| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Awesomehp.com Virus legt Internet lahmWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
26.01.2014, 05:47
| #1 |
| |  Awesomehp.com Virus legt Internet lahm Hallo liebe Trojaner board Community, ich habe mir gestern eine Datei gedownloadet (Simon the Sorcerer 1). Damit hat alles begonnen, bei der Installation der Datei die nur 150 kb groß war, habe ich die benutzerdefenierte Installation gewählt und bei allen anderen Programme die er mit istallieren wollte das häckchen raus genommen. bei ca 51% der Installation hat mein Virenprogramm Avast sich auf einmal zu Wort gemeldet das ein Virsus gefunden wurde. Plötzlich haben sich 4 Werbefesnter aufgetahen. Nach der Schließung kamen sie wieder. Ich habe safort die Installation abgebrochen und schnell den PC neugestartet. Als der neustart ausgeführt wurden war, habe ich mein Mozilla Firefox geöffnet und dann hatte ich auf einmal als Startsseite Awesomehp. Ich habe über der Browereinstellung von Mozilla Firefox die Startseite uf Google geändert, gespeichert und den brower neugestartet aber es hat nix gebracht die awesomh Seite war erneut als Startseite festgelegt. ich habe bei Google nach "awesome hp entfernen" gesucht und bin auf folgenden beirtrag gestoßen Entfernen Awesomehp.com ich habe der Schritt für SChritt Anleitung folge geleistet. Danach war das Problem nicht behoben. ich habe auf der Startseite von meinem Firefox unten links den boutton "uninstall" gefunden, wo ich natürlich sofort draufgeklickt habe aber ausser ein Ladebalken ist nix geschahen. Ich habe den PC heruntergefahren und nach 10 Sekunden erneut angemacht. Nach dem hochfahren das PC's habe ich erneut mein Firefox gestartet und die virenstartseite war immernoch da. ich habe versucht auf google.de zu kommen, vergebens. Mitlerweile ist es so, das ich über den pc nicht mehr ins Internet zugreifen kann, egal ob brower oder Onlinespiele. Allerdings unten rechts bei Internet Verbindung steht "verbindung hergestellt" so wie es immer ist zu letzt habe ich nochmal bei google gesucht und folgenden beitrag gefunden Anleitung: Awesomehp.com Virus Entfernen - [TechFrage.de] dort ist eine ausführliche Schritt für Schritt erklärung. Ich hänge aber nun bei Schritt 2.2 fest weil das Programm was ich dort installieren soll möchte ein update auf die neuste version, da ich aber nicht ins Internt komme, kann ich das programm nicht updaten und auch nicht das update überspringen. Ich habe keine Idee mehr was ich machen soll. Aus diesem Grund melde ich mich bei euch Experten und hoffe auf Hilfe. Edit* was ich noch vergaß war, wenn ich den Taskmanager öffne steht bei dem Programm Avast CPU Auslastung dauerhaft 99 - 99,6 %. Das war vorher nicht. Liebe Grüße Herr Bachmann Geändert von chaq (26.01.2014 um 05:52 Uhr) |
|
26.01.2014, 06:13
| #2 |
| /// the machine /// TB-Ausbilder    | Awesomehp.com Virus legt Internet lahm hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
26.01.2014, 06:44
| #3 |
| | Awesomehp.com Virus legt Internet lahm Hi Schrauber vielen Dank für die schnelle Antwort,
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-01-2014 01
Ran by Justin (administrator) on VAIO on 26-01-2014 06:37:42
Running from C:\Users\Justin\Desktop
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\Setup\instup.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2804976 2013-10-25] (Synaptics Incorporated)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-17] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - c:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-17] (Intel Corporation)
HKLM-x32\...\Run: [Intel AppUp(R) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-17] (Intel Corporation)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-26] (cyberlink)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-03] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [YouCam Service6] - C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [500696 2013-11-26] (CyberLink Corp.)
HKLM-x32\...\Run: [D-Link D-Link Wireless N DWA-140] - C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe [1024000 2010-06-30] (D-Link Corp.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
MountPoints2: {74a2cfea-8624-11e3-bec8-083e8eb392f8} - "E:\HTC_Sync_Manager_PC.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.chip.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {069E9991-5132-43EC-A1D5-510336995D80} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {EB021560-949B-463B-8BB4-D3EC7242CC1B} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default
FF SelectedSearchEngine: awesomehp
FF Homepage: hxxp://www.chip.de/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\Sony\MSS\3.0.318\npMcAfeeMss.dll No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Justin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll (Intel)
FF Plugin HKCU: intel.com/AppUpx64 - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Play4Free - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\Extensions\battlefieldplay4free@ea.com [2013-03-23]
FF Extension: iMacros for Firefox - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2013-11-25]
FF Extension: Extension_Protected - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\Extensions\jid0-O6MIff3eO5dIGf5Tcv8RsJDKxrs@jetpack.xpi [2014-01-26]
FF Extension: Lightning Speed Dial - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\Extensions\lightningnewtab@gmail.com.xpi [2014-01-26]
FF Extension: Greasemonkey - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-04-22]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-03-26]
FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\extensions\lightningnewtab@gmail.com.xpi
FF Extension: No Name - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\extensions\lightningnewtab@gmail.com.xpi [2014-01-26]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR Extension: (Docs) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-21]
CHR Extension: (Freemake Video Downloader) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-21]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-04-21]
CHR Extension: (avast! WebRep) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-04-23]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-21]
==================== Services (Whitelisted) =================
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider)
U2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-03] (AVAST Software)
U2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-12] (IvoSoft)
U2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-26] (CyberLink)
U2 D-Link Wireless N DWA-140_WPS; C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe [53248 2010-06-03] ()
U2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-05-29] (Intel Corporation)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
U2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
U3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.0.318\McCHSvc.exe [235216 2013-02-11] (McAfee, Inc.)
U3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
U2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
U2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-05-29] (Intel Corporation)
U3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-05-29] (Intel Corporation)
U2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
U3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros)
==================== Drivers (Whitelisted) ====================
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
U1 anodlwf; C:\Windows\system32\DRIVERS\anodlwfx.sys [15872 2009-03-06] ()
U2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-03] (AVAST Software)
U1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-13] (AVAST Software)
U0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-13] ()
U1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2014-01-03] (AVAST Software)
U1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2014-01-03] (AVAST Software)
U3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [79672 2014-01-03] (AVAST Software)
U0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-03] ()
U3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-09-25] (Qualcomm Atheros Communications, Inc.)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-09-26] (Advanced Micro Devices)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
U3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [428488 2013-09-07] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
U3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2013-11-29] (LogMeIn Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-26] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netr28ux; C:\Windows\system32\DRIVERS\Dnetr28ux.sys [1119072 2010-05-05] (Ralink Technology Corp.)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2013-11-26] ()
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-25] (Synaptics Incorporated)
U3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
U3 TVICHW32; C:\Windows\system32\DRIVERS\TVICHW32.SYS [21200 2013-02-18] (EnTech Taiwan)
U3 TVICHW32; C:\Windows\SysWOW64\DRIVERS\TVICHW32.SYS [29536 2013-02-18] (EnTech Taiwan)
U3 TVICHW64; C:\Windows\system32\DRIVERS\TVICHW64.SYS [21200 2013-06-10] (EnTech Taiwan)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2013-07-09] ()
U3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [x]
U3 X6va015; \??\C:\WINDOWS\SysWOW64\Drivers\X6va015 [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-26 06:37 - 2014-01-26 06:38 - 00024928 _____ C:\Users\Justin\Desktop\FRST.txt
2014-01-26 06:32 - 2014-01-26 06:32 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-26 06:32 - 2014-01-26 06:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-26 06:23 - 2014-01-26 06:23 - 00000000 ____D C:\FRST
2014-01-26 06:22 - 2014-01-25 06:34 - 02078208 ____N (Farbar) C:\Users\Justin\Desktop\FRST64.exe
2014-01-26 06:17 - 2014-01-26 06:18 - 00012834 _____ C:\Users\Justin\Desktop\hijackthis.log
2014-01-26 06:17 - 2014-01-25 06:28 - 00388608 ____N (Trend Micro Inc.) C:\Users\Justin\Desktop\HiJackThis204.exe
2014-01-26 05:58 - 2014-01-26 05:59 - 00001424 _____ C:\Users\Justin\Desktop\Internet Explorer.lnk
2014-01-26 05:17 - 2014-01-26 05:17 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-26 04:22 - 2014-01-26 04:22 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-26 04:03 - 2014-01-26 06:23 - 00000000 ____D C:\AdwCleaner
2014-01-26 03:55 - 2014-01-26 03:55 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-26 03:54 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-26 03:39 - 2014-01-26 03:39 - 00001284 _____ C:\Users\Justin\Desktop\Revo Uninstaller.lnk
2014-01-26 03:39 - 2014-01-26 03:39 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2014-01-26 03:36 - 2014-01-26 03:59 - 04985170 _____ C:\Users\Justin\Desktop\Rkill.txt
2014-01-26 03:36 - 2014-01-25 03:41 - 01037068 ____N (Thisisu) C:\Users\Justin\Desktop\JRT.exe
2014-01-26 03:36 - 2014-01-25 03:38 - 02623656 ____N (VS Revo Group Ltd.) C:\Users\Justin\Desktop\revosetup.exe
2014-01-26 03:35 - 2014-01-25 03:42 - 02347384 ____N (ESET) C:\Users\Justin\Desktop\esetsmartinstaller_deu.exe
2014-01-26 03:35 - 2014-01-25 03:40 - 10285040 ____N (Malwarebytes Corporation ) C:\Users\Justin\Desktop\mbam-setup-1.75.0.1300.exe
2014-01-26 03:35 - 2014-01-25 03:40 - 01236282 ____N C:\Users\Justin\Desktop\adwcleaner.exe
2014-01-26 03:35 - 2014-01-25 03:36 - 01933048 ____N (Bleeping Computer, LLC) C:\Users\Justin\Desktop\schatzschauweg.exe
2014-01-26 03:35 - 2014-01-25 03:08 - 00728960 ____N (Enigma Software Group USA, LLC.) C:\Users\Justin\Desktop\SpyHunter-Installer.exe
2014-01-26 02:41 - 2014-01-09 02:22 - 00002187 _____ C:\Users\Public\Desktop\CyberLink YouCam 6.lnk
2014-01-26 02:41 - 2014-01-09 02:06 - 00000878 _____ C:\Users\Justin\Desktop\CyberLink_60YouCam_Downloader(1).lnk
2014-01-26 02:41 - 2014-01-03 14:51 - 00001982 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-26 01:54 - 2014-01-26 06:25 - 00008396 _____ C:\WINDOWS\PFRO.log
2014-01-26 01:46 - 2014-01-26 02:08 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-26 01:44 - 2014-01-26 01:44 - 00153728 _____ (Amônétízé Ltd) C:\Users\Justin\Downloads\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
2014-01-26 01:34 - 2014-01-26 06:22 - 00006900 _____ C:\WINDOWS\setupact.log
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DAEMON Tools Lite
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-26 01:33 - 2014-01-26 01:33 - 13485616 _____ (Disc Soft Ltd) C:\Users\Justin\Downloads\DTLite4481-0347.exe
2014-01-26 01:33 - 2014-01-26 01:33 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-21 03:51 - 2014-01-21 04:16 - 00000000 _____ C:\dfu.log
2014-01-20 17:07 - 2014-01-20 17:07 - 00000000 _____ C:\Users\Justin\agent.log
2014-01-20 14:34 - 2014-01-20 14:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Synaptics
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:32 - 2013-10-25 18:36 - 00723184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00549104 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2014-01-20 14:32 - 2013-10-25 18:36 - 00422640 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo19.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00400624 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00252144 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00169712 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynTPCom.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00034544 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 14:32 - 2013-10-25 17:37 - 00161880 _____ C:\WINDOWS\system32\pca-manta.bin
2014-01-20 14:32 - 2013-10-25 17:37 - 00000092 _____ C:\WINDOWS\system32\calibration.bin
2014-01-20 14:32 - 2013-05-21 16:38 - 00036096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2014-01-20 14:31 - 2014-01-20 14:31 - 00000000 _____ C:\WINDOWS\SysWOW64\agent.log
2014-01-20 14:30 - 2014-01-20 14:30 - 00003936 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-01-20 14:30 - 2014-01-20 14:30 - 00003690 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-01-20 14:30 - 2014-01-20 14:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-20 14:29 - 2013-09-16 12:20 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-20 14:29 - 2013-09-16 12:20 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-20 14:28 - 2014-01-20 14:28 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2014-01-20 14:12 - 2014-01-26 03:46 - 00000000 ____D C:\ProgramData\FreeDriverScout
2014-01-20 14:12 - 2014-01-20 14:12 - 00000000 ____D C:\Users\Justin\Documents\Freemium Driver Utilities
2014-01-20 14:11 - 2014-01-20 14:11 - 00000000 ____D C:\Program Files\Covus Freemium
2014-01-20 14:08 - 2014-01-20 14:08 - 00669232 _____ C:\Users\Justin\Downloads\free-driver-scout_1.0_de-DE.exe
2014-01-19 13:56 - 2014-01-19 13:56 - 00001006 _____ C:\WINDOWS\system32\RaCoInst.log
2014-01-19 13:56 - 2010-06-03 13:36 - 00302080 _____ () C:\WINDOWS\lwd.exe
2014-01-19 13:54 - 2014-01-19 13:54 - 00000000 ____D C:\Program Files (x86)\D-Link
2014-01-19 13:54 - 2010-05-05 16:10 - 01119072 _____ (Ralink Technology Corp.) C:\WINDOWS\system32\Drivers\Dnetr28ux.sys
2014-01-19 13:54 - 2010-05-05 16:03 - 00326432 _____ (Ralink Technology, Inc.) C:\WINDOWS\system32\RaCoInstx.dll
2014-01-19 13:54 - 2010-05-05 16:03 - 00014051 _____ C:\WINDOWS\system32\RaCoInst.dat
2014-01-19 13:54 - 2009-03-06 18:10 - 00015872 _____ () C:\WINDOWS\system32\Drivers\anodlwfx.sys
2014-01-19 13:41 - 2014-01-19 13:41 - 00000000 ____D C:\Users\Justin\AppData\Roaming\InstallShield
2014-01-15 19:41 - 2014-01-15 19:41 - 00317603 _____ C:\Users\Justin\Downloads\PickUp+Bot+V4.0+Hidden+by+MarcoPolo.zip
2014-01-15 19:37 - 2014-01-15 19:37 - 00000000 ____D C:\Users\Justin\Downloads\Pickup
2014-01-15 19:35 - 2014-01-15 19:35 - 00223125 _____ C:\Users\Justin\Downloads\Pickup.zip
2014-01-15 13:38 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 13:38 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 13:38 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 13:38 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 13:38 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 13:38 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 13:38 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 13:38 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 13:38 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 13:38 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 13:38 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-15 03:20 - 2014-01-15 03:20 - 00001960 _____ C:\Users\Public\Desktop\Metin2.lnk
2014-01-15 02:58 - 2014-01-21 04:20 - 00000000 ____D C:\Users\Justin\Downloads\Gameforge Live
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\AppData\Local\Gameforge4d
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2014-01-15 02:57 - 2014-01-15 02:57 - 19394136 _____ (Gameforge ) C:\Users\Justin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-01-13 16:53 - 2014-01-13 16:53 - 00000000 _____ C:\Users\Justin\__ng3d.lock
2014-01-13 16:28 - 2014-01-13 16:28 - 00431104 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00413696 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00116736 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00000000 ____D C:\Program Files (x86)\OpenAL
2014-01-13 16:13 - 2014-01-13 16:24 - 922359211 _____ C:\Users\Justin\Downloads\RegnumOnlineInstall_German.exe
2014-01-12 15:31 - 2014-01-12 15:31 - 04105416 _____ (Gameforge 4D GmbH ) C:\Users\Justin\Downloads\Wizard101_Installer_DE.exe
2014-01-12 07:54 - 2014-01-12 07:54 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2014-01-10 17:38 - 2014-01-10 17:38 - 07761936 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost(1).exe
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Should I Remove It
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Program Files (x86)\Reason
2014-01-10 17:32 - 2014-01-10 17:32 - 07653600 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost.exe
2014-01-10 17:29 - 2014-01-10 17:29 - 02184968 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\ShouldIRemoveIt_Setup.exe
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\Documents\Razer
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer_Inc
2014-01-10 17:18 - 2014-01-20 14:42 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer
2014-01-10 17:17 - 2014-01-20 14:42 - 00000000 ____D C:\ProgramData\Razer
2014-01-10 17:17 - 2014-01-20 14:42 - 00000000 ____D C:\Program Files (x86)\Razer
2014-01-10 17:16 - 2014-01-10 17:17 - 41363400 _____ (Razer Inc. ) C:\Users\Justin\Downloads\RazerGameBoosterSetup_4.1.59.0_1.exe
2014-01-10 15:05 - 2014-01-10 15:38 - 1579161641 _____ (InstallShield Software Corporation) C:\Users\Justin\Downloads\LastChaos_DE_Setup.exe
2014-01-09 21:15 - 2014-01-09 21:16 - 18101704 _____ (Adobe Systems Inc.) C:\Users\Justin\Downloads\AdobeAIRInstaller(1).exe
2014-01-09 02:26 - 2014-01-09 02:26 - 00000000 ____D C:\Users\Justin\Documents\Avatar
2014-01-09 02:24 - 2014-01-09 05:15 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-09 02:24 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Justin\AppData\Roaming\CyberLink
2014-01-09 02:22 - 2014-01-09 15:19 - 00000000 ____D C:\Users\Justin\Documents\YouCam
2014-01-09 02:22 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\AppData\Local\CyberLink
2014-01-09 02:22 - 2013-10-29 08:26 - 00041704 _____ (CyberLink Corporation) C:\WINDOWS\system32\Drivers\clwvd6.sys
2014-01-09 02:19 - 2014-01-09 02:19 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2014-01-09 02:06 - 2014-01-09 02:06 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(3).exe
2014-01-09 02:05 - 2014-01-09 02:05 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(2).exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader.exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(1).exe
2014-01-03 14:51 - 2014-01-03 14:51 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-01-02 12:33 - 2014-01-02 12:33 - 00000000 ____D C:\Users\Justin\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-02 12:24 - 2014-01-06 12:43 - 00023552 ___SH C:\Users\Justin\Documents\Thumbs.db
2013-12-28 22:35 - 2013-12-28 22:35 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-28 08:38 - 2013-12-28 08:38 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 07:25 - 2014-01-09 01:08 - 00000000 ____D C:\WINDOWS\Minidump
==================== One Month Modified Files and Folders =======
2014-01-26 06:38 - 2014-01-26 06:37 - 00024928 _____ C:\Users\Justin\Desktop\FRST.txt
2014-01-26 06:37 - 2013-02-16 20:52 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3045853046-4163494673-3208083228-1001
2014-01-26 06:34 - 2013-12-26 09:30 - 01637604 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-26 06:33 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-26 06:33 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-26 06:33 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-26 06:33 - 2013-06-19 19:03 - 00048011 _____ C:\WINDOWS\system32\lvcoinst.log
2014-01-26 06:32 - 2014-01-26 06:32 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-26 06:32 - 2014-01-26 06:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-26 06:32 - 2013-04-11 20:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-26 06:30 - 2013-12-26 09:41 - 00000000 __RDO C:\Users\Justin\SkyDrive
2014-01-26 06:25 - 2014-01-26 01:54 - 00008396 _____ C:\WINDOWS\PFRO.log
2014-01-26 06:25 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-26 06:24 - 2013-08-22 14:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2014-01-26 06:23 - 2014-01-26 06:23 - 00000000 ____D C:\FRST
2014-01-26 06:23 - 2014-01-26 04:03 - 00000000 ____D C:\AdwCleaner
2014-01-26 06:22 - 2014-01-26 01:34 - 00006900 _____ C:\WINDOWS\setupact.log
2014-01-26 06:18 - 2014-01-26 06:17 - 00012834 _____ C:\Users\Justin\Desktop\hijackthis.log
2014-01-26 06:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-26 05:59 - 2014-01-26 05:58 - 00001424 _____ C:\Users\Justin\Desktop\Internet Explorer.lnk
2014-01-26 05:44 - 2013-02-17 12:21 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-26 05:17 - 2014-01-26 05:17 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-26 04:22 - 2014-01-26 04:22 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-26 03:59 - 2014-01-26 03:36 - 04985170 _____ C:\Users\Justin\Desktop\Rkill.txt
2014-01-26 03:55 - 2014-01-26 03:55 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-26 03:46 - 2014-01-20 14:12 - 00000000 ____D C:\ProgramData\FreeDriverScout
2014-01-26 03:46 - 2013-04-27 15:36 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-26 03:39 - 2014-01-26 03:39 - 00001284 _____ C:\Users\Justin\Desktop\Revo Uninstaller.lnk
2014-01-26 03:39 - 2014-01-26 03:39 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2014-01-26 02:41 - 2013-02-17 01:32 - 00000000 ____D C:\Users\Justin\AppData\Local\LogMeIn Hamachi
2014-01-26 02:35 - 2013-03-26 21:15 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-26 02:08 - 2014-01-26 01:46 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-26 02:03 - 2013-12-26 09:59 - 00003918 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2864A873-8E87-4741-9E6C-0B079802D667}
2014-01-26 02:00 - 2013-12-24 02:03 - 00000000 ____D C:\Users\Justin\AppData\Roaming\concept design
2014-01-26 01:46 - 2013-12-26 09:37 - 00001668 _____ C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-26 01:44 - 2014-01-26 01:44 - 00153728 _____ (Amônétízé Ltd) C:\Users\Justin\Downloads\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DAEMON Tools Lite
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-26 01:33 - 2014-01-26 01:33 - 13485616 _____ (Disc Soft Ltd) C:\Users\Justin\Downloads\DTLite4481-0347.exe
2014-01-26 01:33 - 2014-01-26 01:33 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-25 23:32 - 2013-10-14 21:45 - 00000000 ___RD C:\Users\Justin\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2014-01-25 23:32 - 2013-09-06 01:41 - 00000000 ____D C:\Users\Justin\Downloads\Bewerbungen
2014-01-25 23:32 - 2013-02-17 07:12 - 00421376 ___SH C:\Users\Justin\Downloads\Thumbs.db
2014-01-25 19:10 - 2013-02-24 04:47 - 00904192 ___SH C:\Users\Justin\Desktop\Thumbs.db
2014-01-25 06:34 - 2014-01-26 06:22 - 02078208 ____N (Farbar) C:\Users\Justin\Desktop\FRST64.exe
2014-01-25 06:28 - 2014-01-26 06:17 - 00388608 ____N (Trend Micro Inc.) C:\Users\Justin\Desktop\HiJackThis204.exe
2014-01-25 03:42 - 2014-01-26 03:35 - 02347384 ____N (ESET) C:\Users\Justin\Desktop\esetsmartinstaller_deu.exe
2014-01-25 03:41 - 2014-01-26 03:36 - 01037068 ____N (Thisisu) C:\Users\Justin\Desktop\JRT.exe
2014-01-25 03:40 - 2014-01-26 03:35 - 10285040 ____N (Malwarebytes Corporation ) C:\Users\Justin\Desktop\mbam-setup-1.75.0.1300.exe
2014-01-25 03:40 - 2014-01-26 03:35 - 01236282 ____N C:\Users\Justin\Desktop\adwcleaner.exe
2014-01-25 03:38 - 2014-01-26 03:36 - 02623656 ____N (VS Revo Group Ltd.) C:\Users\Justin\Desktop\revosetup.exe
2014-01-25 03:36 - 2014-01-26 03:35 - 01933048 ____N (Bleeping Computer, LLC) C:\Users\Justin\Desktop\schatzschauweg.exe
2014-01-25 03:08 - 2014-01-26 03:35 - 00728960 ____N (Enigma Software Group USA, LLC.) C:\Users\Justin\Desktop\SpyHunter-Installer.exe
2014-01-24 19:30 - 2013-02-16 21:57 - 00000000 ____D C:\Users\Justin\Documents\TrackMania
2014-01-23 16:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-23 14:47 - 2013-08-22 15:44 - 00501152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-21 10:22 - 2013-08-16 03:00 - 00000000 ____D C:\Users\Justin\Documents\BewerbungsMaster
2014-01-21 10:22 - 2013-08-16 03:00 - 00000000 ____D C:\ProgramData\BewerbungsMaster
2014-01-21 04:20 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\Downloads\Gameforge Live
2014-01-21 04:16 - 2014-01-21 03:51 - 00000000 _____ C:\dfu.log
2014-01-20 17:07 - 2014-01-20 17:07 - 00000000 _____ C:\Users\Justin\agent.log
2014-01-20 17:07 - 2013-12-26 09:06 - 00000000 ____D C:\Users\Justin
2014-01-20 14:43 - 2013-06-10 06:44 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TeamViewer
2014-01-20 14:42 - 2014-01-10 17:18 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer
2014-01-20 14:42 - 2014-01-10 17:17 - 00000000 ____D C:\ProgramData\Razer
2014-01-20 14:42 - 2014-01-10 17:17 - 00000000 ____D C:\Program Files (x86)\Razer
2014-01-20 14:36 - 2013-02-16 20:46 - 00000000 ____D C:\Users\Justin\Documents\Bluetooth Folder
2014-01-20 14:35 - 2013-03-26 21:36 - 00000000 ____D C:\Users\Justin\Desktop\Programme
2014-01-20 14:34 - 2014-01-20 14:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Synaptics
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:31 - 2014-01-20 14:31 - 00000000 _____ C:\WINDOWS\SysWOW64\agent.log
2014-01-20 14:30 - 2014-01-20 14:30 - 00003936 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-01-20 14:30 - 2014-01-20 14:30 - 00003690 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-01-20 14:30 - 2014-01-20 14:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-20 14:30 - 2012-09-25 00:17 - 00000000 ____D C:\ProgramData\Intel
2014-01-20 14:30 - 2012-09-25 00:05 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-20 14:28 - 2014-01-20 14:28 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2014-01-20 14:12 - 2014-01-20 14:12 - 00000000 ____D C:\Users\Justin\Documents\Freemium Driver Utilities
2014-01-20 14:11 - 2014-01-20 14:11 - 00000000 ____D C:\Program Files\Covus Freemium
2014-01-20 14:08 - 2014-01-20 14:08 - 00669232 _____ C:\Users\Justin\Downloads\free-driver-scout_1.0_de-DE.exe
2014-01-20 13:44 - 2013-06-10 06:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 13:56 - 2014-01-19 13:56 - 00001006 _____ C:\WINDOWS\system32\RaCoInst.log
2014-01-19 13:54 - 2014-01-19 13:54 - 00000000 ____D C:\Program Files (x86)\D-Link
2014-01-19 13:54 - 2012-09-25 00:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-19 13:41 - 2014-01-19 13:41 - 00000000 ____D C:\Users\Justin\AppData\Roaming\InstallShield
2014-01-16 11:33 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 21:06 - 2013-07-11 22:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 21:04 - 2013-02-17 03:12 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 19:41 - 2014-01-15 19:41 - 00317603 _____ C:\Users\Justin\Downloads\PickUp+Bot+V4.0+Hidden+by+MarcoPolo.zip
2014-01-15 19:37 - 2014-01-15 19:37 - 00000000 ____D C:\Users\Justin\Downloads\Pickup
2014-01-15 19:35 - 2014-01-15 19:35 - 00223125 _____ C:\Users\Justin\Downloads\Pickup.zip
2014-01-15 13:48 - 2013-09-06 17:44 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-15 13:33 - 2013-03-03 12:41 - 00000000 ____D C:\Users\Justin\AppData\Local\Adobe
2014-01-15 13:33 - 2013-02-17 12:21 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-01-15 13:27 - 2013-02-16 22:58 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2014-01-15 03:20 - 2014-01-15 03:20 - 00001960 _____ C:\Users\Public\Desktop\Metin2.lnk
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\AppData\Local\Gameforge4d
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2014-01-15 02:57 - 2014-01-15 02:57 - 19394136 _____ (Gameforge ) C:\Users\Justin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-01-13 16:53 - 2014-01-13 16:53 - 00000000 _____ C:\Users\Justin\__ng3d.lock
2014-01-13 16:28 - 2014-01-13 16:28 - 00431104 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00413696 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00116736 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00000000 ____D C:\Program Files (x86)\OpenAL
2014-01-13 16:26 - 2013-02-16 21:52 - 00000000 ____D C:\Games
2014-01-13 16:24 - 2014-01-13 16:13 - 922359211 _____ C:\Users\Justin\Downloads\RegnumOnlineInstall_German.exe
2014-01-12 15:31 - 2014-01-12 15:31 - 04105416 _____ (Gameforge 4D GmbH ) C:\Users\Justin\Downloads\Wizard101_Installer_DE.exe
2014-01-12 07:54 - 2014-01-12 07:54 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2014-01-10 17:55 - 2013-05-17 02:07 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-10 17:55 - 2013-02-17 00:48 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TS3Client
2014-01-10 17:55 - 2013-02-16 20:56 - 00000000 ____D C:\Users\Justin\AppData\Local\CrashDumps
2014-01-10 17:54 - 2013-03-01 19:43 - 00000000 ____D C:\Users\Justin\Desktop\Bilder
2014-01-10 17:51 - 2013-03-26 21:31 - 00000000 ____D C:\Program Files (x86)\Freemake
2014-01-10 17:50 - 2013-03-26 21:09 - 00000000 ____D C:\Fraps
2014-01-10 17:49 - 2012-09-25 00:24 - 00000000 ____D C:\Program Files (x86)\Sony
2014-01-10 17:49 - 2012-09-25 00:04 - 00000000 ____D C:\ProgramData\Sony Corporation
2014-01-10 17:48 - 2013-03-27 23:50 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2014-01-10 17:43 - 2013-12-17 13:57 - 00000000 ____D C:\Program Files (x86)\S4League
2014-01-10 17:43 - 2013-05-22 23:21 - 00000000 ____D C:\Users\Justin\AppData\Local\PokerStars.EU
2014-01-10 17:43 - 2013-05-22 23:20 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU
2014-01-10 17:42 - 2013-02-16 22:59 - 00000000 ____D C:\ProgramData\PMB Files
2014-01-10 17:39 - 2013-04-23 16:49 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DVDVideoSoft
2014-01-10 17:38 - 2014-01-10 17:38 - 07761936 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost(1).exe
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Should I Remove It
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Program Files (x86)\Reason
2014-01-10 17:32 - 2014-01-10 17:32 - 07653600 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost.exe
2014-01-10 17:29 - 2014-01-10 17:29 - 02184968 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\ShouldIRemoveIt_Setup.exe
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\Documents\Razer
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer_Inc
2014-01-10 17:17 - 2014-01-10 17:16 - 41363400 _____ (Razer Inc. ) C:\Users\Justin\Downloads\RazerGameBoosterSetup_4.1.59.0_1.exe
2014-01-10 15:38 - 2014-01-10 15:05 - 1579161641 _____ (InstallShield Software Corporation) C:\Users\Justin\Downloads\LastChaos_DE_Setup.exe
2014-01-10 01:42 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2014-01-09 21:16 - 2014-01-09 21:15 - 18101704 _____ (Adobe Systems Inc.) C:\Users\Justin\Downloads\AdobeAIRInstaller(1).exe
2014-01-09 15:19 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\Documents\YouCam
2014-01-09 05:15 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-09 02:26 - 2014-01-09 02:26 - 00000000 ____D C:\Users\Justin\Documents\Avatar
2014-01-09 02:24 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Justin\AppData\Roaming\CyberLink
2014-01-09 02:22 - 2014-01-26 02:41 - 00002187 _____ C:\Users\Public\Desktop\CyberLink YouCam 6.lnk
2014-01-09 02:22 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\AppData\Local\CyberLink
2014-01-09 02:19 - 2014-01-09 02:19 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2014-01-09 02:19 - 2013-10-01 17:44 - 00000000 ____D C:\Program Files (x86)\CyberLink
2014-01-09 02:19 - 2012-09-25 00:54 - 00000000 ____D C:\ProgramData\install_clap
2014-01-09 02:19 - 2012-09-25 00:45 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-09 02:06 - 2014-01-26 02:41 - 00000878 _____ C:\Users\Justin\Desktop\CyberLink_60YouCam_Downloader(1).lnk
2014-01-09 02:06 - 2014-01-09 02:06 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(3).exe
2014-01-09 02:05 - 2014-01-09 02:05 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(2).exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader.exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(1).exe
2014-01-09 01:08 - 2013-12-27 07:25 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-09 01:08 - 2013-12-26 08:56 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 12:43 - 2014-01-02 12:24 - 00023552 ___SH C:\Users\Justin\Documents\Thumbs.db
2014-01-03 14:51 - 2014-01-26 02:41 - 00001982 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-03 14:51 - 2014-01-03 14:51 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-01-03 14:50 - 2013-03-26 21:15 - 01034464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-03 14:50 - 2013-03-26 21:15 - 00422216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-03 14:50 - 2013-03-26 21:15 - 00334136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-03 14:50 - 2013-03-26 21:15 - 00207904 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-03 14:50 - 2013-03-26 21:15 - 00078648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-03 14:50 - 2013-03-26 21:15 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-02 12:33 - 2014-01-02 12:33 - 00000000 ____D C:\Users\Justin\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-02 12:32 - 2013-02-16 20:41 - 00000000 ____D C:\Users\Justin\AppData\Local\Packages
2013-12-29 21:59 - 2013-12-26 08:54 - 00000000 ____D C:\Windows.old
2013-12-29 21:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-29 14:59 - 2013-09-06 01:40 - 00000000 ____D C:\Users\Justin\Downloads\Überweisungen
2013-12-29 03:00 - 2013-06-19 19:03 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-12-29 03:00 - 2013-06-19 19:03 - 00000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2013-12-28 22:35 - 2013-12-28 22:35 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-28 08:38 - 2013-12-28 08:38 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 07:30 - 2013-02-16 20:51 - 00000000 ____D C:\Update
Files to move or delete:
====================
C:\ProgramData\bcrcvcpuesgvrfhynsk.bat
C:\ProgramData\bcrcvcpuesgvrfhynsk.reg
Some content of TEMP:
====================
C:\Users\Justin\AppData\Local\Temp\Quarantine.exe
C:\Users\Justin\AppData\Local\Temp\setup.exe
C:\Users\Justin\AppData\Local\Temp\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-23 16:01
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-01-2014 01
Ran by Justin at 2014-01-26 06:38:30
Running from C:\Users\Justin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (x32 Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) MUI (x32 Version: 10.1.9 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.2.122 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.15.100.30822 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0822.136.951 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Arma 2: Operation Arrowhead (x32 Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (x32 Version: - )
avast! Free Antivirus (x32 Version: 9.0.2011 - Avast Software)
Battlefield 3™ (x32 Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.1.7 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version: - )
BEWERBUNGSMASTER (C:\Program Files (x86)\BEWERBUNGSMASTER\) (x32 Version: - )
BEWERBUNGSMASTER (x32 Version: - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0822.136.951 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0822.136.951 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0822.136.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0822.0135.951 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0822.136.951 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 4.09 - Piriform)
City Car Driving 1.2.5 (x32 Version: - Forward Development)
Classic Shell (Version: 3.6.7 - IvoSoft)
Counter-Strike: Global Offensive (x32 Version: - Valve)
Counter-Strike: Source (x32 Version: - Valve)
CyberLink PowerDVD (x32 Version: 9.0.6426.52 - CyberLink Corp.)
CyberLink PowerDVD (x32 Version: 9.0.6426.52 - CyberLink Corp.) Hidden
CyberLink YouCam 6 (x32 Version: 6.0.2326.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
D-Link DWA-140 (x32 Version: - D-Link)
Euro Truck Simulator 2 (x32 Version: 1.3.0 - SCS Software)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FRANZIS onlineTV 8 (x32 Version: 8.5.0.10 - FRANZIS Verlag GmbH)
Free Driver Scout (Version: 1.0.0.0 - Covus Freemium) Hidden
Free System Utilities (x32 Version: 1.0.0.17 - Covus Freemium GmbH)
Free SystemUtilities (x32 Version: 1.0.0.17 - Covus Freemium GmbH) Hidden
Gameforge Live 1.9.0 "Legend" (x32 Version: 1.9.0 - Gameforge)
Ghost Recon Online (EU) (HKCU Version: 1.34.4116.1 - Ubisoft)
Intel AppUp(R) center (x32 Version: 45233 - Intel)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 9.5.15.1730 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (x32 Version: - Intel Corporation)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
League of Legends (x32 Version: 1.3 - Riot Games)
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
ManiaPlanet (x32 Version: - Nadeo)
Metin2 (x32 Version: - Gameforge 4D GmbH)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 Home Premium - de-de (Version: 15.0.4551.1512 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Nexon Game Manager (x32 Version: - )
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden
OpenAL (x32 Version: - )
Origin (x32 Version: 9.1.13.85 - Electronic Arts, Inc.)
PhotoScape (x32 Version: - )
PunkBuster Services (x32 Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (x32 Version: 6.1.8400.28121 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.2.0.09270 - Sony Corporation) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group)
SCS Shortcut (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Should I Remove It (HKCU Version: 1.0.4 - Reason Software Company Inc.)
Should I Remove It (x32 Version: 1.0.4 - Reason Software Company Inc.) Hidden
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Subway Surfers (x32 Version: - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (Version: 17.0.18.8 - Synaptics Incorporated)
Team Fortress 2 (x32 Version: - Valve)
TeamSpeak 3 Client (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TeamViewer 9 (x32 Version: 9.0.24951 - TeamViewer)
TmUnitedForever Update 2010-03-15 (x32 Version: - Nadeo)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
VAIO - Remote-Tastatur (x32 Version: 1.2.0.09270 - Sony Corporation)
VAIO - Remote-Tastatur mit PlayStation®3 (x32 Version: 1.2.0.09210 - Sony Corporation)
VAIO - Xperia Link (x32 Version: 1.0.2.11280 - Sony Corporation)
VAIO Care (Version: 8.3.0.08220 - Sony Corporation)
VAIO Care Recovery (Version: 1.0.2.08020 - Sony Corporation)
VAIO Control Center (x32 Version: 6.0.0.08200 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.2.0.14170 - Sony Corporation) Hidden
VAIO Gate (x32 Version: 3.0.1.02270 - Sony Corporation)
VAIO Gate Default (x32 Version: 3.0.0.08060 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation) Hidden
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Image Optimizer (x32 Version: 3.2.00.07040 - Sony Corporation)
VAIO Improvement (x32 Version: 2.0.0.08090 - Sony Corporation)
VAIO Media Server Settings (Version: 1.0.0.08240 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.0.00.10170 - Sony Corporation) Hidden
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Update (x32 Version: 6.3.0.08010 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (x32 Version: 1.1.0.09200 - Sony Corporation)
VAIO-Handbuch (x32 Version: 3.0.0.08100 - Sony Corporation)
VAIO-Support für Übertragungen (x32 Version: 1.8.0.08212 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Qualcomm Atheros Communications Inc. (athr) Net (07/15/2013 10.0.0.260) (Version: 07/15/2013 10.0.0.260 - Qualcomm Atheros Communications Inc.)
World of Tanks (x32 Version: - Wargaming.net)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
==================== Restore Points =========================
13-01-2014 15:29:11 DirectX wurde installiert
19-01-2014 12:55:45 Installiert D-Link DWA-140
20-01-2014 13:10:49 Free Driver Scout
20-01-2014 13:24:52 DriverUtilities
26-01-2014 01:01:59 Free Driver Scout
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {0132E98E-AC30-4FA9-A361-CF7DC2CB45D3} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-04-03] (Sony Corporation)
Task: {03B01E45-294F-417D-A79C-675DF1170288} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0801C0B3-16AC-44CA-9F93-D229D9210F56} - System32\Tasks\Sony Corporation\Sony Home Network Library\SOHLib TaskTray => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [2012-08-08] (Sony Corporation)
Task: {0A7D01D3-C0E3-4F9D-8481-408085316ADE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-12-17] (Piriform Ltd)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12D3ED67-2178-474B-86D7-638553B8C456} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {16B8AD66-96F7-476A-99D9-3B5392949687} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2013-04-03] (Sony Corporation)
Task: {1918B4CA-B500-40C5-9743-3EB6DEC8C0E3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-10-31] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {22E95DF0-AFC9-4A12-A078-38806247777F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-15] (Microsoft Corporation)
Task: {28E6EB4C-73CA-47CF-8151-8A2045C5C4FB} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3975CFA6-EECD-4699-AD96-BA5BB855ECF0} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {41E0B6F1-5BFA-4849-8C87-AD9524F704BE} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {43F133CD-CA77-428C-9A2D-B4D13971BBEB} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4D65B278-58D0-408D-ABFE-92C49DF6AEAD} - \Software Updater Ui No Task File
Task: {52B2E394-3879-4BCB-9B03-AC73B61BA548} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {64900643-675F-4990-82B6-0E1F6478FC42} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {68D39243-D452-45B3-A6FA-1628D8A7C944} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7A1CC464-1F72-478E-A0C8-0C43F03CDCED} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-08-04] (Sony Corporation)
Task: {7F284929-309D-46C3-84AC-7733DBD0E9AA} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {868753C4-AF56-4EBA-B6CA-8CA4A0FD39AB} - System32\Tasks\Sony Corporation\Sony Home Network Library\SOHLib SOHDms => C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2012-08-08] (Sony Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8CE46D83-AB80-4AEF-BA44-E512C241905C} - \FreeDriverScout No Task File
Task: {983FC077-7C9C-481E-B3FF-EA25468035C7} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {98B3463C-C758-474E-B276-296FC50766D2} - \Software Updater No Task File
Task: {9EDE57E5-8C38-4270-A16A-FDC52B55F9CE} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2013-08-01] (Sony Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A20ACDB9-AF9C-4DC9-A2C3-160BE34BE206} - System32\Tasks\Freemium1ClickMaint => C:\Users\Justin\Downloads\1Click.exe
Task: {A8EC3939-1871-4395-9441-A069581EF7BC} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-01-15] (Microsoft Corporation)
Task: {A9520BA8-F50F-4631-862A-9DD6E5F72FDF} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {AD9D2175-6BD3-40E6-9FF0-3F3B5C3E44EE} - System32\Tasks\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-07-31] (Sony Corporation)
Task: {ADC65286-8C54-48A5-99A9-F6E144119D39} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {AF7EDDEB-C9E1-4ABD-917F-5B3D5F777E24} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {B69F7E1B-1399-4426-ACB9-94F20EB71023} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-15] (Adobe Systems Incorporated)
Task: {BBA4F527-5BBD-47B4-B6D1-5ED6DE6D0B8A} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2013-02-21] (Sony Corporation)
Task: {C7E0E23C-E964-49B4-949F-067D1969262B} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {C9D3BCEE-A008-4123-84D0-F640414DFE97} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-08-09] (Sony Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DDE2C68B-6689-478E-9CC4-CB2C69802055} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2012-11-29] (Sony Corporation)
Task: {E175DC1C-373F-41FC-984A-51DE81B0C62B} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {ED0C8AC8-E880-43C3-A6E6-FA1D7B9A72D8} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {F4610834-CC70-4E7C-BE72-CAD7DDA7956F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-03] (AVAST Software)
Task: {F94FFD35-CC90-44BE-9200-01AC92A12542} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-08-21] (Sony Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2013-09-07 01:48 - 2013-09-07 01:48 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-07 01:45 - 2013-09-07 01:45 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-07 01:52 - 2013-09-07 01:52 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2013-09-07 01:41 - 2013-09-07 01:41 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2014-01-26 00:03 - 2014-01-25 18:46 - 02166272 _____ () C:\Program Files\AVAST Software\Avast\defs\14012501\algo.dll
2012-07-18 03:54 - 2012-07-18 03:54 - 00142440 _____ () C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\Extension\MrsMpegParser.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00016896 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00020480 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00446976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2012-09-25 00:45 - 2013-07-17 14:10 - 00064512 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2013-12-13 03:32 - 2013-12-13 03:32 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-19 13:56 - 2010-06-29 17:23 - 00299008 _____ () C:\Program Files (x86)\D-Link\DWA-140 revB\WlanApp.dll
2014-01-19 13:56 - 2014-01-19 13:56 - 00315392 _____ () C:\Program Files (x86)\D-Link\DWA-140 revB\ANPDApi.dll
2014-01-20 14:30 - 2013-09-16 12:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:FB6A21E3
AlternateDataStreams: C:\Users\Justin\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Controller der Familie Realtek PCIe GBE
Description: Controller der Familie Realtek PCIe GBE
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8168
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Could not start eventlog service, could not read events.
Der angeforderte Dienst wurde bereits gestartet.
Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.
==================== Memory info ===========================
Percentage of memory in use: 25%
Total physical RAM: 6091.27 MB
Available physical RAM: 4510.5 MB
Total Pagefile: 7115.27 MB
Available Pagefile: 5101.72 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:662.19 GB) (Free:454.64 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 699 GB) (Disk ID: AFB1E9EF)
Partition: GPT Partition Type
==================== End Of Log ============================
|
|
26.01.2014, 08:32
| #4 |
| /// the machine /// TB-Ausbilder | Awesomehp.com Virus legt Internet lahm Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.01.2014, 11:23
| #5 |
| | Awesomehp.com Virus legt Internet lahmCode:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.01.26.02 Windows 8 x64 NTFS Internet Explorer 11.0.9600.16476 Justin :: VAIO [Administrator] 26.01.2014 09:14:38 mbam-log-2014-01-26 (09-14-38).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 227788 Laufzeit: 16 Minute(n), 43 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 6 C:\Users\Justin\AppData\Local\Temp\Simon The Sorcerer 1__3038_i291673860_il4122852.exe (PUP.Optional.InstallMonetizer) -> Keine Aktion durchgeführt. C:\Users\Justin\AppData\Local\Temp\fullpackage_temp1390697133\QQBrowserFrame.dll (PUP.Optional.SkyTech.A) -> Keine Aktion durchgeführt. C:\Users\Justin\AppData\Local\Temp\fullpackage_temp1390697133\package1.zip (PUP.Optional.SkyTech.A) -> Keine Aktion durchgeführt. C:\Users\Justin\Downloads\DTLite4481-0347.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. C:\Users\Justin\Downloads\Simon The Sorcerer 1__3038_i291673860_il4122852.exe (PUP.Optional.InstallMonetizer) -> Keine Aktion durchgeführt. C:\Users\Justin\Downloads\Updater_Setup.exe (PUP.Optional.OptimumInstaller.A) -> Keine Aktion durchgeführt. (Ende) Code:
ATTFilter # AdwCleaner v3.017 - Bericht erstellt am 26/01/2014 um 06:03:39
# Aktualisiert 12/01/2014 von Xplode
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : Justin - VAIO
# Gestartet von : C:\Users\Justin\Desktop\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\user.js
Datei Gefunden : C:\WINDOWS\System32\Tasks\FreeDriverScout
Datei Gefunden : C:\WINDOWS\System32\Tasks\Software Updater
Datei Gefunden : C:\WINDOWS\System32\Tasks\Software Updater Ui
Ordner Gefunden C:\Program Files (x86)\SoftwareUpdater
Ordner Gefunden C:\Program Files (x86)\SupTab
Ordner Gefunden C:\Program Files\SoftwareUpdater
Ordner Gefunden C:\ProgramData\WPM
Ordner Gefunden C:\Users\Justin\AppData\Local\SoftwareUpdater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Schlüssel Gefunden : HKCU\Software\OCS
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Schlüssel Gefunden : [x64] HKCU\Software\OCS
Schlüssel Gefunden : HKLM\SOFTWARE\14919ea49a8f3b4aa3cf1058d9a64cec
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AmiBs.Installer
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AmiBs.Installer.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A6FEED89-3BCD-4D19-9DC2-3E613A80A2A4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{1C1356DA-1E98-4810-A9F6-18D89BD1C0C0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Schlüssel Gefunden : HKLM\Software\SupTab
Schlüssel Gefunden : HKLM\Software\supWPM
Schlüssel Gefunden : HKLM\Software\Uniblue
Schlüssel Gefunden : HKLM\Software\Uniblue\DriverScanner
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16384
-\\ Mozilla Firefox v
[ Datei : C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\prefs.js ]
-\\ Google Chrome v
[ Datei : C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1118 octets] - [26/01/2014 04:04:16]
AdwCleaner[R1].txt - [4017 octets] - [26/01/2014 06:03:39]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [4077 octets] ##########
|
|
26.01.2014, 11:42
| #6 |
| | Awesomehp.com Virus legt Internet lahm Rkill Datei war zu Groß (knapp 5 MB) musste ich leider im Angang heften. Hier noch die frische FRST FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-01-2014 01
Ran by Justin (administrator) on VAIO on 26-01-2014 11:08:10
Running from C:\Users\Justin\Desktop
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicShellService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Preventon Technologies Limited) C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVScanningService.exe
(Preventon Technologies Limited) C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVWatchService.exe
(ChicaLogic) C:\Program Files (x86)\ChicaLogic\ChicaPC-Shield\cpcsscheduler.exe
(ChicaLogic) C:\Program Files (x86)\ChicaLogic\ChicaPC-Shield\cpcsservice.exe
() C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(ChicaLogic) C:\Program Files (x86)\ChicaLogic\ChicaPC-Shield\cpcsgui.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Sony Corporation) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
(D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe
(SPAMfighter) C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2804976 2013-10-25] (Synaptics Incorporated)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2777736 2013-04-03] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-04-03] (Crawler.com)
HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-17] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - c:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-12-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-17] (Intel Corporation)
HKLM-x32\...\Run: [Intel AppUp(R) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-07-17] (Intel Corporation)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-26] (cyberlink)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-26] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [YouCam Service6] - C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [500696 2013-11-26] (CyberLink Corp.)
HKLM-x32\...\Run: [D-Link D-Link Wireless N DWA-140] - C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe [1024000 2010-06-30] (D-Link Corp.)
HKLM-x32\...\Run: [SWPROguard] - C:\Program Files (x86)\Fighters\SPYWAREfighter\swprotray.exe [1262632 2013-12-10] (SPAMfighter)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Windows\skipmetrosuite.exe,
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1815464 2014-01-07] (Valve Corporation)
MountPoints2: {74a2cfea-8624-11e3-bec8-083e8eb392f8} - "E:\HTC_Sync_Manager_PC.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390697162&from=amt&uid=TOSHIBAXMQ01ABD075_9286S6FYSXX9286S6FYS
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {069E9991-5132-43EC-A1D5-510336995D80} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {EB021560-949B-463B-8BB4-D3EC7242CC1B} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q312&_nkw={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\s20wm4sm.default-1390717061662
FF Homepage: hxxp://www.spywareterminator.com/de/news/news.aspx
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\Sony\MSS\3.0.318\npMcAfeeMss.dll No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Justin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: intel.com/AppUp - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll (Intel)
FF Plugin HKCU: intel.com/AppUpx64 - C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp_x64.dll (Intel)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-03-26]
FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Justin\AppData\Roaming\Mozilla\Firefox\Profiles\tuel5k3h.default\extensions\lightningnewtab@gmail.com.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR Extension: (Docs) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-04-21]
CHR Extension: (Freemake Video Downloader) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-04-21]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-04-21]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-04-21]
CHR Extension: (avast! WebRep) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-04-23]
CHR Extension: (No Name) - C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-04-21]
==================== Services (Whitelisted) =================
U2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider)
U2 AV Engine Scanning Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe [2009912 2013-12-09] (Preventon Technologies Limited)
U2 AV Watch Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe [400528 2013-12-09] (Preventon Technologies Limited)
U2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-26] (AVAST Software)
U2 ClassicShellService; C:\Program Files\Classic Shell\ClassicShellService.exe [68608 2013-04-12] (IvoSoft)
U2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-04-26] (CyberLink)
U2 CPCSScheduler; C:\Program Files (x86)\ChicaLogic\ChicaPC-Shield\cpcsscheduler.exe [418376 2013-06-09] (ChicaLogic)
U2 CPCSService; C:\Program Files (x86)\ChicaLogic\ChicaPC-Shield\cpcsservice.exe [701512 2013-06-09] (ChicaLogic)
U2 D-Link Wireless N DWA-140_WPS; C:\Program Files (x86)\D-Link\DWA-140 revB\ANIWConnService.exe [53248 2010-06-03] ()
U2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-05-29] (Intel Corporation)
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
U2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
U3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.0.318\McCHSvc.exe [235216 2013-02-11] (McAfee, Inc.)
U3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
U2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-10-31] (Microsoft Corporation)
U2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-05-29] (Intel Corporation)
U2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-04-03] (Crawler.com)
U3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-05-29] (Intel Corporation)
U2 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-08-08] (Sony Corporation)
U3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros)
==================== Drivers (Whitelisted) ====================
U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
U1 anodlwf; C:\Windows\system32\DRIVERS\anodlwfx.sys [15872 2009-03-06] ()
U2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-26] (AVAST Software)
U1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-13] (AVAST Software)
U0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-13] ()
U1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-26] (AVAST Software)
U1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-26] (AVAST Software)
U3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [80184 2014-01-26] (AVAST Software)
U0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-03] ()
U3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-09-25] (Qualcomm Atheros Communications, Inc.)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-09-26] (Advanced Micro Devices)
U3 AVFSFilter; C:\Windows\system32\DRIVERS\avfsfilter.sys [13720 2013-12-09] ()
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
U3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [428488 2013-09-07] (Qualcomm Atheros)
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
U3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
U3 CPCSProtector; C:\WINDOWS\system32\drivers\cpcs.sys [25928 2013-04-04] (ChicaLogic)
U3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()
U3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2013-11-29] (LogMeIn Inc.)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-12-26] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netr28ux; C:\Windows\system32\DRIVERS\Dnetr28ux.sys [1119072 2010-05-05] (Ralink Technology Corp.)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U3 semav6thermal64ro; C:\Windows\system32\drivers\semav6thermal64ro.sys [13792 2013-11-26] ()
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-12-26] (Microsoft Corporation)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-25] (Synaptics Incorporated)
U3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-01-26] (Windows (R) Win 7 DDK provider)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
U3 TVICHW32; C:\Windows\system32\DRIVERS\TVICHW32.SYS [21200 2013-02-18] (EnTech Taiwan)
U3 TVICHW32; C:\Windows\SysWOW64\DRIVERS\TVICHW32.SYS [29536 2013-02-18] (EnTech Taiwan)
U3 TVICHW64; C:\Windows\system32\DRIVERS\TVICHW64.SYS [21200 2013-06-10] (EnTech Taiwan)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U2 vcs; C:\Program Files (x86)\Common Files\Avnex\vcs64.sys [4096 2013-07-09] ()
U3 VCSVADHWSer; C:\Windows\system32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
U3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [x]
U3 X6va015; \??\C:\WINDOWS\SysWOW64\Drivers\X6va015 [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-26 10:36 - 2014-01-26 10:36 - 00001028 _____ C:\Users\Justin\Desktop\JRT.txt
2014-01-26 09:20 - 2014-01-26 09:20 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-26 09:20 - 2014-01-26 09:20 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-26 08:51 - 2014-01-26 08:51 - 04721920 _____ (Piriform Ltd) C:\Users\Justin\Downloads\ccsetup410.exe
2014-01-26 08:51 - 2014-01-26 08:51 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2014-01-26 08:48 - 2014-01-26 08:48 - 00001471 _____ C:\Users\Justin\Desktop\iexplore - Verknüpfung.lnk
2014-01-26 08:06 - 2014-01-26 09:57 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-26 08:06 - 2014-01-26 08:07 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-26 08:06 - 2014-01-26 08:06 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-26 08:06 - 2014-01-26 08:06 - 00001054 _____ C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-01-26 08:06 - 2014-01-26 08:06 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Spyware Terminator
2014-01-26 08:05 - 2014-01-26 08:05 - 05049344 _____ (Crawler.com ) C:\Users\Justin\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-26 08:04 - 2014-01-26 10:00 - 00000462 _____ C:\WINDOWS\Tasks\ChicaPC-Shield-Notification.job
2014-01-26 08:04 - 2014-01-26 08:04 - 00003492 _____ C:\WINDOWS\System32\Tasks\ChicaPC-Shield-Notification
2014-01-26 08:01 - 2014-01-26 08:01 - 00001190 _____ C:\Users\Public\Desktop\ChicaPC-Shield.lnk
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\Users\Justin\AppData\Roaming\ChicaLogic
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\ProgramData\ChicaLogic
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\Program Files (x86)\ChicaLogic
2014-01-26 08:01 - 2013-04-04 14:51 - 00025928 _____ (ChicaLogic) C:\WINDOWS\system32\Drivers\cpcs.sys
2014-01-26 08:00 - 2014-01-26 08:30 - 00000000 ____D C:\ProgramData\clp
2014-01-26 07:59 - 2014-01-26 10:18 - 00000000 ____D C:\Program Files (x86)\Fighters
2014-01-26 07:59 - 2014-01-26 10:17 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Fighters
2014-01-26 07:59 - 2014-01-26 07:59 - 00002016 _____ C:\Users\Public\Desktop\SPYWAREfighter.lnk
2014-01-26 07:58 - 2014-01-26 10:17 - 00000000 ____D C:\ProgramData\Fighters
2014-01-26 07:58 - 2014-01-26 07:58 - 02380312 _____ (SPAMfighter ApS) C:\Users\Justin\Downloads\spywarefighter.exe
2014-01-26 07:58 - 2014-01-26 07:58 - 00000000 ____D C:\ProgramData\Common Toolkit Suite
2014-01-26 07:40 - 2014-01-26 07:40 - 00000000 _____ C:\autoexec.bat
2014-01-26 07:38 - 2014-01-26 07:38 - 00002276 _____ C:\Users\Justin\Desktop\SpyHunter.lnk
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\WINDOWS\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\sh4ldr
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-26 07:17 - 2014-01-26 07:17 - 00000000 ____D C:\Users\Justin\Desktop\Alte Firefox-Daten
2014-01-26 06:38 - 2014-01-26 06:38 - 00028705 _____ C:\Users\Justin\Desktop\Addition.txt
2014-01-26 06:37 - 2014-01-26 11:08 - 00025077 _____ C:\Users\Justin\Desktop\FRST.txt
2014-01-26 06:32 - 2014-01-26 06:32 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-26 06:32 - 2014-01-26 06:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-26 06:23 - 2014-01-26 06:23 - 00000000 ____D C:\FRST
2014-01-26 06:22 - 2014-01-25 06:34 - 02078208 ____N (Farbar) C:\Users\Justin\Desktop\FRST64.exe
2014-01-26 06:17 - 2014-01-26 06:18 - 00012834 _____ C:\Users\Justin\Desktop\hijackthis.log
2014-01-26 06:17 - 2014-01-25 06:28 - 00388608 ____N (Trend Micro Inc.) C:\Users\Justin\Desktop\HiJackThis204.exe
2014-01-26 05:58 - 2014-01-26 05:59 - 00001424 _____ C:\Users\Justin\Desktop\Internet Explorer.lnk
2014-01-26 05:17 - 2014-01-26 05:17 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-26 04:22 - 2014-01-26 04:22 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-26 04:03 - 2014-01-26 09:57 - 00000000 ____D C:\AdwCleaner
2014-01-26 03:55 - 2014-01-26 03:55 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-26 03:54 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-26 03:39 - 2014-01-26 03:39 - 00001284 _____ C:\Users\Justin\Desktop\Revo Uninstaller.lnk
2014-01-26 03:39 - 2014-01-26 03:39 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2014-01-26 03:36 - 2014-01-26 07:41 - 04985168 _____ C:\Users\Justin\Desktop\Rkill.txt
2014-01-26 03:36 - 2014-01-25 03:41 - 01037068 ____N (Thisisu) C:\Users\Justin\Desktop\JRT.exe
2014-01-26 03:36 - 2014-01-25 03:38 - 02623656 ____N (VS Revo Group Ltd.) C:\Users\Justin\Desktop\revosetup.exe
2014-01-26 03:35 - 2014-01-25 03:42 - 02347384 ____N (ESET) C:\Users\Justin\Desktop\esetsmartinstaller_deu.exe
2014-01-26 03:35 - 2014-01-25 03:40 - 10285040 ____N (Malwarebytes Corporation ) C:\Users\Justin\Desktop\mbam-setup-1.75.0.1300.exe
2014-01-26 03:35 - 2014-01-25 03:40 - 01236282 ____N C:\Users\Justin\Desktop\adwcleaner.exe
2014-01-26 03:35 - 2014-01-25 03:36 - 01933048 ____N (Bleeping Computer, LLC) C:\Users\Justin\Desktop\schatzschauweg.exe
2014-01-26 03:35 - 2014-01-25 03:08 - 00728960 ____N (Enigma Software Group USA, LLC.) C:\Users\Justin\Desktop\SpyHunter-Installer.exe
2014-01-26 02:41 - 2014-01-26 07:30 - 00001982 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-26 02:41 - 2014-01-09 02:22 - 00002187 _____ C:\Users\Public\Desktop\CyberLink YouCam 6.lnk
2014-01-26 02:41 - 2014-01-09 02:06 - 00000878 _____ C:\Users\Justin\Desktop\CyberLink_60YouCam_Downloader(1).lnk
2014-01-26 01:46 - 2014-01-26 02:08 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-26 01:44 - 2014-01-26 01:44 - 00153728 _____ (Amônétízé Ltd) C:\Users\Justin\Downloads\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DAEMON Tools Lite
2014-01-26 01:33 - 2014-01-26 01:33 - 13485616 _____ (Disc Soft Ltd) C:\Users\Justin\Downloads\DTLite4481-0347.exe
2014-01-26 01:33 - 2014-01-26 01:33 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-21 03:51 - 2014-01-21 04:16 - 00000000 _____ C:\dfu.log
2014-01-20 17:07 - 2014-01-20 17:07 - 00000000 _____ C:\Users\Justin\agent.log
2014-01-20 14:34 - 2014-01-20 14:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Synaptics
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:32 - 2013-10-25 18:36 - 00723184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00549104 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2014-01-20 14:32 - 2013-10-25 18:36 - 00422640 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo19.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00400624 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00252144 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00169712 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynTPCom.dll
2014-01-20 14:32 - 2013-10-25 18:36 - 00034544 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 14:32 - 2013-10-25 17:37 - 00161880 _____ C:\WINDOWS\system32\pca-manta.bin
2014-01-20 14:32 - 2013-10-25 17:37 - 00000092 _____ C:\WINDOWS\system32\calibration.bin
2014-01-20 14:32 - 2013-05-21 16:38 - 00036096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2014-01-20 14:31 - 2014-01-20 14:31 - 00000000 _____ C:\WINDOWS\SysWOW64\agent.log
2014-01-20 14:30 - 2014-01-20 14:30 - 00003936 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-01-20 14:30 - 2014-01-20 14:30 - 00003690 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-01-20 14:30 - 2014-01-20 14:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-20 14:29 - 2013-09-16 12:20 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-01-20 14:29 - 2013-09-16 12:20 - 00099288 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-01-20 14:28 - 2014-01-20 14:28 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2014-01-20 14:12 - 2014-01-26 03:46 - 00000000 ____D C:\ProgramData\FreeDriverScout
2014-01-20 14:12 - 2014-01-20 14:12 - 00000000 ____D C:\Users\Justin\Documents\Freemium Driver Utilities
2014-01-20 14:11 - 2014-01-20 14:11 - 00000000 ____D C:\Program Files\Covus Freemium
2014-01-20 14:08 - 2014-01-20 14:08 - 00669232 _____ C:\Users\Justin\Downloads\free-driver-scout_1.0_de-DE.exe
2014-01-19 13:56 - 2014-01-19 13:56 - 00001006 _____ C:\WINDOWS\system32\RaCoInst.log
2014-01-19 13:56 - 2010-06-03 13:36 - 00302080 _____ () C:\WINDOWS\lwd.exe
2014-01-19 13:54 - 2014-01-19 13:54 - 00000000 ____D C:\Program Files (x86)\D-Link
2014-01-19 13:54 - 2010-05-05 16:10 - 01119072 _____ (Ralink Technology Corp.) C:\WINDOWS\system32\Drivers\Dnetr28ux.sys
2014-01-19 13:54 - 2010-05-05 16:03 - 00326432 _____ (Ralink Technology, Inc.) C:\WINDOWS\system32\RaCoInstx.dll
2014-01-19 13:54 - 2010-05-05 16:03 - 00014051 _____ C:\WINDOWS\system32\RaCoInst.dat
2014-01-19 13:54 - 2009-03-06 18:10 - 00015872 _____ () C:\WINDOWS\system32\Drivers\anodlwfx.sys
2014-01-19 13:41 - 2014-01-19 13:41 - 00000000 ____D C:\Users\Justin\AppData\Roaming\InstallShield
2014-01-15 19:41 - 2014-01-15 19:41 - 00317603 _____ C:\Users\Justin\Downloads\PickUp+Bot+V4.0+Hidden+by+MarcoPolo.zip
2014-01-15 19:37 - 2014-01-15 19:37 - 00000000 ____D C:\Users\Justin\Downloads\Pickup
2014-01-15 19:35 - 2014-01-15 19:35 - 00223125 _____ C:\Users\Justin\Downloads\Pickup.zip
2014-01-15 13:38 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-15 13:38 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-15 13:38 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-15 13:38 - 2013-11-27 11:34 - 00138240 _____ C:\WINDOWS\system32\OEMLicense.dll
2014-01-15 13:38 - 2013-11-27 10:54 - 00103936 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-15 13:38 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 13:38 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-15 13:38 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-15 13:38 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-15 13:38 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-15 13:38 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-15 03:20 - 2014-01-15 03:20 - 00001960 _____ C:\Users\Public\Desktop\Metin2.lnk
2014-01-15 02:58 - 2014-01-21 04:20 - 00000000 ____D C:\Users\Justin\Downloads\Gameforge Live
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\AppData\Local\Gameforge4d
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2014-01-15 02:57 - 2014-01-15 02:57 - 19394136 _____ (Gameforge ) C:\Users\Justin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-01-13 16:53 - 2014-01-13 16:53 - 00000000 _____ C:\Users\Justin\__ng3d.lock
2014-01-13 16:28 - 2014-01-13 16:28 - 00431104 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00413696 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00116736 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00000000 ____D C:\Program Files (x86)\OpenAL
2014-01-13 16:13 - 2014-01-13 16:24 - 922359211 _____ C:\Users\Justin\Downloads\RegnumOnlineInstall_German.exe
2014-01-12 15:31 - 2014-01-12 15:31 - 04105416 _____ (Gameforge 4D GmbH ) C:\Users\Justin\Downloads\Wizard101_Installer_DE.exe
2014-01-12 07:54 - 2014-01-12 07:54 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2014-01-10 17:38 - 2014-01-10 17:38 - 07761936 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost(1).exe
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Should I Remove It
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Program Files (x86)\Reason
2014-01-10 17:32 - 2014-01-10 17:32 - 07653600 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost.exe
2014-01-10 17:29 - 2014-01-10 17:29 - 02184968 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\ShouldIRemoveIt_Setup.exe
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\Documents\Razer
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer_Inc
2014-01-10 17:18 - 2014-01-20 14:42 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer
2014-01-10 17:17 - 2014-01-20 14:42 - 00000000 ____D C:\ProgramData\Razer
2014-01-10 17:17 - 2014-01-20 14:42 - 00000000 ____D C:\Program Files (x86)\Razer
2014-01-10 17:16 - 2014-01-10 17:17 - 41363400 _____ (Razer Inc. ) C:\Users\Justin\Downloads\RazerGameBoosterSetup_4.1.59.0_1.exe
2014-01-10 15:05 - 2014-01-10 15:38 - 1579161641 _____ (InstallShield Software Corporation) C:\Users\Justin\Downloads\LastChaos_DE_Setup.exe
2014-01-09 21:15 - 2014-01-09 21:16 - 18101704 _____ (Adobe Systems Inc.) C:\Users\Justin\Downloads\AdobeAIRInstaller(1).exe
2014-01-09 02:26 - 2014-01-09 02:26 - 00000000 ____D C:\Users\Justin\Documents\Avatar
2014-01-09 02:24 - 2014-01-09 05:15 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-09 02:24 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Justin\AppData\Roaming\CyberLink
2014-01-09 02:22 - 2014-01-09 15:19 - 00000000 ____D C:\Users\Justin\Documents\YouCam
2014-01-09 02:22 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\AppData\Local\CyberLink
2014-01-09 02:22 - 2013-10-29 08:26 - 00041704 _____ (CyberLink Corporation) C:\WINDOWS\system32\Drivers\clwvd6.sys
2014-01-09 02:19 - 2014-01-09 02:19 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2014-01-09 02:06 - 2014-01-09 02:06 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(3).exe
2014-01-09 02:05 - 2014-01-09 02:05 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(2).exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader.exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(1).exe
2014-01-03 14:51 - 2014-01-26 07:30 - 00080184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-01-02 12:33 - 2014-01-02 12:33 - 00000000 ____D C:\Users\Justin\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-02 12:24 - 2014-01-06 12:43 - 00023552 ___SH C:\Users\Justin\Documents\Thumbs.db
2013-12-28 22:35 - 2013-12-28 22:35 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-28 08:38 - 2013-12-28 08:38 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 07:25 - 2014-01-09 01:08 - 00000000 ____D C:\WINDOWS\Minidump
==================== One Month Modified Files and Folders =======
2014-01-26 11:08 - 2014-01-26 06:37 - 00025077 _____ C:\Users\Justin\Desktop\FRST.txt
2014-01-26 11:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-26 11:00 - 2013-06-19 19:03 - 00055387 _____ C:\WINDOWS\system32\lvcoinst.log
2014-01-26 10:59 - 2013-12-26 09:41 - 00000000 __RDO C:\Users\Justin\SkyDrive
2014-01-26 10:59 - 2013-12-26 09:30 - 01814593 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-26 10:44 - 2013-02-17 12:21 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-26 10:36 - 2014-01-26 10:36 - 00001028 _____ C:\Users\Justin\Desktop\JRT.txt
2014-01-26 10:36 - 2013-02-16 20:52 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3045853046-4163494673-3208083228-1001
2014-01-26 10:18 - 2014-01-26 07:59 - 00000000 ____D C:\Program Files (x86)\Fighters
2014-01-26 10:17 - 2014-01-26 07:59 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Fighters
2014-01-26 10:17 - 2014-01-26 07:58 - 00000000 ____D C:\ProgramData\Fighters
2014-01-26 10:06 - 2013-11-14 08:27 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-26 10:06 - 2013-11-14 08:11 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-26 10:06 - 2013-11-14 08:11 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-26 10:00 - 2014-01-26 08:04 - 00000462 _____ C:\WINDOWS\Tasks\ChicaPC-Shield-Notification.job
2014-01-26 10:00 - 2013-02-17 01:32 - 00000000 ____D C:\Users\Justin\AppData\Local\LogMeIn Hamachi
2014-01-26 09:59 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-26 09:58 - 2013-12-26 09:06 - 00000000 ____D C:\Users\Justin
2014-01-26 09:58 - 2013-08-22 14:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2014-01-26 09:57 - 2014-01-26 08:06 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-26 09:57 - 2014-01-26 04:03 - 00000000 ____D C:\AdwCleaner
2014-01-26 09:20 - 2014-01-26 09:20 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-26 09:20 - 2014-01-26 09:20 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-26 08:56 - 2013-02-16 20:56 - 00000000 ____D C:\Users\Justin\AppData\Local\CrashDumps
2014-01-26 08:51 - 2014-01-26 08:51 - 04721920 _____ (Piriform Ltd) C:\Users\Justin\Downloads\ccsetup410.exe
2014-01-26 08:51 - 2014-01-26 08:51 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2014-01-26 08:51 - 2013-02-17 18:24 - 00000000 ____D C:\Program Files\CCleaner
2014-01-26 08:48 - 2014-01-26 08:48 - 00001471 _____ C:\Users\Justin\Desktop\iexplore - Verknüpfung.lnk
2014-01-26 08:30 - 2014-01-26 08:00 - 00000000 ____D C:\ProgramData\clp
2014-01-26 08:29 - 2013-12-26 09:59 - 00003918 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2864A873-8E87-4741-9E6C-0B079802D667}
2014-01-26 08:07 - 2014-01-26 08:06 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2014-01-26 08:06 - 2014-01-26 08:06 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\stflt.sys
2014-01-26 08:06 - 2014-01-26 08:06 - 00001054 _____ C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-01-26 08:06 - 2014-01-26 08:06 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Spyware Terminator
2014-01-26 08:05 - 2014-01-26 08:05 - 05049344 _____ (Crawler.com ) C:\Users\Justin\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-26 08:04 - 2014-01-26 08:04 - 00003492 _____ C:\WINDOWS\System32\Tasks\ChicaPC-Shield-Notification
2014-01-26 08:01 - 2014-01-26 08:01 - 00001190 _____ C:\Users\Public\Desktop\ChicaPC-Shield.lnk
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\Users\Justin\AppData\Roaming\ChicaLogic
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\ProgramData\ChicaLogic
2014-01-26 08:01 - 2014-01-26 08:01 - 00000000 ____D C:\Program Files (x86)\ChicaLogic
2014-01-26 07:59 - 2014-01-26 07:59 - 00002016 _____ C:\Users\Public\Desktop\SPYWAREfighter.lnk
2014-01-26 07:58 - 2014-01-26 07:58 - 02380312 _____ (SPAMfighter ApS) C:\Users\Justin\Downloads\spywarefighter.exe
2014-01-26 07:58 - 2014-01-26 07:58 - 00000000 ____D C:\ProgramData\Common Toolkit Suite
2014-01-26 07:41 - 2014-01-26 03:36 - 04985168 _____ C:\Users\Justin\Desktop\Rkill.txt
2014-01-26 07:40 - 2014-01-26 07:40 - 00000000 _____ C:\autoexec.bat
2014-01-26 07:38 - 2014-01-26 07:38 - 00002276 _____ C:\Users\Justin\Desktop\SpyHunter.lnk
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\WINDOWS\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\sh4ldr
2014-01-26 07:38 - 2014-01-26 07:38 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-26 07:30 - 2014-01-26 02:41 - 00001982 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-26 07:30 - 2014-01-03 14:51 - 00080184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-01-26 07:30 - 2013-03-26 21:15 - 01038072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-26 07:30 - 2013-03-26 21:15 - 00421704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-26 07:30 - 2013-03-26 21:15 - 00334136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-26 07:30 - 2013-03-26 21:15 - 00078648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-26 07:30 - 2013-03-26 21:15 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-26 07:30 - 2013-03-26 21:15 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-26 07:17 - 2014-01-26 07:17 - 00000000 ____D C:\Users\Justin\Desktop\Alte Firefox-Daten
2014-01-26 06:38 - 2014-01-26 06:38 - 00028705 _____ C:\Users\Justin\Desktop\Addition.txt
2014-01-26 06:32 - 2014-01-26 06:32 - 00001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-26 06:32 - 2014-01-26 06:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-26 06:32 - 2013-04-11 20:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-26 06:23 - 2014-01-26 06:23 - 00000000 ____D C:\FRST
2014-01-26 06:18 - 2014-01-26 06:17 - 00012834 _____ C:\Users\Justin\Desktop\hijackthis.log
2014-01-26 05:59 - 2014-01-26 05:58 - 00001424 _____ C:\Users\Justin\Desktop\Internet Explorer.lnk
2014-01-26 05:17 - 2014-01-26 05:17 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-26 04:22 - 2014-01-26 04:22 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-26 03:55 - 2014-01-26 03:55 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-26 03:54 - 2014-01-26 03:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-26 03:46 - 2014-01-20 14:12 - 00000000 ____D C:\ProgramData\FreeDriverScout
2014-01-26 03:46 - 2013-04-27 15:36 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-26 03:39 - 2014-01-26 03:39 - 00001284 _____ C:\Users\Justin\Desktop\Revo Uninstaller.lnk
2014-01-26 03:39 - 2014-01-26 03:39 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2014-01-26 02:08 - 2014-01-26 01:46 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-26 02:00 - 2013-12-24 02:03 - 00000000 ____D C:\Users\Justin\AppData\Roaming\concept design
2014-01-26 01:46 - 2013-12-26 09:37 - 00001668 _____ C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-26 01:44 - 2014-01-26 01:44 - 00153728 _____ (Amônétízé Ltd) C:\Users\Justin\Downloads\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
2014-01-26 01:34 - 2014-01-26 01:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DAEMON Tools Lite
2014-01-26 01:33 - 2014-01-26 01:33 - 13485616 _____ (Disc Soft Ltd) C:\Users\Justin\Downloads\DTLite4481-0347.exe
2014-01-26 01:33 - 2014-01-26 01:33 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2014-01-25 23:32 - 2013-10-14 21:45 - 00000000 ___RD C:\Users\Justin\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2014-01-25 23:32 - 2013-09-06 01:41 - 00000000 ____D C:\Users\Justin\Downloads\Bewerbungen
2014-01-25 23:32 - 2013-02-17 07:12 - 00421376 ___SH C:\Users\Justin\Downloads\Thumbs.db
2014-01-25 19:10 - 2013-02-24 04:47 - 00904192 ___SH C:\Users\Justin\Desktop\Thumbs.db
2014-01-25 06:34 - 2014-01-26 06:22 - 02078208 ____N (Farbar) C:\Users\Justin\Desktop\FRST64.exe
2014-01-25 06:28 - 2014-01-26 06:17 - 00388608 ____N (Trend Micro Inc.) C:\Users\Justin\Desktop\HiJackThis204.exe
2014-01-25 03:42 - 2014-01-26 03:35 - 02347384 ____N (ESET) C:\Users\Justin\Desktop\esetsmartinstaller_deu.exe
2014-01-25 03:41 - 2014-01-26 03:36 - 01037068 ____N (Thisisu) C:\Users\Justin\Desktop\JRT.exe
2014-01-25 03:40 - 2014-01-26 03:35 - 10285040 ____N (Malwarebytes Corporation ) C:\Users\Justin\Desktop\mbam-setup-1.75.0.1300.exe
2014-01-25 03:40 - 2014-01-26 03:35 - 01236282 ____N C:\Users\Justin\Desktop\adwcleaner.exe
2014-01-25 03:38 - 2014-01-26 03:36 - 02623656 ____N (VS Revo Group Ltd.) C:\Users\Justin\Desktop\revosetup.exe
2014-01-25 03:36 - 2014-01-26 03:35 - 01933048 ____N (Bleeping Computer, LLC) C:\Users\Justin\Desktop\schatzschauweg.exe
2014-01-25 03:08 - 2014-01-26 03:35 - 00728960 ____N (Enigma Software Group USA, LLC.) C:\Users\Justin\Desktop\SpyHunter-Installer.exe
2014-01-24 19:30 - 2013-02-16 21:57 - 00000000 ____D C:\Users\Justin\Documents\TrackMania
2014-01-23 16:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-23 14:47 - 2013-08-22 15:44 - 00501152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-21 10:22 - 2013-08-16 03:00 - 00000000 ____D C:\Users\Justin\Documents\BewerbungsMaster
2014-01-21 10:22 - 2013-08-16 03:00 - 00000000 ____D C:\ProgramData\BewerbungsMaster
2014-01-21 04:20 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\Downloads\Gameforge Live
2014-01-21 04:16 - 2014-01-21 03:51 - 00000000 _____ C:\dfu.log
2014-01-20 17:07 - 2014-01-20 17:07 - 00000000 _____ C:\Users\Justin\agent.log
2014-01-20 14:43 - 2013-06-10 06:44 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TeamViewer
2014-01-20 14:42 - 2014-01-10 17:18 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer
2014-01-20 14:42 - 2014-01-10 17:17 - 00000000 ____D C:\ProgramData\Razer
2014-01-20 14:42 - 2014-01-10 17:17 - 00000000 ____D C:\Program Files (x86)\Razer
2014-01-20 14:36 - 2013-02-16 20:46 - 00000000 ____D C:\Users\Justin\Documents\Bluetooth Folder
2014-01-20 14:35 - 2013-03-26 21:36 - 00000000 ____D C:\Users\Justin\Desktop\Programme
2014-01-20 14:34 - 2014-01-20 14:34 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Synaptics
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-01-20 14:33 - 2014-01-20 14:33 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:31 - 2014-01-20 14:31 - 00000000 _____ C:\WINDOWS\SysWOW64\agent.log
2014-01-20 14:30 - 2014-01-20 14:30 - 00003936 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2014-01-20 14:30 - 2014-01-20 14:30 - 00003690 _____ C:\WINDOWS\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2014-01-20 14:30 - 2014-01-20 14:30 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-01-20 14:30 - 2012-09-25 00:17 - 00000000 ____D C:\ProgramData\Intel
2014-01-20 14:30 - 2012-09-25 00:05 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-20 14:28 - 2014-01-20 14:28 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2014-01-20 14:12 - 2014-01-20 14:12 - 00000000 ____D C:\Users\Justin\Documents\Freemium Driver Utilities
2014-01-20 14:11 - 2014-01-20 14:11 - 00000000 ____D C:\Program Files\Covus Freemium
2014-01-20 14:08 - 2014-01-20 14:08 - 00669232 _____ C:\Users\Justin\Downloads\free-driver-scout_1.0_de-DE.exe
2014-01-20 13:44 - 2013-06-10 06:39 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2014-01-19 13:56 - 2014-01-19 13:56 - 00001006 _____ C:\WINDOWS\system32\RaCoInst.log
2014-01-19 13:54 - 2014-01-19 13:54 - 00000000 ____D C:\Program Files (x86)\D-Link
2014-01-19 13:54 - 2012-09-25 00:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-19 13:41 - 2014-01-19 13:41 - 00000000 ____D C:\Users\Justin\AppData\Roaming\InstallShield
2014-01-16 11:33 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-15 21:06 - 2013-07-11 22:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 21:04 - 2013-02-17 03:12 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 19:41 - 2014-01-15 19:41 - 00317603 _____ C:\Users\Justin\Downloads\PickUp+Bot+V4.0+Hidden+by+MarcoPolo.zip
2014-01-15 19:37 - 2014-01-15 19:37 - 00000000 ____D C:\Users\Justin\Downloads\Pickup
2014-01-15 19:35 - 2014-01-15 19:35 - 00223125 _____ C:\Users\Justin\Downloads\Pickup.zip
2014-01-15 13:48 - 2013-09-06 17:44 - 00000000 ____D C:\Program Files\Microsoft Office 15
2014-01-15 13:33 - 2013-03-03 12:41 - 00000000 ____D C:\Users\Justin\AppData\Local\Adobe
2014-01-15 13:33 - 2013-02-17 12:21 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-01-15 13:27 - 2013-02-16 22:58 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2014-01-15 03:20 - 2014-01-15 03:20 - 00001960 _____ C:\Users\Public\Desktop\Metin2.lnk
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Users\Justin\AppData\Local\Gameforge4d
2014-01-15 02:58 - 2014-01-15 02:58 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2014-01-15 02:57 - 2014-01-15 02:57 - 19394136 _____ (Gameforge ) C:\Users\Justin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-01-13 16:53 - 2014-01-13 16:53 - 00000000 _____ C:\Users\Justin\__ng3d.lock
2014-01-13 16:28 - 2014-01-13 16:28 - 00431104 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00413696 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00116736 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00086016 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2014-01-13 16:28 - 2014-01-13 16:28 - 00000000 ____D C:\Program Files (x86)\OpenAL
2014-01-13 16:26 - 2013-02-16 21:52 - 00000000 ____D C:\Games
2014-01-13 16:24 - 2014-01-13 16:13 - 922359211 _____ C:\Users\Justin\Downloads\RegnumOnlineInstall_German.exe
2014-01-12 15:31 - 2014-01-12 15:31 - 04105416 _____ (Gameforge 4D GmbH ) C:\Users\Justin\Downloads\Wizard101_Installer_DE.exe
2014-01-12 07:54 - 2014-01-12 07:54 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2014-01-10 17:55 - 2013-05-17 02:07 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-10 17:55 - 2013-02-17 00:48 - 00000000 ____D C:\Users\Justin\AppData\Roaming\TS3Client
2014-01-10 17:54 - 2013-03-01 19:43 - 00000000 ____D C:\Users\Justin\Desktop\Bilder
2014-01-10 17:51 - 2013-03-26 21:31 - 00000000 ____D C:\Program Files (x86)\Freemake
2014-01-10 17:50 - 2013-03-26 21:09 - 00000000 ____D C:\Fraps
2014-01-10 17:49 - 2012-09-25 00:24 - 00000000 ____D C:\Program Files (x86)\Sony
2014-01-10 17:49 - 2012-09-25 00:04 - 00000000 ____D C:\ProgramData\Sony Corporation
2014-01-10 17:48 - 2013-03-27 23:50 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2014-01-10 17:43 - 2013-12-17 13:57 - 00000000 ____D C:\Program Files (x86)\S4League
2014-01-10 17:43 - 2013-05-22 23:21 - 00000000 ____D C:\Users\Justin\AppData\Local\PokerStars.EU
2014-01-10 17:43 - 2013-05-22 23:20 - 00000000 ____D C:\Program Files (x86)\PokerStars.EU
2014-01-10 17:42 - 2013-02-16 22:59 - 00000000 ____D C:\ProgramData\PMB Files
2014-01-10 17:39 - 2013-04-23 16:49 - 00000000 ____D C:\Users\Justin\AppData\Roaming\DVDVideoSoft
2014-01-10 17:38 - 2014-01-10 17:38 - 07761936 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost(1).exe
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Users\Justin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Should I Remove It
2014-01-10 17:36 - 2014-01-10 17:36 - 00000000 ____D C:\Program Files (x86)\Reason
2014-01-10 17:32 - 2014-01-10 17:32 - 07653600 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\installboost.exe
2014-01-10 17:29 - 2014-01-10 17:29 - 02184968 _____ (Reason Software Company Inc.) C:\Users\Justin\Downloads\ShouldIRemoveIt_Setup.exe
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\Documents\Razer
2014-01-10 17:21 - 2014-01-10 17:21 - 00000000 ____D C:\Users\Justin\AppData\Local\Razer_Inc
2014-01-10 17:17 - 2014-01-10 17:16 - 41363400 _____ (Razer Inc. ) C:\Users\Justin\Downloads\RazerGameBoosterSetup_4.1.59.0_1.exe
2014-01-10 15:38 - 2014-01-10 15:05 - 1579161641 _____ (InstallShield Software Corporation) C:\Users\Justin\Downloads\LastChaos_DE_Setup.exe
2014-01-10 01:42 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2014-01-09 21:16 - 2014-01-09 21:15 - 18101704 _____ (Adobe Systems Inc.) C:\Users\Justin\Downloads\AdobeAIRInstaller(1).exe
2014-01-09 15:19 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\Documents\YouCam
2014-01-09 05:15 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-09 02:26 - 2014-01-09 02:26 - 00000000 ____D C:\Users\Justin\Documents\Avatar
2014-01-09 02:24 - 2014-01-09 02:24 - 00000000 ____D C:\Users\Justin\AppData\Roaming\CyberLink
2014-01-09 02:22 - 2014-01-26 02:41 - 00002187 _____ C:\Users\Public\Desktop\CyberLink YouCam 6.lnk
2014-01-09 02:22 - 2014-01-09 02:22 - 00000000 ____D C:\Users\Justin\AppData\Local\CyberLink
2014-01-09 02:19 - 2014-01-09 02:19 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2014-01-09 02:19 - 2013-10-01 17:44 - 00000000 ____D C:\Program Files (x86)\CyberLink
2014-01-09 02:19 - 2012-09-25 00:54 - 00000000 ____D C:\ProgramData\install_clap
2014-01-09 02:19 - 2012-09-25 00:45 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-09 02:06 - 2014-01-26 02:41 - 00000878 _____ C:\Users\Justin\Desktop\CyberLink_60YouCam_Downloader(1).lnk
2014-01-09 02:06 - 2014-01-09 02:06 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(3).exe
2014-01-09 02:05 - 2014-01-09 02:05 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(2).exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader.exe
2014-01-09 02:04 - 2014-01-09 02:04 - 01029080 _____ (CyberLink) C:\Users\Justin\Downloads\CyberLink_60YouCam_Downloader(1).exe
2014-01-09 01:08 - 2013-12-27 07:25 - 00000000 ____D C:\WINDOWS\Minidump
2014-01-09 01:08 - 2013-12-26 08:56 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 12:43 - 2014-01-02 12:24 - 00023552 ___SH C:\Users\Justin\Documents\Thumbs.db
2014-01-03 14:50 - 2013-03-26 21:15 - 00207904 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-02 12:33 - 2014-01-02 12:33 - 00000000 ____D C:\Users\Justin\Documents\Benutzerdefinierte Office-Vorlagen
2014-01-02 12:32 - 2013-02-16 20:41 - 00000000 ____D C:\Users\Justin\AppData\Local\Packages
2013-12-29 21:59 - 2013-12-26 08:54 - 00000000 ____D C:\Windows.old
2013-12-29 21:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-12-29 14:59 - 2013-09-06 01:40 - 00000000 ____D C:\Users\Justin\Downloads\Überweisungen
2013-12-29 03:00 - 2013-06-19 19:03 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-12-29 03:00 - 2013-06-19 19:03 - 00000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2013-12-28 22:35 - 2013-12-28 22:35 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2013-12-28 22:35 - 2013-12-28 22:35 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2013-12-28 22:35 - 2013-12-28 22:35 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2013-12-28 08:38 - 2013-12-28 08:38 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-27 07:30 - 2013-02-16 20:51 - 00000000 ____D C:\Update
Files to move or delete:
====================
C:\ProgramData\bcrcvcpuesgvrfhynsk.bat
C:\ProgramData\bcrcvcpuesgvrfhynsk.reg
Some content of TEMP:
====================
C:\Users\Justin\AppData\Local\Temp\CPCShield_Setup.exe
C:\Users\Justin\AppData\Local\Temp\Quarantine.exe
C:\Users\Justin\AppData\Local\Temp\setup.exe
C:\Users\Justin\AppData\Local\Temp\SHSetup.exe
C:\Users\Justin\AppData\Local\Temp\Simon The Sorcerer 1__3038_i291673860_il4122852.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-26 10:36
==================== End Of Log ============================
|
|
27.01.2014, 08:38
| #7 |
| /// the machine /// TB-Ausbilder | Awesomehp.com Virus legt Internet lahm Rkill?? Bitte alle 3 Tools von oben nochmal. Du hast nie Löschen lassen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Awesomehp.com Virus legt Internet lahm |
| abgebrochen, anleitung, avast, awesomehp, awesomehp entfernen, awesomehp.com virus entfernen, datei, entfernen, google, lahm, neustart, nicht mehr, programme, pup.optional.installmonetizer, pup.optional.opencandy, pup.optional.skytech.a, spyhunter, spyhunter entfernen, startseite, trojaner board, update, verbindung, virsus, virus |
Linear-Darstellung
