefhaifppmbieihammjpeghlc [2014-01-02]
CHR Extension: (Softonic Chrome Toolbar) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf [2013-12-17]
CHR Extension: (Falcon Proxy) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\gchhimlnjdafdlkojbffdkogjhhkdepf [2014-01-02]
CHR Extension: (YYTBoookMarK) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjdeedipomiofonglppgbghpakhokccg [2014-01-02]
CHR Extension: (Notificatoin) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmhfbmpdiffkamakhdbcgojfnbnlcenm [2013-12-07]
CHR Extension: (YoutubeAdblocker) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\lioplliimlphfdmijhcajlhhfnicbeeo [2014-01-02]
CHR Extension: (GGReaitesaver) - C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\Extensions\nogejgaalfpbgfoblhdogiaefokkgkjb [2014-01-02]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx [2012-07-05]
CHR HKCU\...\Chrome\Extension: [hmhfbmpdiffkamakhdbcgojfnbnlcenm] - C:\ProgramData\Microsoft\Windows\DRM\Server\notificatoin_1.0.0.crx [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx [2012-07-05]
CHR HKLM-x32\...\Chrome\Extension: [elchiiiejkobdbblfejjkbphbddgmljf] - C:\Program Files (x86)\Softonic\Softonic\1.8.28.14\Softonic.crx [2013-11-21]
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Games\AppData\Roaming\BabSolution\CR\Delta.crx [2013-09-05]
CHR HKLM-x32\...\Chrome\Extension: [fgfdfcbeamjnjdejakdidpniblllnbpg] - C:\Windows\SysWOW64\jmdp\pnte.crx [2013-04-24]
CHR HKLM-x32\...\Chrome\Extension: [hmhfbmpdiffkamakhdbcgojfnbnlcenm] - C:\ProgramData\Microsoft\Windows\DRM\Server\notificatoin_1.0.0.crx [2013-11-28]
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-01-03]
CHR HKLM-x32\...\Chrome\Extension: [jlfihafpijfdgmojeeigcldgchhojpfp] - C:\Program Files (x86)\TheBflix\TheBflix.crx [2011-12-19]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-02-12]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Games\AppData\Local\Torch\Plugins\TorchPlugin.crx [2013-08-27]
CHR HKLM-x32\...\Chrome\Extension: [leocdeigfnkaojcapikdjcdbedcjmffc] - C:\Users\James\AppData\Local\Temp\ccex.crx [2013-08-27]
CHR HKLM-x32\...\Chrome\Extension: [lfffjahnfbocnaooecgijfnbpcfekoik] - C:\ProgramData\adawaretb\shortcuts\chrome\adawaretb.crx [2013-08-27]
CHR StartMenuInternet: Google Chrome - C:\Users\James\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
S2 1a34a8e0; C:\Program Files (x86)\GSSvc.dll [146768 2014-01-02] ()
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-10] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-07-14] (Advanced Micro Devices, Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-13] (Atheros)
R2 DefaultTabSearch; C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe [574464 2013-12-20] ()
R2 DefaultTabUpdate; C:\Users\Games\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-09-02] ()
R2 File Backup; C:\Program Files (x86)\Workspace\offSyncService.exe [1187040 2013-07-22] (Starfield Technologies)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe [542552 2012-04-10] ()
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [329544 2012-04-02] ()
R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [827560 2012-11-02] (Check Point Software Technologies)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2012-04-05] ()
R2 Simraceway Update Service; C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe [466944 2012-03-25] ()
R2 TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [241488 2010-09-17] (Trend Micro Inc.)
R2 TorchCrashHandler; C:\Users\James\AppData\Local\Torch\Update\TorchCrashHandler.exe [1205088 2013-06-20] (TorchMedia Inc.)
R2 Update Jump Flip; C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe [97056 2014-01-10] ()
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447440 2012-11-19] (Check Point Software Technologies LTD)
R2 Web Assistant; C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [188760 2013-01-29] ()
S3 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 [x]
S2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [x]
S3 BBSvc; "C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE" [x]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [x]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [x]
S3 gusvc; "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe" [x]
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [x]
==================== Drivers (Whitelisted) ====================
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-09-03] (Disc Soft Ltd)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [243200 2009-10-21] (Huawei Technologies Co., Ltd.)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-01-09] (GFI Software)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-10-12] (Huawei Technologies Co., Ltd.)
R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-02] (Check Point Software Technologies)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [611160 2012-11-15] (Kaspersky Lab)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-09-03] (Duplex Secure Ltd.)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [90704 2010-09-17] (Trend Micro Inc.)
R2 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [144464 2010-09-17] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [67664 2010-09-17] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105552 2010-09-17] (Trend Micro Inc.)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-11-01] (Check Point Software Technologies LTD)
S2 ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S1 ATKWMIACPIIO; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
U0 KL1;
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [89432 2012-11-15] (Kaspersky Lab)
S2 X5XSEx; \??\C:\Program Files (x86)\FantastiGames\X5XSEx.Sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-21 14:21 - 2014-01-21 14:48 - 00024791 _____ C:\Users\Games\Downloads\Addition.txt
2014-01-21 14:14 - 2014-01-21 14:50 - 00036617 _____ C:\Users\Games\Downloads\FRST.txt
2014-01-21 14:13 - 2014-01-21 14:13 - 00000000 ___DC C:\FRST
2014-01-21 14:12 - 2014-01-21 14:13 - 02077184 _____ (Farbar) C:\Users\Games\Downloads\FRST64.exe
2014-01-21 14:10 - 2014-01-21 14:11 - 01222144 _____ (Farbar) C:\Users\Games\Downloads\FRST.exe
2014-01-21 14:04 - 2014-01-21 14:04 - 00000000 ___RD C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-21 14:01 - 2014-01-21 14:02 - 00000652 _____ C:\Users\Games\Downloads\defogger_disable.log
2014-01-21 14:01 - 2014-01-21 14:01 - 00000188 _____ C:\Users\Games\defogger_reenable
2014-01-21 13:57 - 2014-01-21 13:57 - 00050477 _____ C:\Users\Games\Downloads\Defogger.exe
2014-01-21 11:55 - 2014-01-21 12:01 - 00000000 ____D C:\Users\Games\AppData\Roaming\TS3Client
2014-01-21 11:54 - 2014-01-21 11:54 - 00001164 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-21 11:54 - 2014-01-21 11:54 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-20 18:55 - 2014-01-20 18:55 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-01-20 17:09 - 2014-01-20 17:10 - 30095736 _____ (TeamSpeak Systems GmbH) C:\Users\Games\Downloads\TeamSpeak3-Client-win32-3.0.13.1.exe
2014-01-19 13:34 - 2014-01-19 13:34 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-17 14:06 - 2014-01-17 14:07 - 05387407 _____ C:\Users\Games\Downloads\absinthe-win-2.0.4.zip
2014-01-16 17:44 - 2014-01-16 19:38 - 00000039 _____ C:\Users\Games\Downloads\$50 Google Play Gift Card Code.txt
2014-01-16 12:36 - 2014-01-16 12:36 - 00003338 _____ C:\Windows\System32\Tasks\{9CA1A7D8-FC8A-4482-B140-111588726648}
2014-01-16 10:08 - 2014-01-16 10:08 - 00028918 _____ C:\Users\Games\AVSCAN-20140114-154705-3F965FC9.LOG
2014-01-15 16:19 - 2014-01-15 16:19 - 00002028 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-01-15 14:11 - 2014-01-15 14:11 - 00035560 _____ C:\Users\Games\Downloads\Avus-Auctions.swf
2014-01-15 10:30 - 2013-11-27 01:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 10:30 - 2013-11-27 01:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 10:22 - 2013-11-26 10:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 10:21 - 2013-11-26 11:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-14 13:30 - 2014-01-14 13:30 - 00000000 ____D C:\Users\Games\AppData\Roaming\TeamViewer
2014-01-14 09:38 - 2014-01-14 09:38 - 03974840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Games\Downloads\avira_oe_client_antivirus_en.exe
2014-01-13 16:20 - 2014-01-21 14:49 - 00024562 _____ C:\Users\Games\daemonprocess.txt
2014-01-13 16:20 - 2014-01-16 12:58 - 00000000 ____D C:\Users\Games\AppData\Roaming\newnext.me
2014-01-13 16:20 - 2014-01-13 16:36 - 00000000 ____D C:\Users\Games\AppData\Local\Mobogenie
2014-01-13 16:20 - 2014-01-13 16:30 - 00000000 ____D C:\Users\Games\AppData\Local\cache
2014-01-13 16:20 - 2014-01-13 16:21 - 00000000 ____D C:\Users\Games\.android
2014-01-13 16:20 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\Documents\Mobogenie
2014-01-13 16:20 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\AppData\Local\genienext
2014-01-13 16:19 - 2014-01-13 16:19 - 00000000 ____D C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2014-01-13 16:17 - 2014-01-13 23:58 - 00000000 ____D C:\Program Files (x86)\Jump Flip
2014-01-13 16:15 - 2014-01-13 16:35 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2014-01-09 22:18 - 2014-01-09 22:19 - 00678528 _____ C:\Windows\Minidump\010914-23088-01.dmp
2014-01-03 15:22 - 2014-01-03 15:22 - 00275320 _____ C:\Windows\Minidump\010314-37627-01.dmp
2014-01-02 19:58 - 2014-01-02 19:58 - 00000000 ____D C:\Users\Games\Documents\Optimizer Pro
2014-01-02 19:42 - 2014-01-09 18:24 - 00000000 ____D C:\Program Files (x86)\SNT
2014-01-02 19:42 - 2014-01-02 19:42 - 00000000 ____D C:\ProgramData\SNT
2014-01-02 19:41 - 2014-01-03 12:29 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2014-01-02 19:39 - 2014-01-21 14:04 - 00000460 ____H C:\Windows\Tasks\GS.Enabler-S-926685765.job
2014-01-02 19:39 - 2014-01-02 19:39 - 00002706 _____ C:\Windows\System32\Tasks\GS.Enabler-S-926685765
2014-01-02 19:39 - 2014-01-02 19:39 - 00000000 ____D C:\ProgramData\SoftWarehouse
2014-01-02 19:38 - 2014-01-02 19:38 - 02759168 _____ C:\Program Files (x86)\GS_x64.Enabler
2014-01-02 19:38 - 2014-01-02 19:38 - 00146768 _____ C:\Program Files (x86)\GSSvc.dll
2014-01-02 19:36 - 2014-01-09 18:22 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2014-01-02 19:36 - 2014-01-02 19:36 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2014-01-02 19:34 - 2014-01-09 18:25 - 00000000 ____D C:\Program Files (x86)\groeAtsaver
2014-01-02 19:34 - 2014-01-02 19:34 - 00000000 ____D C:\Users\Games\AppData\Local\Packages
2014-01-02 19:34 - 2014-01-02 19:34 - 00000000 ____D C:\ProgramData\groeAtsaver
2014-01-02 19:33 - 2014-01-02 19:42 - 00000000 ____D C:\ProgramData\c365fe6957fefdff
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Games\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator
2014-01-02 17:42 - 2014-01-02 17:42 - 00000003 _____ C:\Users\Games\Documents\Problem TDU2.txt
2013-12-31 21:22 - 2014-01-21 10:07 - 00006770 _____ C:\Users\Games\ac3dprefs.txt
2013-12-31 21:19 - 2013-12-31 21:19 - 00001008 _____ C:\Users\Games\Desktop\AC3D.lnk
2013-12-31 21:19 - 2013-12-31 21:19 - 00000000 ____D C:\Program Files (x86)\AC3D 7.0.11
2013-12-31 12:37 - 2013-12-31 12:37 - 00732768 _____ C:\Windows\Minidump\123113-23056-01.dmp
2013-12-25 13:37 - 2014-01-15 17:47 - 00205090 _____ C:\Windows\DPINST.LOG
2013-12-25 13:36 - 2013-12-25 13:36 - 00000000 ____D C:\ProgramData\Sony
2013-12-25 13:36 - 2013-12-25 13:36 - 00000000 ____D C:\Program Files (x86)\Sony
==================== One Month Modified Files and Folders =======
2014-01-21 14:50 - 2014-01-21 14:14 - 00036617 _____ C:\Users\Games\Downloads\FRST.txt
2014-01-21 14:50 - 2012-07-05 14:59 - 00000908 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA.job
2014-01-21 14:49 - 2014-01-13 16:20 - 00024562 _____ C:\Users\Games\daemonprocess.txt
2014-01-21 14:48 - 2014-01-21 14:21 - 00024791 _____ C:\Users\Games\Downloads\Addition.txt
2014-01-21 14:48 - 2013-09-03 19:19 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005UA.job
2014-01-21 14:48 - 2013-08-27 12:21 - 00000000 ____D C:\Users\Games\AppData\Local\CrashDumps
2014-01-21 14:48 - 2012-10-22 19:24 - 00000928 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA.job
2014-01-21 14:48 - 2011-11-08 14:22 - 01755973 _____ C:\Windows\WindowsUpdate.log
2014-01-21 14:13 - 2014-01-21 14:13 - 00000000 ___DC C:\FRST
2014-01-21 14:13 - 2014-01-21 14:12 - 02077184 _____ (Farbar) C:\Users\Games\Downloads\FRST64.exe
2014-01-21 14:13 - 2009-07-14 04:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-21 14:13 - 2009-07-14 04:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-21 14:11 - 2014-01-21 14:10 - 01222144 _____ (Farbar) C:\Users\Games\Downloads\FRST.exe
2014-01-21 14:05 - 2013-10-06 17:51 - 00000000 ____D C:\Users\Games\AppData\Local\LogMeIn Hamachi
2014-01-21 14:05 - 2013-09-05 18:54 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-21 14:05 - 2013-06-25 16:47 - 00000000 ____D C:\ProgramData\TorchCrashHandler
2014-01-21 14:04 - 2014-01-21 14:04 - 00000000 ___RD C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-21 14:04 - 2014-01-02 19:39 - 00000460 ____H C:\Windows\Tasks\GS.Enabler-S-926685765.job
2014-01-21 14:04 - 2013-08-27 12:22 - 00018214 _____ C:\Windows\setupact.log
2014-01-21 14:04 - 2012-01-03 13:24 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-21 14:04 - 2009-07-14 05:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-21 14:02 - 2014-01-21 14:01 - 00000652 _____ C:\Users\Games\Downloads\defogger_disable.log
2014-01-21 14:01 - 2014-01-21 14:01 - 00000188 _____ C:\Users\Games\defogger_reenable
2014-01-21 14:01 - 2013-07-14 19:51 - 00000000 ____D C:\Users\Games
2014-01-21 14:00 - 2012-01-03 13:24 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-21 13:57 - 2014-01-21 13:57 - 00050477 _____ C:\Users\Games\Downloads\Defogger.exe
2014-01-21 13:56 - 2013-08-28 08:10 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-21 12:53 - 2013-09-02 14:12 - 00000000 ____D C:\Users\Games\AppData\Roaming\Skype
2014-01-21 12:29 - 2013-09-02 12:50 - 00000258 __RSH C:\Users\Games\ntuser.pol
2014-01-21 12:01 - 2014-01-21 11:55 - 00000000 ____D C:\Users\Games\AppData\Roaming\TS3Client
2014-01-21 11:58 - 2009-07-14 05:13 - 00747046 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-21 11:54 - 2014-01-21 11:54 - 00001164 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-01-21 11:54 - 2014-01-21 11:54 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2014-01-21 10:07 - 2013-12-31 21:22 - 00006770 _____ C:\Users\Games\ac3dprefs.txt
2014-01-20 23:15 - 2012-07-05 14:59 - 00000856 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core.job
2014-01-20 20:29 - 2012-10-22 19:24 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core.job
2014-01-20 20:24 - 2013-09-03 19:19 - 00000906 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005Core.job
2014-01-20 18:55 - 2014-01-20 18:55 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-01-20 17:55 - 2011-12-27 17:59 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-20 17:10 - 2014-01-20 17:09 - 30095736 _____ (TeamSpeak Systems GmbH) C:\Users\Games\Downloads\TeamSpeak3-Client-win32-3.0.13.1.exe
2014-01-20 17:09 - 2013-12-11 11:30 - 00013289 _____ C:\Users\Games\Documents\Hotelkaufmann Liste.xlsx
2014-01-19 13:34 - 2014-01-19 13:34 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-18 23:32 - 2013-09-06 10:02 - 00117172 _____ C:\Windows\PFRO.log
2014-01-18 11:46 - 2013-08-27 20:12 - 00000000 ____D C:\Users\Games\AppData\Roaming\.technic
2014-01-17 22:54 - 2013-08-27 11:24 - 00124136 _____ C:\Users\Games\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-17 22:50 - 2013-08-28 08:05 - 00443504 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-17 14:07 - 2014-01-17 14:06 - 05387407 _____ C:\Users\Games\Downloads\absinthe-win-2.0.4.zip
2014-01-16 19:38 - 2014-01-16 17:44 - 00000039 _____ C:\Users\Games\Downloads\$50 Google Play Gift Card Code.txt
2014-01-16 16:44 - 2013-10-27 14:50 - 02314844 _____ () C:\Users\Games\Desktop\TechnicLauncher.exe
2014-01-16 14:33 - 2011-11-08 14:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-16 12:58 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\AppData\Roaming\newnext.me
2014-01-16 12:36 - 2014-01-16 12:36 - 00003338 _____ C:\Windows\System32\Tasks\{9CA1A7D8-FC8A-4482-B140-111588726648}
2014-01-16 10:18 - 2012-01-07 17:13 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 10:14 - 2013-02-18 23:25 - 00014569 ____H C:\Windows\SysWOW64\BTImages.dat
2014-01-16 10:08 - 2014-01-16 10:08 - 00028918 _____ C:\Users\Games\AVSCAN-20140114-154705-3F965FC9.LOG
2014-01-16 09:59 - 2013-09-23 20:26 - 00000326 _____ C:\Windows\Tasks\SuperEasyDriverUpdater_UPDATES.job
2014-01-15 17:47 - 2013-12-25 13:37 - 00205090 _____ C:\Windows\DPINST.LOG
2014-01-15 16:19 - 2014-01-15 16:19 - 00002028 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-01-15 14:11 - 2014-01-15 14:11 - 00035560 _____ C:\Users\Games\Downloads\Avus-Auctions.swf
2014-01-15 11:01 - 2013-10-07 13:05 - 00000000 ____D C:\Users\Games\Documents\Bewerbungs Unterlagen
2014-01-14 13:30 - 2014-01-14 13:30 - 00000000 ____D C:\Users\Games\AppData\Roaming\TeamViewer
2014-01-14 09:38 - 2014-01-14 09:38 - 03974840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Games\Downloads\avira_oe_client_antivirus_en.exe
2014-01-14 00:08 - 2013-09-01 14:23 - 00000000 ____D C:\Users\Games\AppData\Roaming\vlc
2014-01-13 23:58 - 2014-01-13 16:17 - 00000000 ____D C:\Program Files (x86)\Jump Flip
2014-01-13 16:36 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\AppData\Local\Mobogenie
2014-01-13 16:35 - 2014-01-13 16:15 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2014-01-13 16:30 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\AppData\Local\cache
2014-01-13 16:21 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\.android
2014-01-13 16:20 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\Documents\Mobogenie
2014-01-13 16:20 - 2014-01-13 16:20 - 00000000 ____D C:\Users\Games\AppData\Local\genienext
2014-01-13 16:19 - 2014-01-13 16:19 - 00000000 ____D C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2014-01-09 22:19 - 2014-01-09 22:18 - 00678528 _____ C:\Windows\Minidump\010914-23088-01.dmp
2014-01-09 22:18 - 2013-10-16 14:14 - 528614386 _____ C:\Windows\MEMORY.DMP
2014-01-09 22:18 - 2012-04-04 13:42 - 00000000 ____D C:\Windows\Minidump
2014-01-09 18:25 - 2014-01-02 19:34 - 00000000 ____D C:\Program Files (x86)\groeAtsaver
2014-01-09 18:24 - 2014-01-02 19:42 - 00000000 ____D C:\Program Files (x86)\SNT
2014-01-09 18:22 - 2014-01-02 19:36 - 00000000 ____D C:\Program Files (x86)\YoutubeAdblocker
2014-01-08 17:36 - 2013-10-04 18:02 - 00000000 ____D C:\Users\Games\AppData\Roaming\.minecraft
2014-01-07 18:51 - 2013-09-01 16:40 - 00001844 _____ C:\Users\Games\Desktop\police2.lnk
2014-01-05 12:24 - 2009-07-14 05:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-03 15:22 - 2014-01-03 15:22 - 00275320 _____ C:\Windows\Minidump\010314-37627-01.dmp
2014-01-03 12:29 - 2014-01-02 19:41 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2014-01-02 19:58 - 2014-01-02 19:58 - 00000000 ____D C:\Users\Games\Documents\Optimizer Pro
2014-01-02 19:42 - 2014-01-02 19:42 - 00000000 ____D C:\ProgramData\SNT
2014-01-02 19:42 - 2014-01-02 19:33 - 00000000 ____D C:\ProgramData\c365fe6957fefdff
2014-01-02 19:39 - 2014-01-02 19:39 - 00002706 _____ C:\Windows\System32\Tasks\GS.Enabler-S-926685765
2014-01-02 19:39 - 2014-01-02 19:39 - 00000000 ____D C:\ProgramData\SoftWarehouse
2014-01-02 19:38 - 2014-01-02 19:38 - 02759168 _____ C:\Program Files (x86)\GS_x64.Enabler
2014-01-02 19:38 - 2014-01-02 19:38 - 00146768 _____ C:\Program Files (x86)\GSSvc.dll
2014-01-02 19:36 - 2014-01-02 19:36 - 00000000 ____D C:\ProgramData\YoutubeAdblocker
2014-01-02 19:34 - 2014-01-02 19:34 - 00000000 ____D C:\Users\Games\AppData\Local\Packages
2014-01-02 19:34 - 2014-01-02 19:34 - 00000000 ____D C:\ProgramData\groeAtsaver
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\HomeGroupUser$
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Guest\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Games\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Torch
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator\AppData\Local\Comodo
2014-01-02 19:33 - 2014-01-02 19:33 - 00000000 ____D C:\Users\Administrator
2014-01-02 19:33 - 2013-08-27 15:02 - 00000000 ____D C:\Users\Games\AppData\Local\Google
2014-01-02 19:32 - 2011-12-28 12:14 - 00000000 ____D C:\ProgramData\InstallMate
2014-01-02 17:42 - 2014-01-02 17:42 - 00000003 _____ C:\Users\Games\Documents\Problem TDU2.txt
2014-01-02 12:24 - 2012-04-05 12:05 - 00000334 _____ C:\Windows\Tasks\At1.job
2013-12-31 21:19 - 2013-12-31 21:19 - 00001008 _____ C:\Users\Games\Desktop\AC3D.lnk
2013-12-31 21:19 - 2013-12-31 21:19 - 00000000 ____D C:\Program Files (x86)\AC3D 7.0.11
2013-12-31 12:37 - 2013-12-31 12:37 - 00732768 _____ C:\Windows\Minidump\123113-23056-01.dmp
2013-12-29 21:17 - 2013-12-17 18:21 - 00000711 _____ C:\Users\Games\Desktop\Cheat Engine.lnk
2013-12-27 12:55 - 2013-08-27 12:55 - 00001401 _____ C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
2013-12-25 22:09 - 2013-08-27 12:49 - 00000000 ____D C:\Users\Games\AppData\Local\Torch
2013-12-25 13:36 - 2013-12-25 13:36 - 00000000 ____D C:\ProgramData\Sony
2013-12-25 13:36 - 2013-12-25 13:36 - 00000000 ____D C:\Program Files (x86)\Sony
2013-12-25 10:03 - 2013-09-02 12:50 - 00000000 ____D C:\Program Files (x86)\DefaultTab
2013-12-23 15:11 - 2012-10-22 19:46 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-23 15:11 - 2012-10-22 19:46 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 12:17 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\rescache
2013-12-23 11:31 - 2011-12-19 11:27 - 00000000 __HDC C:\ASUS.DAT
2013-12-23 11:31 - 2011-04-13 02:47 - 00000000 ___DC C:\Program Files (x86)\ASUS
Files to move or delete:
====================
C:\Users\Games\jagex_cl_runescape_LIVE.dat
C:\Users\Games\random.dat
C:\Windows\Tasks\At1.job
Some content of TEMP:
====================
C:\Users\Games\AppData\Local\Temp\7z920.exe
C:\Users\Games\AppData\Local\Temp\appshat-distribution.exe
C:\Users\Games\AppData\Local\Temp\avgnt.exe
C:\Users\Games\AppData\Local\Temp\bitool.dll
C:\Users\Games\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Games\AppData\Local\Temp\DefaultTabSetup2.exe
C:\Users\Games\AppData\Local\Temp\down.7316.Mobogenie_Setup_2.1.26_519.exe
C:\Users\Games\AppData\Local\Temp\drm_dyndata_7380014.dll
C:\Users\Games\AppData\Local\Temp\IminentSetup-1-.exe
C:\Users\Games\AppData\Local\Temp\LiveSupport_setup.exe
C:\Users\Games\AppData\Local\Temp\NFSW_PursuitBot.exe
C:\Users\Games\AppData\Local\Temp\OptimizerPro.exe
C:\Users\Games\AppData\Local\Temp\plus-hd-2-6.exe
C:\Users\Games\AppData\Local\Temp\ResetDevice.exe
C:\Users\Games\AppData\Local\Temp\Softonic_chr_1-8-28-14_cn_sign.exe
C:\Users\Games\AppData\Local\Temp\TsuA124289B.dll
C:\Users\Games\AppData\Local\Temp\Uninstall.exe
C:\Users\Games\AppData\Local\Temp\UpdateCheckerSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-21 14:06
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-01-2014
Ran by Games at 2014-01-21 14:55:19
Running from C:\Users\Games\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: ZoneAlarm Antivirus (Enabled - Up to date) {DE038A5B-9EDD-18A9-2361-FF7D98D43730}
AV: Trend Micro Titanium Internet Security (Disabled - Up to date) {68F968AC-2AA0-091D-848C-803E83E35902}
AS: Trend Micro Titanium Internet Security (Disabled - Up to date) {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ZoneAlarm Anti-Spyware (Enabled - Up to date) {65626BBF-B8E7-1727-19D1-C40FE3537D8D}
FW: ZoneAlarm Firewall (Enabled) {E6380B7E-D4B2-19F1-083E-56486607704B}
==================== Installed Programs ======================
/BFlix (Version: 1.0 - WebPick) <==== ATTENTION
µTorrent (HKCU Version: 3.3.2.30303 - BitTorrent Inc.)
¾©Áú¿Æ¼¼-Grand Theft Auto: Vice City (x32 Version: - )
7-Zip 9.20 (x32 Version: - )
AC3D 7.0.11 (x32 Version: - Inivis)
Adobe Flash Player 10 Plugin (x32 Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Help Center 1.0 (x32 Version: 001.000.000 - Adobe Systems) Hidden
Adobe Photoshop CS2 (x32 Version: 9.0 - Adobe Systems, Inc.) Hidden
Adobe Reader 6.0.2 (x32 Version: 006.000.002 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.7.148 - Adobe Systems, Inc.)
Agricultural Simulator 2013 - Demo (x32 Version: - )
AMD APP SDK Runtime (Version: 2.5.709.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.60713.1822 - Advanced Micro Devices, Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (x32 Version: 2.3.4 - Apple Inc.)
Apple Mobile Device Support (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
AppsHat Mobile Apps (HKCU Version: 1.0.0.0 - Somoto Ltd.) <==== ATTENTION
ASUS AI Recovery (x32 Version: 1.0.13 - ASUS)
ASUS FancyStart (x32 Version: 1.1.0 - ASUSTeK Computer Inc.)
ASUS Live Update (x32 Version: 3.0.8 - ASUS)
ASUS Power4Gear Hybrid (Version: 1.1.50 - ASUS)
ASUS SmartLogon (x32 Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0033 - ASUS)
ASUS Virtual Camera (x32 Version: 1.0.21 - asus)
ASUS WebStorage (x32 Version: 3.0.84.161 - eCareme Technologies, Inc.)
ASUS_Screensaver (x32 Version: - )
AsusVibe2.0 (x32 Version: 2.0.4.617 - ASUSTEK)
Atheros Client Installation Program (x32 Version: 7.0 - Atheros)
ATK Package (x32 Version: 1.0.0010 - ASUS)
aTube Catcher (x32 Version: 2.9.4272 - DsNET Corp)
Audacity 2.0.5 (x32 Version: 2.0.5 - Audacity Team)
Bing Bar (x32 Version: 7.0.610.0 - Microsoft Corporation)
Bluetooth Win7 Suite (64) (Version: 7.2.0.65 - Atheros Communications)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Bookworm Deluxe (x32 Version: - Oberon Media Inc.)
Catalyst Control Center InstallProxy (x32 Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2011.0713.1829.31376 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2011.0713.1830.31376 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.02 - Piriform)
Cheat Engine 6.3 (x32 Version: - Cheat Engine)
Chivalry: Medieval Warfare (x32 Version: - Torn Banner Studios)
Citrix online plug-in - web (x32 Version: 12.1.0.30 - Citrix Systems, Inc.)
Citrix online plug-in (DV) (x32 Version: 12.1.0.30 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (HDX) (x32 Version: 12.1.0.30 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (USB) (x32 Version: 12.1.0.30 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (Web) (x32 Version: 12.1.0.30 - Citrix Systems, Inc.) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Cooking Dash (x32 Version: - Oberon Media Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (x32 Version: 4.47.1.0337 - Disc Soft Ltd)
DAEMON Tools Pro (x32 Version: 5.0.0316.0317 - DT Soft Ltd)
DefaultTab (x32 Version: 2.2.3.0 - Search Results, LLC) <==== ATTENTION
DefaultTab Chrome (x32 Version: 1.1.25 - ) <==== ATTENTION
Delta Chrome Toolbar (x32 Version: - Visual Tools) <==== ATTENTION
Driver San Francisco (x32 Version: 1.4.0.0 - Ubisoft)
Electronic Arts Game Updater (x32 Version: - )
ETDWare PS/2-X64 8.0.5.1_WHQL (Version: 8.0.5.1 - ELAN Microelectronic Corp.)
Facebook Video Calling 2.0.0.447 (x32 Version: 2.0.447 - Skype Limited)
FantastiGames (x32 Version: - Koyote-Lab Inc)
Fast Boot (Version: 1.0.9 - ASUS)
Fraps (remove only) (x32 Version: - )
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4209.2358 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.145 - Google Inc.) Hidden
Governor of Poker (x32 Version: - Oberon Media Inc.)
groeAtsaver (x32 Version: 1.1.0.1286 - greatsavEr) <==== ATTENTION
GS.Enabler (x32 Version: 3.3.0.1302 - PremiumSoft) <==== ATTENTION
GS.Supporter 1.80 (x32 Version: - Verified Publisher) <==== ATTENTION
Gun Monkeys (x32 Version: - Size Five Games)
Hotel Dash Suite Success (x32 Version: - Oberon Media Inc.)
IB Updater Service (x32 Version: 3.0.4.6 - ) <==== ATTENTION
iTunes (Version: 11.0.3.42 - Apple Inc.)
Java 7 Update 40 (64-bit) (Version: 7.0.400 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 30 (x32 Version: 6.0.300 - Oracle)
Jewel Quest 3 (x32 Version: - Oberon Media Inc.)
Jump Flip (Version: 2014.01.10.194223 - Jump Flip) <==== ATTENTION
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.) Hidden
Luxor 3 (x32 Version: - Oberon Media Inc.)
MAGIX Online Druck Service (x32 Version: - Silverwire Software GmbH)
Mahjongg dimensions (x32 Version: - Oberon Media Inc.)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0 - Microsoft)
Mobile Partner (x32 Version: 11.302.06.07.40 - Huawei Technologies Co.,Ltd)
Mobogenie (x32 Version: - Mobogenie.com) <==== ATTENTION
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Need For Speed - Porsche Unleashed (x32 Version: - )
Need For Speed High Stakes (x32 Version: - )
Need For Speed™ World (x32 Version: 1.0.0.1599 - Electronic Arts)
Notificatoin (x32 Version: 1.0.0 - KangoExtensions)
NVIDIA PhysX (x32 Version: 9.10.0513 - NVIDIA Corporation)
Oblivion (x32 Version: 1.2.0416 - Bethesda Softworks)
OptimizerPro Updater (x32 Version: - ) <==== ATTENTION
Pando Media Booster (x32 Version: 2.6.0.2 - Pando Networks Inc.)
PlanetSide 2 (x32 Version: - Sony Online Entertainment)
Plants vs Zombies (x32 Version: - Oberon Media Inc.)
Police Force 2 (x32 Version: 2 - Friends in War)
PunkBuster Services (x32 Version: 0.990 - Even Balance, Inc.)
Python 3.3.3 (x32 Version: 3.3.3150 - Python Software Foundation)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealPlayer (x32 Version: - RealNetworks)
Realtek Ethernet Controller Driver (x32 Version: 7.42.304.2011 - Realtek)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Rising Storm Beta (x32 Version: - )
Roads of Rome (x32 Version: - )
Rockstar Games Social Club (x32 Version: 1.1.0.6 - Rockstar Games)
RuneScape Launcher 1.2.3 (x32 Version: 1.2.3 - Jagex Ltd)
Saints Row: The Third (x32 Version: - Volition)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sleeping Dogs™ (x32 Version: - United Front Games)
SNT (x32 Version: 1.3.0.1247 - SNT) <==== ATTENTION
Softonic toolbar on IE and Chrome (x32 Version: 1.8.28.14 - Softonic) <==== ATTENTION
Sonic Focus (x32 Version: 1.0.0.4 - Synopsys )
Sony PC Companion 2.10.188 (x32 Version: 2.10.188 - Sony)
Sothink Logo Maker (x32 Version: 3.5 - SourceTec Software Co., LTD)
Souvenir 1.0 (x32 Version: 1.0 - )
Split/Second (x32 Version: 1.00.0000 - Disney Interactive Studios)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
SuperEasy Driver Updater v.1.1.1 (x32 Version: 1.1.1 - SuperEasy Software GmbH & Co. KG)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (x32 Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamViewer 8 (x32 Version: 8.0.19617 - TeamViewer)
Test Drive Unlimited 2 (x32 Version: - Atari)
The Treasures of Montezuma (x32 Version: - )
TheBflix (x32 Version: 0.0.0.1 - TheBflix) <==== ATTENTION
Torch (HKCU Version: 29.0.0.5394 - Torch Media, Inc) <==== ATTENTION
Trend Micro Titanium Internet Security (Version: 3.0 - Trend Micro Inc.)
Trend Micro Titanium Internet Security (Version: 3.00 - Trend Micro Inc.) Hidden
TurboCAD V.8 (x32 Version: 8.2.51.0 - Mediagold)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
Unlikely Suspects (x32 Version: - )
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (x32 Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
Uplay (x32 Version: 2.1 - Ubisoft)
uTorrentBar_DE Toolbar (x32 Version: 6.14.0.28 - uTorrentBar_DE) <==== ATTENTION
VirtualCloneDrive (x32 Version: - Elaborate Bytes)
VirtualDJ Home FREE (x32 Version: 7.0.4.1 - Atomix Productions)
VirtualDJ Home FREE (x32 Version: 7.4 - Atomix Productions)
Visual Studio 2008 x64 Redistributables (x32 Version: 10.0.0.2 - AVG Technologies)
VLC media player 2.0.4 (x32 Version: 2.0.4 - VideoLAN)
Web Assistant 2.0.0.572 (Version: 2.0.0.572 - IncrediBar) <==== ATTENTION
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile Device Center (Version: 6.1.6965.0 - Microsoft Corporation)
WinFlash (x32 Version: 2.31.1 - ASUS)
WinRAR 4.10 (64-bit) (Version: 4.10.0 - win.rar GmbH)
Wireless Console 3 (x32 Version: 3.0.21 - ASUS)
Workspace Desktop (HKCU Version: - Starfield Technologies)
World of Goo (x32 Version: - Oberon Media Inc.)
World of Tanks (x32 Version: - Wargaming.net)
World of Warplanes (x32 Version: - Wargaming.net)
YoutubeAdblocker (x32 Version: 3.0.0.1605 - YoutubeAdblocker) <==== ATTENTION
ZoneAlarm Antivirus (x32 Version: 11.0.000.020 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Firewall (x32 Version: 11.0.000.020 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Antivirus + Firewall (x32 Version: 12.0.104.000 - Check Point)
ZoneAlarm LTD Toolbar (Version: - Check Point Software Technologies)
ZoneAlarm Security (x32 Version: 11.0.000.020 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Security Toolbar (x32 Version: 1.8.22.0 - Check Point Software Technologies LTD)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (x32 Version: 15.4.5722.2 - Microsoft Corporation)
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (x32 Version: 15.4.5722.2 - Microsoft Corporation)
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (x32 Version: 15.4.5722.2 - Microsoft Corporation)
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (x32 Version: 15.4.5722.2 - Microsoft Corporation)
==================== Restore Points =========================
08-01-2014 14:00:22 Windows Update
13-01-2014 10:03:54 Windows Update
16-01-2014 10:11:38 Windows Modules Installer
16-01-2014 14:32:02 Removed L.A. Noire
17-01-2014 13:13:26 Removed syncables desktop SE.
17-01-2014 13:45:28 Removed syncables desktop SE.
19-01-2014 12:54:27 Windows Update
==================== Hosts content: ==========================
2009-07-14 02:34 - 2009-06-10 21:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {09E0AEFA-6989-40D0-A9E0-FB9E78C39B4F} - System32\Tasks\RealCreateProcessScheduledTask21832059S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {10CA04E1-2B6C-4154-8475-8A1CEFFAD5CE} - System32\Tasks\GS.Enabler-S-926685765 => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION
Task: {138970DF-0B46-4D2E-9004-519C46F76C45} - System32\Tasks\RealCreateProcessScheduledTask257723495S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {169F547C-9A25-4A93-BFE6-D78349891E78} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {22CD89AD-8986-4CD0-BA4D-DC97FA42ED7B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {2B49694E-38DE-4918-AE4E-34062625453B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {3CF63DC3-9B35-47A8-91D4-3BCD224C5694} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-11-17] (ASUSTeK Computer Inc.)
Task: {47EF532E-C5F4-4DAF-BA7E-125AC9595DD6} - System32\Tasks\RealCreateProcessScheduledTask265570361S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {5272B5A3-F3B1-46DB-B324-BB27DD98C485} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2011-11-15] (ASUS)
Task: {554388BB-EF37-4F16-9C9E-5D940FB64E29} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {5637C182-47E0-4112-A7BC-E55C0155F9F4} - System32\Tasks\SuperEasyDriverUpdaterRunAtStartup => C:\Program Files (x86)\SuperEasy Software\Driver Updater\supereasydu.exe
Task: {5CD6E4A1-2418-4E98-9DBC-30B546ADCD83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {5EFD035A-6554-4E7A-A2AB-DD83E046F80B} - System32\Tasks\EPUpdater => C:\Users\Games\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION
Task: {65738499-CB0D-45F7-BDDF-D0597E430627} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005Core => C:\Users\Games\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-03] (Facebook Inc.)
Task: {69BD0D36-9976-4F2C-B09C-43F68B29DD4A} - System32\Tasks\RealCreateProcessScheduledTask16416219S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {71E6B5EC-4417-4F6D-B27B-B465CC185C70} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
Task: {7257D291-9126-4C4D-A2FA-869063186CF4} - System32\Tasks\SuperEasyDriverUpdater_UPDATES => C:\Program Files (x86)\SuperEasy Software\Driver Updater\supereasydu.exe
Task: {7A08C995-F859-4F56-8FC9-4721AAA48F06} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core => C:\Users\James\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {7E531822-1FCE-4521-8E75-4B703F782D76} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)
Task: {80835255-B46F-496E-816C-047A71CEACCA} - System32\Tasks\RealCreateProcessScheduledTask3236365S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {81108186-F7F5-4D36-B73C-04DE1D043C59} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA => C:\Users\James\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {84354861-7C93-432D-9985-72B4F0184214} - System32\Tasks\RealCreateProcessScheduledTask258948071S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {88A406AB-7D9A-4F90-9EF9-0ECB3FB72C87} - System32\Tasks\{15C7B307-8012-40F1-9E1C-3D747ECC019B} => C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher.exe
Task: {A29FBCAE-56CA-4AB7-B8CA-7FFC46C9CE53} - System32\Tasks\RealCreateProcessScheduledTask262694202S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {A35508A7-6B3F-4F37-AF8F-9728451FFAFA} - System32\Tasks\RealCreateProcessScheduledTask17203400S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {A715C936-ABFB-4419-B842-9249297111B7} - System32\Tasks\RealCreateProcessScheduledTask91731489S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {AF42EC74-5E4B-43E6-A0F9-13ACB8AE9DF1} - System32\Tasks\OptimizerProUpdaterRefreshTask => C:\ProgramData\OptimizerPro\ix_updater.exe <==== ATTENTION
Task: {AF6DC95B-EBD5-4A02-9EDA-D80038982329} - System32\Tasks\At1 => C:\Windows\winhlp322.exe
Task: {B0965DD7-DD89-4D50-A648-BAFF8129821D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA => C:\Users\James\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {B1CFF9D2-7350-471A-B626-20B7E96F2C65} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core => C:\Users\James\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {C0D94F76-D3CA-4691-A8C8-7EFDB8BAA914} - System32\Tasks\RealCreateProcessScheduledTask4575244S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {D22038D8-2CD1-445A-8C77-BFB67C0AB59F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005UA => C:\Users\Games\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-03] (Facebook Inc.)
Task: {D2D24A0B-D47C-459F-8F66-DABAF238102D} - System32\Tasks\OptimizerProUpdaterLogonTask => C:\ProgramData\OptimizerPro\ix_updater.exe <==== ATTENTION
Task: {D4D57B3B-8A43-4387-A768-EE2430D47529} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {D8B767B0-2784-4B4B-8938-53EEA3106C32} - System32\Tasks\RealCreateProcessScheduledTask67917609S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {DDF2A8BD-EDCE-477A-8828-D2B3731993E2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {F4596550-8A38-4B4E-B4F6-F15695736295} - System32\Tasks\RealCreateProcessScheduledTask17017743S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: {FCCF392D-0BA9-4062-BAC7-001BD5382B92} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {FD8A3046-04B1-4EB9-B938-B5344F093224} - System32\Tasks\RealCreateProcessScheduledTask424514975S-1-5-21-1983688609-185101002-2453114493-1001 => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\At1.job => C:\Windows\winhlp322.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core.job => C:\Users\James\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA.job => C:\Users\James\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005Core.job => C:\Users\Games\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1005UA.job => C:\Users\Games\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001Core.job => C:\Users\James\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1983688609-185101002-2453114493-1001UA.job => C:\Users\James\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GS.Enabler-S-926685765.job => c:\programdata\softwarehouse\gs.enabler\GS.Enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\OptimizerProUpdaterLogonTask.job => ?
Task: C:\Windows\Tasks\OptimizerProUpdaterRefreshTask.job => ?
Task: C:\Windows\Tasks\SuperEasyDriverUpdater_UPDATES.job => C:\Program Files (x86)\SuperEasy Software\Driver Updater\supereasydu.exe
==================== Loaded Modules (whitelisted) =============
2012-01-23 19:44 - 2012-01-09 19:44 - 00193536 ____C () C:\Program Files\WinRAR\rarext.dll
2011-07-14 02:23 - 2011-07-14 02:23 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-14 02:28 - 2011-07-14 02:28 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-11-17 11:33 - 2011-11-17 11:33 - 00209920 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2013-12-25 13:36 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2013-12-25 13:36 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-03-30 02:34 - 2009-03-30 02:34 - 00280143 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libidn-11.dll
2009-03-27 20:02 - 2009-03-27 20:02 - 01554920 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libeay32.dll
2009-03-27 20:02 - 2009-03-27 20:02 - 00332254 _____ () C:\Program Files (x86)\Hotspot Shield\bin\libssl32.dll
2013-12-25 13:49 - 2013-12-21 00:07 - 00884032 _____ () C:\Users\Games\AppData\Local\Torch\Application\29.0.0.5394\libglesv2.dll
2013-12-25 13:49 - 2013-12-21 00:07 - 00105792 _____ () C:\Users\Games\AppData\Local\Torch\Application\29.0.0.5394\libegl.dll
2013-12-25 13:49 - 2013-12-21 00:07 - 04008040 _____ () C:\Users\Games\AppData\Local\Torch\Application\29.0.0.5394\pdf.dll
2013-12-25 13:49 - 2013-12-21 00:07 - 00478528 _____ () C:\Users\Games\AppData\Local\Torch\Application\29.0.0.5394\ppGoogleNaClPluginChrome.dll
2013-12-25 13:49 - 2013-12-21 00:07 - 01870656 _____ () C:\Users\Games\AppData\Local\Torch\Application\29.0.0.5394\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:13DFF3FB
AlternateDataStreams: C:\ProgramData\Temp:3AE22B1A
AlternateDataStreams: C:\ProgramData\Temp:41099CE9
AlternateDataStreams: C:\ProgramData\Temp:417F5F46
AlternateDataStreams: C:\ProgramData\Temp:52DBE86F
AlternateDataStreams: C:\ProgramData\Temp:81F83028
AlternateDataStreams: C:\ProgramData\Temp:981884E7
AlternateDataStreams: C:\ProgramData\Temp:D20FFA63
AlternateDataStreams: C:\ProgramData\Temp:FB6A21E3
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== Faulty Device Manager Devices =============
Name: X5XSEx
Description: X5XSEx
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: X5XSEx
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: ASMMAP64
Description: ASMMAP64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ASMMAP64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: ATKWMIACPI Driver
Description: ATKWMIACPI Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ATKWMIACPIIO
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/21/2014 02:48:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: FRST64.exe, version: 0.0.0.0, time stamp: 0x52ddce2f
Faulting module name: RPCRT4.dll, version: 6.1.7601.18205, time stamp: 0x51dba4dc
Exception code: 0xc0020043
Fault offset: 0x000000000008a5d3
Faulting process id: 0x23ec
Faulting application start time: 0xFRST64.exe0
Faulting application path: FRST64.exe1
Faulting module path: FRST64.exe2
Report Id: FRST64.exe3
Error: (01/21/2014 02:21:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2808
Error: (01/21/2014 02:21:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2808
Error: (01/21/2014 02:21:53 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/21/2014 02:21:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1217
Error: (01/21/2014 02:21:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1217
Error: (01/21/2014 02:21:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/21/2014 02:07:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: hsssrv.exe, version: 1.0.0.1, time stamp: 0x4dd6de17
Faulting module name: RPCRT4.dll, version: 6.1.7601.18205, time stamp: 0x51db9710
Exception code: 0xc0000005
Fault offset: 0x00016cec
Faulting process id: 0x10a0
Faulting application start time: 0xhsssrv.exe0
Faulting application path: hsssrv.exe1
Faulting module path: hsssrv.exe2
Report Id: hsssrv.exe3
Error: (01/21/2014 01:19:34 PM) (Source: Application Error) (User: )
Description: Faulting application name: torch.exe, version: 29.0.0.5394, time stamp: 0x52b4dbb2
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000374
Fault offset: 0x000ce753
Faulting process id: 0x201c
Faulting application start time: 0xtorch.exe0
Faulting application path: torch.exe1
Faulting module path: torch.exe2
Report Id: torch.exe3
Error: (01/21/2014 00:57:22 PM) (Source: Application Hang) (User: )
Description: The program Skype.exe version 6.11.0.102 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1b4c
Start Time: 01cf16a74085d187
Termination Time: 12843
Application Path: C:\Program Files (x86)\Skype\Phone\Skype.exe
Report Id:
System errors:
=============
Error: (01/21/2014 02:48:02 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Atheros Bt&Wlan Coex Agent service.
Error: (01/21/2014 02:08:20 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
Error: (01/21/2014 02:07:57 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%2
Error: (01/21/2014 02:05:33 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ATKWMIACPIIO
Error: (01/21/2014 02:05:27 PM) (Source: Service Control Manager) (User: )
Description: The X5XSEx service failed to start due to the following error:
%%3
Error: (01/21/2014 02:04:33 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends on the ASMMAP64 service which failed to start because of the following error:
%%3
Error: (01/21/2014 02:04:33 PM) (Source: Service Control Manager) (User: )
Description: The ASMMAP64 service failed to start due to the following error:
%%3
Error: (01/21/2014 02:00:39 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (01/21/2014 01:10:37 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Atheros Bt&Wlan Coex Agent service.
Error: (01/21/2014 11:21:43 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Atheros Bt&Wlan Coex Agent service.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-01-21 14:19:03.763
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 14:12:05.920
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 14:00:36.539
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 13:10:56.092
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 12:52:16.249
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 11:51:07.277
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 11:31:40.133
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 11:21:53.048
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 10:53:32.365
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-01-21 10:41:25.244
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Percentage of memory in use: 30%
Total physical RAM: 8171.71 MB
Available physical RAM: 5705.04 MB
Total Pagefile: 16341.61 MB
Available Pagefile: 13451.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:200.28 GB) (Free:74.65 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:240.48 GB) (Free:104.62 GB) NTFS
Drive e: (review) (CDROM) (Total:6.45 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: AE14F3C6)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=240 GB) - (Type=07 NTFS)
==================== End Of Log ============================
[CODE] GMER 2.1.19324 - hxxp://www.gmer.net Rootkit scan 2014-01-21 17:34:32 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\00000090 ST950032 rev.0003 465.76GB Running: gmer.exe; Driver: C:\Users\Games\AppData\Local\Temp\fgloypow.sys ---- User code sections - GMER 2.1 ---- .text C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe[1388] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe[1388] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Users\Games\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe[2448] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Users\Games\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe[2448] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Users\Games\AppData\Local\Workspace\workspaceupdate.exe[1040] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Users\Games\AppData\Local\Workspace\workspaceupdate.exe[1040] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Users\Games\AppData\Local\Workspace\wben.exe[2808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Users\Games\AppData\Local\Workspace\wben.exe[2808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!GetMenu + 412 0000000076ce51dd 7 bytes JMP 0000000110053ac0 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!PeekMessageA + 407 0000000076ce610b 7 bytes JMP 0000000110053c10 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!CreateDialogIndirectParamW + 131 0000000076cec6c1 7 bytes JMP 0000000110053bf0 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!MessageBoxIndirectA + 199 0000000076d2fc98 7 bytes JMP 0000000110053c60 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!MessageBoxIndirectW + 52 0000000076d2fcd1 7 bytes JMP 0000000110053d30 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\USER32.dll!MessageBoxExA + 31 0000000076d2fcf5 7 bytes JMP 0000000110053ce0 .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe[2252] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe[3540] C:\Windows\syswow64\PsApi.dll!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe[3540] C:\Windows\syswow64\PsApi.dll!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[3644] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[3644] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe[3804] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe[3804] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[4300] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[4300] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Windows\SysWOW64\PnkBstrA.exe[4448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000075371a22 2 bytes [37, 75] .text C:\Windows\SysWOW64\PnkBstrA.exe[4448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000075371ad0 2 bytes [37, 75] .text C:\Windows\SysWOW64\PnkBstrA.exe[4448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000075371b08 2 bytes [37, 75] .text C:\Windows\SysWOW64\PnkBstrA.exe[4448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000075371bba 2 bytes [37, 75] .text C:\Windows\SysWOW64\PnkBstrA.exe[4448] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000075371bda 2 bytes [37, 75] .text C:\Users\James\AppData\Local\Torch\Update\TorchCrashHandler.exe[4792] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Users\James\AppData\Local\Torch\Update\TorchCrashHandler.exe[4792] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe[4972] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\Jump Flip\updateJumpFlip.exe[4972] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 .text C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe[5004] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000769f1465 2 bytes [9F, 76] .text C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe[5004] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000769f14bb 2 bytes [9F, 76] .text ... * 2 ---- Devices - GMER 2.1 ---- Device \Driver\RSUSBSTOR -> DriverStartIo \Device\000000e2 fffff8800cfbcbcc Device \Driver\RSUSBSTOR \Device\000000e2 fffff8800cfcdb60 [CODE] Vielen Dank Gruß Ralican |
Baum-Darstellung