| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bildschirm nach bootvorgang stark flackernd - Virus ?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
15.04.2014, 15:29
| #1 |
 |  Bildschirm nach bootvorgang stark flackernd - Virus ? Also ich habe einen win 7 Premium Rechner 32bit , habe da letztens malwarebite durchlaufen lassen, alles bereinigt . Danach war ich gestern bei bekannten , Computer an gelassen ich komme zurück und der Bildschirm Flackert , geht an aus , zieht streifen nach rechts & links , kann nichts machen , geschweige denn ein Symbol treffen um Mich anzumelden etc .. Da geht gar nichts .. Was tuen ? |
|
15.04.2014, 16:42
| #2 |
| /// the machine /// TB-Ausbilder    |  Bildschirm nach bootvorgang stark flackernd - Virus ? hi,
__________________laptop oder Desktop PC?
__________________ |
|
15.04.2014, 16:49
| #3 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ? Laptop , hab aber einen externen Bildschirm
__________________Angeschlossen um zu schauen ob die Graka noch ok Ist .. Gab die gleichen Probleme , hab den aber einmal Gestartet und es ging gut , jedenfalls sobald win 7 startet , der Fujitsu Siemens Bildschirm flackert nicht, ganz normal |
|
16.04.2014, 18:47
| #4 |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ? Also auch externe flackern, ab dem Moment wo Windows starten soll? Kannste beim Starten F8 drücken, als wenn Du in den Safe Mode willst? Wähle dort mal VGA Mode.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.04.2014, 20:38
| #5 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ? Also mein Vater hat es geschafft den einmal zu starten Ohne flackern , so vi Sei gesagt 100% Virus .. |
|
17.04.2014, 13:49
| #6 | |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ?Zitat:
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ --> Bildschirm nach bootvorgang stark flackernd - Virus ? |
|
17.04.2014, 14:17
| #7 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ?FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-04-2014
Ran by hristos (administrator) on HRISTOS-PC on 17-04-2014 15:13:18
Running from C:\Users\hristos\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Spotify Ltd) C:\Users\hristos\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google Inc.) C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
() C:\Program Files\Opera\20.0.1387.91\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
(Opera Software) C:\Program Files\Opera\20.0.1387.91\opera.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [update] => "C
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2009-11-19] ()
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [Spotify Web Helper] => C:\Users\hristos\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-12] (Spotify Ltd)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [Google Update] => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-08-13] (Google Inc.)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [DriverTurbo] => C:\Program Files\DriverTurbo\DriverTurbo.exe [7338144 2013-12-13] ()
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {75c6ea83-221a-11e2-b901-00266c5598ed} - F:\LGAutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63da2-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63db1-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63dbe-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {bc6ebb9b-e9a5-11e0-960a-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {bc6ebba9-e9a5-11e0-960a-00266c5598ed} - F:\AutoRun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://mystart.incredibar.com/mb201?a=6R8O908Ymp&i=26
SearchScopes: HKLM - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKLM - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6R8O908Ymp&i=26
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6R8O908Ymp&i=26
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: StumbleUpon - {DB616CFF-D989-48A8-9C85-E2A8D56AB2CA} - C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUpon.dll (StumbleUpon Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Plants%20vs.%20Zombies/Images/stg_drm.ocx
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Plants%20vs.%20Zombies/Images/armhelper.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hristos\AppData\Roaming\Mozilla\Firefox\Profiles\yufn37b9.default
FF user.js: detected! => C:\Users\hristos\AppData\Roaming\Mozilla\Firefox\Profiles\yufn37b9.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @gamersfirst.com/LiveLauncher - C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.5.1 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\hristos\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\hristos\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\hristos\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-01-12]
Chrome:
=======
CHR HomePage:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 7.0.0.147) - C:\Program Files\Java\jre7\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 7) - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\hristos\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Extension: (Stylish) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2013-06-10]
CHR Extension: (Google Wallet) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (iOS, iPad, iPhone & iPod Grey Texture) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\odgbpcbfijafedicgoagncajafompaok [2013-09-26]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-09-26]
CHR HKLM\...\Chrome\Extension: [jifflliplgeajjdhmkcfnngfpgbjonjg] - C:\Program Files\Perion\NewTab\newTab.crx [2012-12-13]
CHR HKLM\...\Chrome\Extension: [niogeckbkdcabhnapjbkeiklablhjoca] - C:\Program Files\Perion\ChromeInfoBar\ChromeInfoBar.crx [2012-12-13]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\...\Chrome\Extension: [pgifblbjgdjhcelbanblbhkhmbnnmhfg] - C:\Users\hristos\AppData\LocalLow\StumbleUpon\CHROME\StumbleUpon.crx [2011-11-22]
CHR StartMenuInternet: Google Chrome - C:\Users\hristos\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 cfWiMAXService; C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe [185712 2010-01-28] (TOSHIBA CORPORATION)
R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [46448 2009-03-10] (TOSHIBA CORPORATION)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2012-11-10] ()
R2 StumbleUponUpdater; C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe [18432 2011-11-22] ()
S3 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)
==================== Drivers (Whitelisted) ====================
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-15] (ATI Technologies Inc.)
S3 EuMusDesignVirtualAudioCableWdm; C:\Windows\System32\DRIVERS\vrtaucbl.sys [50728 2012-09-14] (Eugene V. Muzychenko)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R3 LGBusEnum; C:\Windows\System32\drivers\LGBusEnum.sys [19720 2009-11-24] (Logitech Inc.)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [39960 2013-05-30] (Logitech Inc.)
S3 LGVirHid; C:\Windows\System32\drivers\LGVirHid.sys [14856 2009-11-24] (Logitech Inc.)
S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [24064 2009-06-22] (TOSHIBA Corporation)
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2008-11-19] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [19968 2008-11-19] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [24832 2008-11-19] (LG Electronics Inc.)
S3 WinRing0_1_2_0; C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [14416 2010-11-01] (OpenLibSys.org)
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 XDva386; \??\C:\Windows\system32\XDva386.sys [X]
S3 XDva389; \??\C:\Windows\system32\XDva389.sys [X]
S3 XDva390; \??\C:\Windows\system32\XDva390.sys [X]
S3 XDva391; \??\C:\Windows\system32\XDva391.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-17 15:13 - 2014-04-17 15:13 - 00017272 _____ () C:\Users\hristos\Downloads\FRST.txt
2014-04-17 15:13 - 2014-04-17 15:13 - 00000000 ____D () C:\FRST
2014-04-17 15:12 - 2014-04-17 15:12 - 01146880 _____ (Farbar) C:\Users\hristos\Downloads\FRST.exe
2014-04-17 03:16 - 2014-04-17 03:16 - 00000000 _____ () C:\Windows\NDSTray.INI
2014-04-17 03:00 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-17 03:00 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-17 03:00 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-17 03:00 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-17 03:00 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-17 03:00 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-17 03:00 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-17 03:00 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-17 03:00 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-17 03:00 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-17 03:00 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-17 03:00 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-17 03:00 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-17 03:00 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-17 03:00 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-17 03:00 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-17 03:00 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-17 03:00 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-17 03:00 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-17 03:00 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-17 03:00 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-17 03:00 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-17 03:00 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-17 03:00 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-17 03:00 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-17 03:00 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-14 18:27 - 2014-04-17 03:17 - 00000616 _____ () C:\Windows\setupact.log
2014-04-14 18:27 - 2014-04-17 03:16 - 00001002 _____ () C:\Windows\PFRO.log
2014-04-14 18:27 - 2014-04-14 18:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-14 00:06 - 2014-04-14 00:15 - 00000000 ____D () C:\Users\hristos\Desktop\naked
2014-04-12 10:12 - 2014-04-12 10:13 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-11 16:51 - 2014-04-11 20:56 - 00000070 _____ () C:\Users\hristos\Desktop\stolen acc.txt
2014-04-11 09:11 - 2014-03-31 22:22 - 00000000 ____D () C:\Users\hristos\Desktop\Skrillex - Recess (2014)
2014-04-09 23:08 - 2014-04-09 23:08 - 00231952 _____ () C:\Users\hristos\Downloads\DriverTurboSetup.exe
2014-04-09 22:48 - 2014-04-09 23:15 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\DriverTurbo
2014-04-09 22:48 - 2014-04-09 23:09 - 00000961 _____ () C:\Users\Public\Desktop\DriverTurbo.lnk
2014-04-09 22:48 - 2014-04-09 23:09 - 00000000 ____D () C:\Program Files\DriverTurbo
2014-04-09 21:34 - 2014-04-09 21:43 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517115314.zip
2014-04-09 21:11 - 2014-04-09 21:25 - 00173651 _____ () C:\Users\hristos\Downloads\sound-20100517111051 (1).zip.opdownload
2014-04-09 20:48 - 2014-04-14 20:59 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-09 20:48 - 2014-04-09 20:48 - 00001020 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 20:47 - 2014-04-09 20:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-09 20:47 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-09 20:47 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-09 20:47 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-09 20:45 - 2014-04-09 21:46 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-09 20:44 - 2014-04-09 20:46 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\hristos\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-09 20:31 - 2014-04-09 20:43 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517111051.zip
2014-04-09 00:11 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 00:11 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 00:11 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 00:11 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 00:11 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 00:11 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-07 20:12 - 2014-04-07 20:12 - 00000000 ____D () C:\Users\hristos\Desktop\BoL Studio(Full Deal)
2014-04-07 20:12 - 2014-04-07 19:28 - 27055956 _____ () C:\Users\hristos\Desktop\BoL Studio(Full Deal).rar
2014-04-07 20:10 - 2014-04-12 11:59 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\BoL
2014-04-07 20:08 - 2014-04-07 20:09 - 06528512 _____ () C:\Users\hristos\Downloads\BoL.dll
2014-04-07 20:07 - 2014-04-07 20:08 - 01888256 _____ () C:\Users\hristos\Downloads\BoL Studio.exe
2014-04-07 19:26 - 2014-04-07 19:28 - 27055956 _____ () C:\Users\hristos\Downloads\BoL Studio(Full Deal).rar
2014-04-07 19:24 - 2014-04-07 19:24 - 06120184 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de.exe
2014-04-07 19:01 - 2014-04-07 20:09 - 00000000 ____D () C:\Users\hristos\Desktop\bol
2014-04-07 19:00 - 2014-04-07 19:01 - 10339653 _____ () C:\Users\hristos\Downloads\BoL Studio.rar
2014-04-02 20:18 - 2014-04-02 20:18 - 00000000 ____D () C:\Users\hristos\AppData\Local\{67FB84F9-A5F9-4DE4-9858-03BB4B5DC3B5}
2014-03-27 19:00 - 2014-03-27 19:01 - 00206928 _____ () C:\Users\hristos\Documents\cc_20140327_180054.reg
2014-03-20 16:48 - 2014-03-20 16:54 - 00000000 ____D () C:\Users\hristos\Documents\Strife
2014-03-20 16:48 - 2014-03-20 16:48 - 00001845 _____ () C:\Users\hristos\Desktop\Strife.lnk
2014-03-20 16:48 - 2014-03-20 16:48 - 00001845 _____ () C:\Users\Gast\Desktop\Strife.lnk
2014-03-20 16:48 - 2014-03-20 16:48 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Strife
2014-03-20 16:43 - 2014-03-20 16:54 - 00000000 ____D () C:\Program Files\Strife
2014-03-20 16:28 - 2014-03-20 16:28 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW
2014-03-20 16:28 - 2014-03-20 16:28 - 00000002 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-03-20 16:17 - 2014-03-20 16:38 - 1374637408 _____ () C:\Users\hristos\Downloads\StrifeClientWindows-0.0.1.12.exe
2014-03-19 21:25 - 2014-03-19 21:25 - 00001080 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-03-19 21:25 - 2014-03-19 21:25 - 00000000 ____D () C:\Program Files\TeamViewer
2014-03-19 21:24 - 2014-03-19 21:24 - 05852336 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de-ckc.exe
==================== One Month Modified Files and Folders =======
2014-04-17 15:13 - 2014-04-17 15:13 - 00017272 _____ () C:\Users\hristos\Downloads\FRST.txt
2014-04-17 15:13 - 2014-04-17 15:13 - 00000000 ____D () C:\FRST
2014-04-17 15:12 - 2014-04-17 15:12 - 01146880 _____ (Farbar) C:\Users\hristos\Downloads\FRST.exe
2014-04-17 15:11 - 2011-10-19 21:01 - 00001146 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job
2014-04-17 15:11 - 2011-08-13 02:29 - 01350730 _____ () C:\Windows\WindowsUpdate.log
2014-04-17 15:03 - 2011-10-15 22:26 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-17 14:44 - 2011-10-15 22:26 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-17 14:22 - 2011-08-13 12:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job
2014-04-17 03:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-04-17 03:32 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-17 03:32 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-17 03:22 - 2011-08-13 02:37 - 00006252 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-17 03:17 - 2014-04-14 18:27 - 00000616 _____ () C:\Windows\setupact.log
2014-04-17 03:17 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-17 03:16 - 2014-04-17 03:16 - 00000000 _____ () C:\Windows\NDSTray.INI
2014-04-17 03:16 - 2014-04-14 18:27 - 00001002 _____ () C:\Windows\PFRO.log
2014-04-17 03:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-04-17 00:11 - 2011-10-19 21:01 - 00001124 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job
2014-04-16 04:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-04-14 20:59 - 2014-04-09 20:48 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-14 18:59 - 2011-12-15 08:25 - 00116480 _____ () C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-14 18:27 - 2014-04-14 18:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-14 18:26 - 2011-08-13 12:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job
2014-04-14 00:40 - 2014-03-09 16:11 - 00000000 ____D () C:\Program Files\Steam
2014-04-14 00:40 - 2011-09-30 20:37 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\TS3Client
2014-04-14 00:15 - 2014-04-14 00:06 - 00000000 ____D () C:\Users\hristos\Desktop\naked
2014-04-13 23:57 - 2013-04-26 20:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-04-12 23:59 - 2012-05-08 18:07 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Spotify
2014-04-12 11:59 - 2014-04-07 20:10 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\BoL
2014-04-12 11:49 - 2012-05-08 18:11 - 00000000 ____D () C:\Users\hristos\AppData\Local\Spotify
2014-04-12 10:13 - 2014-04-12 10:12 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-11 20:56 - 2014-04-11 16:51 - 00000070 _____ () C:\Users\hristos\Desktop\stolen acc.txt
2014-04-09 23:15 - 2014-04-09 22:48 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\DriverTurbo
2014-04-09 23:09 - 2014-04-09 22:48 - 00000961 _____ () C:\Users\Public\Desktop\DriverTurbo.lnk
2014-04-09 23:09 - 2014-04-09 22:48 - 00000000 ____D () C:\Program Files\DriverTurbo
2014-04-09 23:08 - 2014-04-09 23:08 - 00231952 _____ () C:\Users\hristos\Downloads\DriverTurboSetup.exe
2014-04-09 21:47 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-04-09 21:46 - 2014-04-09 20:45 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-09 21:43 - 2014-04-09 21:34 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517115314.zip
2014-04-09 21:26 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-04-09 21:25 - 2014-04-09 21:11 - 00173651 _____ () C:\Users\hristos\Downloads\sound-20100517111051 (1).zip.opdownload
2014-04-09 20:48 - 2014-04-09 20:48 - 00001020 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 20:47 - 2014-04-09 20:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-09 20:47 - 2012-03-03 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-09 20:46 - 2014-04-09 20:44 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\hristos\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-09 20:43 - 2014-04-09 20:31 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517111051.zip
2014-04-09 18:06 - 2012-01-06 02:45 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Skype
2014-04-09 14:08 - 2013-07-30 16:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 14:05 - 2013-08-15 07:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 14:00 - 2012-03-08 18:03 - 88028728 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-07 20:12 - 2014-04-07 20:12 - 00000000 ____D () C:\Users\hristos\Desktop\BoL Studio(Full Deal)
2014-04-07 20:09 - 2014-04-07 20:08 - 06528512 _____ () C:\Users\hristos\Downloads\BoL.dll
2014-04-07 20:09 - 2014-04-07 19:01 - 00000000 ____D () C:\Users\hristos\Desktop\bol
2014-04-07 20:08 - 2014-04-07 20:07 - 01888256 _____ () C:\Users\hristos\Downloads\BoL Studio.exe
2014-04-07 19:28 - 2014-04-07 20:12 - 27055956 _____ () C:\Users\hristos\Desktop\BoL Studio(Full Deal).rar
2014-04-07 19:28 - 2014-04-07 19:26 - 27055956 _____ () C:\Users\hristos\Downloads\BoL Studio(Full Deal).rar
2014-04-07 19:24 - 2014-04-07 19:24 - 06120184 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de.exe
2014-04-07 19:01 - 2014-04-07 19:00 - 10339653 _____ () C:\Users\hristos\Downloads\BoL Studio.rar
2014-04-05 22:45 - 2014-03-12 15:53 - 00000000 ____D () C:\Program Files\Opera
2014-04-03 09:51 - 2014-04-09 20:47 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-09 20:47 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-09 20:47 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 03:01 - 2011-08-13 02:44 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-04-03 03:01 - 2011-08-13 02:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-04-02 20:18 - 2014-04-02 20:18 - 00000000 ____D () C:\Users\hristos\AppData\Local\{67FB84F9-A5F9-4DE4-9858-03BB4B5DC3B5}
2014-04-02 20:18 - 2011-10-20 21:47 - 00000000 ____D () C:\Users\hristos\AppData\Local\Windows Live
2014-03-31 22:22 - 2014-04-11 09:11 - 00000000 ____D () C:\Users\hristos\Desktop\Skrillex - Recess (2014)
2014-03-27 19:01 - 2014-03-27 19:00 - 00206928 _____ () C:\Users\hristos\Documents\cc_20140327_180054.reg
2014-03-27 19:00 - 2012-12-13 22:13 - 00116480 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-03-21 22:36 - 2013-10-07 16:27 - 00016400 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-03-20 22:19 - 2009-07-14 06:33 - 03794032 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-20 16:54 - 2014-03-20 16:48 - 00000000 ____D () C:\Users\hristos\Documents\Strife
2014-03-20 16:54 - 2014-03-20 16:43 - 00000000 ____D () C:\Program Files\Strife
2014-03-20 16:48 - 2014-03-20 16:48 - 00001845 _____ () C:\Users\hristos\Desktop\Strife.lnk
2014-03-20 16:48 - 2014-03-20 16:48 - 00001845 _____ () C:\Users\Gast\Desktop\Strife.lnk
2014-03-20 16:48 - 2014-03-20 16:48 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Strife
2014-03-20 16:38 - 2014-03-20 16:17 - 1374637408 _____ () C:\Users\hristos\Downloads\StrifeClientWindows-0.0.1.12.exe
2014-03-20 16:34 - 2012-12-28 00:04 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Ventrilo
2014-03-20 16:30 - 2013-08-08 10:23 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-03-20 16:30 - 2013-08-08 10:22 - 00000000 ____D () C:\Program Files\Hi-Rez Studios
2014-03-20 16:30 - 2011-08-13 03:51 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-20 16:28 - 2014-03-20 16:28 - 00000003 _____ () C:\Windows\system32\HRUPPROG.DIE.NOW
2014-03-20 16:28 - 2014-03-20 16:28 - 00000002 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-03-20 16:26 - 2011-08-13 03:26 - 00000000 ____D () C:\Windows\Panther
2014-03-19 21:25 - 2014-03-19 21:25 - 00001080 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-03-19 21:25 - 2014-03-19 21:25 - 00000000 ____D () C:\Program Files\TeamViewer
2014-03-19 21:25 - 2011-11-11 19:32 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\TeamViewer
2014-03-19 21:24 - 2014-03-19 21:24 - 05852336 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de-ckc.exe
Files to move or delete:
====================
C:\Users\hristos\Setup.bat
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-09 18:57
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-04-2014
Ran by hristos at 2014-04-17 15:14:09
Running from C:\Users\hristos\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
adf-soft´s Screenshot 3.0.1 (HKLM\...\adf-soft´s Screenshot) (Version: 3.0.1 - adf-soft)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe AIR (Version: 2.7.1.19610 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.3 - Adobe Systems Incorporated)
Adobe Download Assistant (Version: 1.0.3 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.3.183.10 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.27 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{97C005D5-317A-9DEB-8558-29A73B22FC17}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0315.1050.17562 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2010.0315.1050.17562 - ATI) Hidden
CCC Help Chinese Standard (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Czech (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Danish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Dutch (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help English (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Finnish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help French (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help German (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Greek (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Hungarian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Italian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Japanese (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Korean (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Norwegian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Polish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Portuguese (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Russian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Spanish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Swedish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Thai (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Turkish (Version: 2010.0315.1049.17562 - ATI) Hidden
ccc-core-static (Version: 2010.0315.1050.17562 - Ihr Firmenname) Hidden
ccc-utility (Version: 2010.0315.1050.17562 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
CINEMA 4D 11.514 (HKLM\...\MAXONB6EC381C) (Version: 11.514 - MAXON Computer GmbH)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.111.0.64 - Conexant)
Curse (HKLM\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.6.1.5 - DivX, LLC)
DriverTurbo (HKLM\...\DriverTurbo) (Version: 3.2.0 - DeskToolsSoft)
erLT (Version: 1.20.0137 - Logitech, Inc.) Hidden
Facebook Video Calling 2.0.0.447 (HKLM\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Game Booster 3 (HKLM\...\Game Booster_is1) (Version: 3.4 - IObit)
Google Chrome (HKCU\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java Auto Updater (Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216026FF}) (Version: 6.0.260 - Oracle)
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005FF}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LG USB Modem Drivers (HKLM\...\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}) (Version: 4.9.4 - LG Electronics)
Logitech Gaming Software 8.50 (HKLM\...\Logitech Gaming Software) (Version: 8.50.281 - Logitech Inc.)
Logitech SetPoint 5.20 (HKLM\...\{D3120436-1358-4253-9EB2-257FFE8CE1D9}) (Version: 5.20 - Logitech)
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nero 7 Demo (HKLM\...\{1A1BEE58-8EA1-772E-10DF-97C19C5F1031}) (Version: 7.00.2739 - Nero AG)
Nero BurnRights (HKLM\...\Nero BurnRights!UninstallKey) (Version: - )
NET Render Client 11.514 (HKLM\...\MAXONF02E79F8) (Version: 11.514 - MAXON Computer GmbH)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Opera Stable 20.0.1387.91 (HKLM\...\Opera 20.0.1387.91) (Version: 20.0.1387.91 - Opera Software ASA)
Oxygen Forensic Suite 2011 (HKLM\...\{453AD884-9DD6-4FC0-8BD7-C5F1CA75FF36}_is1) (Version: 3.5.0 - Oxygen Software)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Polipo 1.0.4.1 (HKLM\...\Polipo) (Version: - )
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.52.1 - PS3 Media Server)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
ROCCAT Power-Grid Version 0.459 (HKLM\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.459 - ROCCAT GmbH)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.8.8855 - Skype Technologies S.A.)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Strife (HKLM\...\strife) (Version: 0.0.1 - S2 Games)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer)
Tor 0.2.2.33 (HKLM\...\Tor) (Version: - )
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.13 - TOSHIBA CORPORATION)
TOSHIBA Bulletin Board (HKLM\...\InstallShield_{B2FB7DBA-CEEC-41F1-BC23-3323D96290F6}) (Version: 1.6.07.32 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 1.6.07.32 - TOSHIBA Corporation) Hidden
TOSHIBA ConfigFree (HKLM\...\{607BE7BF-7C28-4ADB-A4A0-385962B901C3}) (Version: 8.0.28 - TOSHIBA Corporation)
TOSHIBA DVD PLAYER (HKLM\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 3.01.2.05-A - TOSHIBA Corporation)
TOSHIBA Hardware Setup (HKLM\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.06 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.6 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.0.6 - TOSHIBA Corporation) Hidden
TOSHIBA ReelTime (HKLM\...\InstallShield_{B894522E-C079-4DC8-A305-30BA6E2F4459}) (Version: 1.6.06.32 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.6.06.32 - TOSHIBA Corporation) Hidden
TOSHIBA Supervisor Password (HKLM\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.03 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (HKLM\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9B1DEEA3-B4ED-49F0-9EF7-4A820EEEA7F1}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
User's Guides (HKLM\...\{B48E1FFD-A85D-45DB-9070-C06CDF6BD427}) (Version: 1.20.0000 - Logitech)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client (HKLM\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Vidalia 0.2.14 (HKLM\...\Vidalia) (Version: - )
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Mobile-Gerätecenter (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR 4.01 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Yahoo! Detect (HKLM\...\YTdetect) (Version: - )
==================== Restore Points =========================
12-04-2014 23:45:37 Windows Update
17-04-2014 01:28:23 Windows Update
==================== Hosts content: ==========================
2011-10-30 00:34 - 2014-04-07 20:34 - 00002384 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
0.0.0.0 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
There are 31 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {293F1EAB-1F1F-48FE-894F-23666F5E951B} - System32\Tasks\Run LSI => C:\Program Files\LSI\LolSummonerInfo.exe
Task: {46569F58-F211-4AAD-A906-3E246D5CC5E8} - System32\Tasks\AdobeAAMUpdater-1.0-hristos-PC-hristos => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {56E97193-A9ED-40CD-8643-78857192DBA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {6B6EFC8C-AA2B-4C6A-9B82-CC7EB955807E} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {76A3A888-2F85-4633-91B3-1299FE75A15F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15] (Google Inc.)
Task: {AA89F246-8FDC-46D0-B2F7-335099CB4BE0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-13] (Google Inc.)
Task: {B0505E6D-0D0F-48FF-936F-CECFD064E3AF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-13] (Google Inc.)
Task: {C802E65C-FA16-4029-AB2C-1C8B6E7E8D54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15] (Google Inc.)
Task: {E6D6CD35-B55D-47C2-AAE9-4B869E6E31C2} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [2010-02-22] (TOSHIBA CORPORATION)
Task: {F2C55A19-7910-4913-A554-C097F83DE7C2} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe [2013-08-11] ()
Task: {FB4E4747-9334-431F-A07B-ECA927C57767} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {FE44BD18-EF73-498B-80FF-DD5D1773F17A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-09-19 13:05 - 2012-11-10 15:03 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2011-11-22 10:59 - 2011-11-22 10:59 - 00018432 _____ () C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2014-04-05 22:45 - 2014-04-02 13:19 - 01380704 _____ () C:\Program Files\Opera\20.0.1387.91\opera_crashreporter.exe
2014-04-05 22:45 - 2014-04-02 13:19 - 00908640 _____ () C:\Program Files\Opera\20.0.1387.91\libglesv2.dll
2014-04-05 22:45 - 2014-04-02 13:19 - 00108896 _____ () C:\Program Files\Opera\20.0.1387.91\libegl.dll
2014-04-05 22:45 - 2014-04-02 13:19 - 00895328 _____ () C:\Program Files\Opera\20.0.1387.91\ffmpegsumo.dll
2013-11-07 21:30 - 2013-11-07 21:30 - 16233864 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:196FC0A6
AlternateDataStreams: C:\ProgramData\TEMP:7D6EC5BE
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamersFirst LIVE!.lnk => C:\Windows\pss\GamersFirst LIVE!.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SetPointII.lnk => C:\Windows\pss\SetPointII.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^hristos^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupfolder: C:^Users^hristos^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk => C:\Windows\pss\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: Facebook Update => "C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Kernel and Hardware Abstraction Layer => KHALMNPR.EXE
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: LSI => C:\Program Files\LSI\LolSummonerInfo.exe
MSCONFIG\startupreg: NeroFilterCheck => C:\Windows\system32\NeroCheck.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SmartFaceVWatcher => %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
MSCONFIG\startupreg: Spotify => "C:\Users\hristos\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\hristos\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TosNC => %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
MSCONFIG\startupreg: TosReelTimeMonitor => %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
MSCONFIG\startupreg: TosSENotify => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
MSCONFIG\startupreg: TWebCamera => "C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/17/2014 03:00:14 AM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\servicing\TrustedInstaller.exe; Beschreibung = Windows Modules Installer; Fehler = 0x8007043c).
Error: (04/17/2014 03:00:12 AM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x8007043c).
Error: (04/16/2014 10:41:04 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Starten des Softwareschutzdiensts. 0x80070002
6.1.7601.17514
Error: (04/16/2014 10:35:19 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (04/16/2014 10:35:19 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/16/2014 10:35:18 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/16/2014 10:34:41 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Starten des Softwareschutzdiensts. 0x80070002
6.1.7601.17514
System errors:
=============
Error: (04/16/2014 10:41:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:41:04 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.169.2593.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.5.0216.00
Quellpfad: 4.5.0216.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (04/16/2014 10:34:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:03 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070057
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0xc00d36b0
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070057
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0xc00d36b0
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 34%
Total physical RAM: 3578.9 MB
Available physical RAM: 2336.14 MB
Total Pagefile: 7156.09 MB
Available Pagefile: 5790.05 MB
Total Virtual: 2047.88 MB
Available Virtual: 1892.67 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:174.19 GB) (Free:29.21 GB) NTFS
Drive d: () (Fixed) (Total:58.59 GB) (Free:26.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 88C5C523)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=174 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
==================== End Of Log ============================
ich bin weiß gott kein spezialist , aber google & facebook updater als prozess haben mir schon sorgen gemacht .. |
|
18.04.2014, 14:53
| #8 |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ? da is en bissl adware, aber was für dich schlimmer is: zuerst wird mal das gecrackte Adobe gelöscht bevor es hier irgend nen support gibt.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
18.04.2014, 14:56
| #9 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ? wird gemacht  Und die adware setzt meinem Computer so zu ...? |
|
19.04.2014, 09:33
| #10 |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ? unwarscheinlich, deswegen halte ich ja die Wette 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.04.2014, 16:19
| #11 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ? Okay und was mache ich jetzt *cry* Und was soll ich jetzt machen c *cry*  |
|
20.04.2014, 17:59
| #12 |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ? Adobe gelöscht? Dann bitte FRST öffnen, Haken setzen bei Additional und scanne, poste bitte beide Logfiles.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.04.2014, 18:02
| #13 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ? Mach ich , Sekunde -- gelöscht = Uninstall? |
|
20.04.2014, 18:43
| #14 |
| /// the machine /// TB-Ausbilder | Bildschirm nach bootvorgang stark flackernd - Virus ? genau, adobe deinstallieren, und am Besten auch alles andere, was evtl gecrackt ist, sollte da noch was sein. Nur als Hinweis, denn finde ich noch was gecracktes auf der Kiste ist der Support eingestellt.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.04.2014, 19:44
| #15 |
| | Bildschirm nach bootvorgang stark flackernd - Virus ?Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-04-2014 01
Ran by hristos at 2014-04-20 20:29:44
Running from C:\Users\hristos\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe AIR (Version: 2.7.1.19610 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Download Assistant (HKLM\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.3 - Adobe Systems Incorporated)
Adobe Download Assistant (Version: 1.0.3 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.3.183.10 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.9) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.27 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{97C005D5-317A-9DEB-8558-29A73B22FC17}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2010.0315.1050.17562 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0315.1050.17562 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2010.0315.1050.17562 - ATI) Hidden
CCC Help Chinese Standard (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Czech (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Danish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Dutch (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help English (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Finnish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help French (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help German (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Greek (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Hungarian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Italian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Japanese (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Korean (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Norwegian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Polish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Portuguese (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Russian (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Spanish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Swedish (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Thai (Version: 2010.0315.1049.17562 - ATI) Hidden
CCC Help Turkish (Version: 2010.0315.1049.17562 - ATI) Hidden
ccc-core-static (Version: 2010.0315.1050.17562 - Ihr Firmenname) Hidden
ccc-utility (Version: 2010.0315.1050.17562 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.04 - Piriform)
Curse (HKLM\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.6.1.5 - DivX, LLC)
erLT (Version: 1.20.0137 - Logitech, Inc.) Hidden
Facebook Video Calling 2.0.0.447 (HKLM\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Game Booster 3 (HKLM\...\Game Booster_is1) (Version: 3.4 - IObit)
Google Chrome (HKCU\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java Auto Updater (Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 26 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216026FF}) (Version: 6.0.260 - Oracle)
Java(TM) 7 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217005FF}) (Version: 7.0.50 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
League of Legends (HKLM\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LG USB Modem Drivers (HKLM\...\{E1640DA5-89B4-4F52-B15D-5DA3D14F29D4}) (Version: 4.9.4 - LG Electronics)
Logitech Gaming Software 8.50 (HKLM\...\Logitech Gaming Software) (Version: 8.50.281 - Logitech Inc.)
Logitech SetPoint 5.20 (HKLM\...\{D3120436-1358-4253-9EB2-257FFE8CE1D9}) (Version: 5.20 - Logitech)
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nero 7 Demo (HKLM\...\{1A1BEE58-8EA1-772E-10DF-97C19C5F1031}) (Version: 7.00.2739 - Nero AG)
Nero BurnRights (HKLM\...\Nero BurnRights!UninstallKey) (Version: - )
NET Render Client 11.514 (HKLM\...\MAXONF02E79F8) (Version: 11.514 - MAXON Computer GmbH)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Opera Stable 20.0.1387.91 (HKLM\...\Opera 20.0.1387.91) (Version: 20.0.1387.91 - Opera Software ASA)
Oxygen Forensic Suite 2011 (HKLM\...\{453AD884-9DD6-4FC0-8BD7-C5F1CA75FF36}_is1) (Version: 3.5.0 - Oxygen Software)
Polipo 1.0.4.1 (HKLM\...\Polipo) (Version: - )
PS3 Media Server (HKLM\...\PS3 Media Server) (Version: 1.52.1 - PS3 Media Server)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
ROCCAT Power-Grid Version 0.459 (HKLM\...\{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1) (Version: 0.459 - ROCCAT GmbH)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.8.8855 - Skype Technologies S.A.)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
Strife (HKLM\...\strife) (Version: 0.0.1 - S2 Games)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer)
Tor 0.2.2.33 (HKLM\...\Tor) (Version: - )
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.13 - TOSHIBA CORPORATION)
TOSHIBA Bulletin Board (HKLM\...\InstallShield_{B2FB7DBA-CEEC-41F1-BC23-3323D96290F6}) (Version: 1.6.07.32 - TOSHIBA Corporation)
TOSHIBA Bulletin Board (Version: 1.6.07.32 - TOSHIBA Corporation) Hidden
TOSHIBA ConfigFree (HKLM\...\{607BE7BF-7C28-4ADB-A4A0-385962B901C3}) (Version: 8.0.28 - TOSHIBA Corporation)
TOSHIBA DVD PLAYER (HKLM\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 3.01.2.05-A - TOSHIBA Corporation)
TOSHIBA Hardware Setup (HKLM\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.06 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.6 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.0.6 - TOSHIBA Corporation) Hidden
TOSHIBA ReelTime (HKLM\...\InstallShield_{B894522E-C079-4DC8-A305-30BA6E2F4459}) (Version: 1.6.06.32 - TOSHIBA Corporation)
TOSHIBA ReelTime (Version: 1.6.06.32 - TOSHIBA Corporation) Hidden
TOSHIBA Supervisor Password (HKLM\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.03 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (HKLM\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9B1DEEA3-B4ED-49F0-9EF7-4A820EEEA7F1}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
User's Guides (HKLM\...\{B48E1FFD-A85D-45DB-9070-C06CDF6BD427}) (Version: 1.20.0000 - Logitech)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client (HKLM\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Vidalia 0.2.14 (HKLM\...\Vidalia) (Version: - )
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Mobile-Gerätecenter (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR 4.01 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Yahoo! Detect (HKLM\...\YTdetect) (Version: - )
==================== Restore Points =========================
12-04-2014 23:45:37 Windows Update
17-04-2014 01:28:23 Windows Update
20-04-2014 18:06:56 Removed Google Earth.
20-04-2014 18:11:10 Removed Nero 7 Demo
==================== Hosts content: ==========================
2011-10-30 00:34 - 2014-04-07 20:34 - 00002384 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
0.0.0.0 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
There are 31 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {293F1EAB-1F1F-48FE-894F-23666F5E951B} - System32\Tasks\Run LSI => C:\Program Files\LSI\LolSummonerInfo.exe
Task: {46569F58-F211-4AAD-A906-3E246D5CC5E8} - System32\Tasks\AdobeAAMUpdater-1.0-hristos-PC-hristos => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {56E97193-A9ED-40CD-8643-78857192DBA6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {6B6EFC8C-AA2B-4C6A-9B82-CC7EB955807E} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {76A3A888-2F85-4633-91B3-1299FE75A15F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15] (Google Inc.)
Task: {AA89F246-8FDC-46D0-B2F7-335099CB4BE0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-13] (Google Inc.)
Task: {B0505E6D-0D0F-48FF-936F-CECFD064E3AF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-13] (Google Inc.)
Task: {C802E65C-FA16-4029-AB2C-1C8B6E7E8D54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15] (Google Inc.)
Task: {E6D6CD35-B55D-47C2-AAE9-4B869E6E31C2} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [2010-02-22] (TOSHIBA CORPORATION)
Task: {F2C55A19-7910-4913-A554-C097F83DE7C2} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files\IObit\Game Booster 3\AutoUpdate.exe [2013-08-11] ()
Task: {FB4E4747-9334-431F-A07B-ECA927C57767} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {FE44BD18-EF73-498B-80FF-DD5D1773F17A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job => C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-09-19 13:05 - 2012-11-10 15:03 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2011-11-22 10:59 - 2011-11-22 10:59 - 00018432 _____ () C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
2011-08-16 19:09 - 2011-05-28 22:04 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll
2013-09-14 02:51 - 2013-09-14 02:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 02:50 - 2013-09-14 02:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2012-10-26 21:51 - 2011-10-29 15:40 - 01294336 _____ () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2012-10-26 18:01 - 2014-03-29 18:26 - 05329400 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\LoLLauncher.exe
2013-09-04 16:41 - 2014-03-29 18:26 - 00264696 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\RiotLauncher.dll
2014-03-18 18:28 - 2014-03-18 18:28 - 00074752 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.80\deploy\LolClient.exe
2014-03-15 15:39 - 2014-03-15 15:39 - 00148480 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-03-15 15:39 - 2014-03-15 15:39 - 00864768 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-03-15 15:39 - 2014-03-15 15:39 - 00677376 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2011-08-24 11:26 - 2014-03-15 15:39 - 00092104 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2011-08-24 11:26 - 2014-03-15 15:39 - 00105416 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-03-15 15:39 - 2014-03-15 15:39 - 00025600 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-03-15 15:39 - 2014-03-15 15:39 - 00242688 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2011-08-24 11:26 - 2014-03-15 15:39 - 00117704 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\appscanner_plugin.dll
2011-08-24 11:26 - 2014-03-15 15:39 - 00477128 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-11-07 18:42 - 2014-03-15 15:39 - 00483784 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-03-15 15:39 - 2014-03-15 15:39 - 00123904 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:196FC0A6
AlternateDataStreams: C:\ProgramData\TEMP:7D6EC5BE
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamersFirst LIVE!.lnk => C:\Windows\pss\GamersFirst LIVE!.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SetPointII.lnk => C:\Windows\pss\SetPointII.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^hristos^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupfolder: C:^Users^hristos^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk => C:\Windows\pss\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: Facebook Update => "C:\Users\hristos\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iCloudServices => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Kernel and Hardware Abstraction Layer => KHALMNPR.EXE
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: LSI => C:\Program Files\LSI\LolSummonerInfo.exe
MSCONFIG\startupreg: NeroFilterCheck => C:\Windows\system32\NeroCheck.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SmartFaceVWatcher => %ProgramFiles%\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
MSCONFIG\startupreg: Spotify => "C:\Users\hristos\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\hristos\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TosNC => %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
MSCONFIG\startupreg: TosReelTimeMonitor => %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
MSCONFIG\startupreg: TosSENotify => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
MSCONFIG\startupreg: TWebCamera => "C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/20/2014 05:51:52 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (04/20/2014 05:51:52 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/20/2014 05:51:52 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/17/2014 03:22:05 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (04/17/2014 03:00:14 AM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\servicing\TrustedInstaller.exe; Beschreibung = Windows Modules Installer; Fehler = 0x8007043c).
Error: (04/17/2014 03:00:12 AM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x8007043c).
Error: (04/16/2014 10:41:04 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Starten des Softwareschutzdiensts. 0x80070002
6.1.7601.17514
Error: (04/16/2014 10:35:19 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
System errors:
=============
Error: (04/20/2014 05:45:45 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 20.04.2014 um 17:43:20 unerwartet heruntergefahren.
Error: (04/16/2014 10:41:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:41:04 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.169.2593.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.5.0216.00
Quellpfad: 4.5.0216.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (04/16/2014 10:34:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:03 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:34:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde mit folgendem Fehler beendet:
%%2
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070057
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0xc00d36b0
Error: (04/16/2014 10:32:57 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070057
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 53%
Total physical RAM: 3578.9 MB
Available physical RAM: 1673.95 MB
Total Pagefile: 7156.09 MB
Available Pagefile: 5182.22 MB
Total Virtual: 2047.88 MB
Available Virtual: 1924.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:174.19 GB) (Free:32 GB) NTFS
Drive d: () (Fixed) (Total:58.59 GB) (Free:26.19 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 88C5C523)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=174 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=59 GB) - (Type=07 NTFS)
==================== End Of Log ======================
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2014 01
Ran by hristos (administrator) on HRISTOS-PC on 20-04-2014 20:28:24
Running from C:\Users\hristos\Desktop
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.205\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.80\deploy\LolClient.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [update] => "C
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [Spotify Web Helper] => C:\Users\hristos\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-12] (Spotify Ltd)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [Google Update] => C:\Users\hristos\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-08-13] (Google Inc.)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\Run: [DriverTurbo] => C:\Program Files\DriverTurbo\DriverTurbo.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {75c6ea83-221a-11e2-b901-00266c5598ed} - F:\LGAutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63da2-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63db1-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {a6d63dbe-e530-11e0-9486-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {bc6ebb9b-e9a5-11e0-960a-00266c5598ed} - F:\AutoRun.exe
HKU\S-1-5-21-109183035-3835306969-3137161351-1000\...\MountPoints2: {bc6ebba9-e9a5-11e0-960a-00266c5598ed} - F:\AutoRun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://mystart.incredibar.com/mb201?a=6R8O908Ymp&i=26
SearchScopes: HKLM - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKLM - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6R8O908Ymp&i=26
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb201/?search={searchTerms}&loc=IB_DS&a=6R8O908Ymp&i=26
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: StumbleUpon - {DB616CFF-D989-48A8-9C85-E2A8D56AB2CA} - C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUpon.dll (StumbleUpon Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Plants%20vs.%20Zombies/Images/stg_drm.ocx
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Plants%20vs.%20Zombies/Images/armhelper.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\hristos\AppData\Roaming\Mozilla\Firefox\Profiles\yufn37b9.default
FF user.js: detected! => C:\Users\hristos\AppData\Roaming\Mozilla\Firefox\Profiles\yufn37b9.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @gamersfirst.com/LiveLauncher - C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll No File
FF Plugin: @java.com/DTPlugin,version=10.5.1 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\hristos\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\hristos\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\hristos\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-01-12]
Chrome:
=======
CHR HomePage:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\hristos\AppData\Local\Google\Chrome\Application\34.0.1847.116\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 7.0.0.147) - C:\Program Files\Java\jre7\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 7) - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\hristos\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CHR Extension: (Stylish) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2013-06-10]
CHR Extension: (Google Wallet) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (iOS, iPad, iPhone & iPod Grey Texture) - C:\Users\hristos\AppData\Local\Google\Chrome\User Data\Default\Extensions\odgbpcbfijafedicgoagncajafompaok [2013-09-26]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx [2013-09-26]
CHR HKLM\...\Chrome\Extension: [jifflliplgeajjdhmkcfnngfpgbjonjg] - C:\Program Files\Perion\NewTab\newTab.crx [2012-12-13]
CHR HKLM\...\Chrome\Extension: [niogeckbkdcabhnapjbkeiklablhjoca] - C:\Program Files\Perion\ChromeInfoBar\ChromeInfoBar.crx [2012-12-13]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\...\Chrome\Extension: [pgifblbjgdjhcelbanblbhkhmbnnmhfg] - C:\Users\hristos\AppData\LocalLow\StumbleUpon\CHROME\StumbleUpon.crx [2011-11-22]
CHR StartMenuInternet: Google Chrome - C:\Users\hristos\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 cfWiMAXService; C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe [185712 2010-01-28] (TOSHIBA CORPORATION)
R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [46448 2009-03-10] (TOSHIBA CORPORATION)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2012-11-10] ()
R2 StumbleUponUpdater; C:\Users\hristos\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe [18432 2011-11-22] ()
S3 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)
==================== Drivers (Whitelisted) ====================
R3 amdkmdag; C:\Windows\System32\DRIVERS\atipmdag.sys [5340160 2010-03-15] (ATI Technologies Inc.)
S3 EuMusDesignVirtualAudioCableWdm; C:\Windows\System32\DRIVERS\vrtaucbl.sys [50728 2012-09-14] (Eugene V. Muzychenko)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R3 LGBusEnum; C:\Windows\System32\drivers\LGBusEnum.sys [19720 2009-11-24] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [39960 2013-05-30] (Logitech Inc.)
S3 LGVirHid; C:\Windows\System32\drivers\LGVirHid.sys [14856 2009-11-24] (Logitech Inc.)
S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [24064 2009-06-22] (TOSHIBA Corporation)
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2008-11-19] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [19968 2008-11-19] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [24832 2008-11-19] (LG Electronics Inc.)
S3 WinRing0_1_2_0; C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [14416 2010-11-01] (OpenLibSys.org)
R4 CnxtHdAudService; system32\drivers\CHDRT32.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 XDva386; \??\C:\Windows\system32\XDva386.sys [X]
S3 XDva389; \??\C:\Windows\system32\XDva389.sys [X]
S3 XDva390; \??\C:\Windows\system32\XDva390.sys [X]
S3 XDva391; \??\C:\Windows\system32\XDva391.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-20 20:28 - 2014-04-20 20:28 - 00016913 _____ () C:\Users\hristos\Desktop\FRST.txt
2014-04-20 20:28 - 2014-04-20 20:28 - 00000000 ____D () C:\Users\hristos\Desktop\FRST-OlderVersion
2014-04-20 18:15 - 2014-04-20 18:15 - 00000000 ____D () C:\Users\hristos\AppData\Local\BoLUpdater
2014-04-17 15:14 - 2014-04-17 15:14 - 00035700 _____ () C:\Users\hristos\Downloads\Addition.txt
2014-04-17 15:13 - 2014-04-20 20:28 - 00000000 ____D () C:\FRST
2014-04-17 15:13 - 2014-04-17 15:14 - 00035488 _____ () C:\Users\hristos\Downloads\FRST.txt
2014-04-17 15:12 - 2014-04-20 20:28 - 01043968 _____ (Farbar) C:\Users\hristos\Desktop\FRST.exe
2014-04-17 03:16 - 2014-04-17 03:16 - 00000000 _____ () C:\Windows\NDSTray.INI
2014-04-17 03:00 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-17 03:00 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-17 03:00 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-17 03:00 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-17 03:00 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-17 03:00 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-17 03:00 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-17 03:00 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-17 03:00 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-17 03:00 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-17 03:00 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-17 03:00 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-17 03:00 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-17 03:00 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-17 03:00 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-17 03:00 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-17 03:00 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-17 03:00 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-17 03:00 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-17 03:00 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-17 03:00 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-17 03:00 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-17 03:00 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-17 03:00 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-17 03:00 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-17 03:00 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-14 18:27 - 2014-04-20 17:45 - 00001346 _____ () C:\Windows\PFRO.log
2014-04-14 18:27 - 2014-04-20 17:45 - 00000672 _____ () C:\Windows\setupact.log
2014-04-14 18:27 - 2014-04-14 18:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-14 00:06 - 2014-04-14 00:15 - 00000000 ____D () C:\Users\hristos\Desktop\naked
2014-04-12 10:12 - 2014-04-12 10:13 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-11 16:51 - 2014-04-11 20:56 - 00000070 _____ () C:\Users\hristos\Desktop\stolen acc.txt
2014-04-11 09:11 - 2014-03-31 22:22 - 00000000 ____D () C:\Users\hristos\Desktop\Skrillex - Recess (2014)
2014-04-09 23:08 - 2014-04-09 23:08 - 00231952 _____ () C:\Users\hristos\Downloads\DriverTurboSetup.exe
2014-04-09 22:48 - 2014-04-17 20:31 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\DriverTurbo
2014-04-09 21:34 - 2014-04-09 21:43 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517115314.zip
2014-04-09 21:11 - 2014-04-09 21:25 - 00173651 _____ () C:\Users\hristos\Downloads\sound-20100517111051 (1).zip.opdownload
2014-04-09 20:48 - 2014-04-14 20:59 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-09 20:48 - 2014-04-09 20:48 - 00001020 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 20:47 - 2014-04-09 20:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-09 20:47 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-09 20:47 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-09 20:47 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-09 20:45 - 2014-04-20 20:05 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-09 20:44 - 2014-04-09 20:46 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\hristos\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-09 20:31 - 2014-04-09 20:43 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517111051.zip
2014-04-09 00:11 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 00:11 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 00:11 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 00:11 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 00:11 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 00:11 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-07 20:12 - 2014-04-07 20:12 - 00000000 ____D () C:\Users\hristos\Desktop\BoL Studio(Full Deal)
2014-04-07 20:12 - 2014-04-07 19:28 - 27055956 _____ () C:\Users\hristos\Desktop\BoL Studio(Full Deal).rar
2014-04-07 20:10 - 2014-04-20 19:05 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\BoL
2014-04-07 20:08 - 2014-04-07 20:09 - 06528512 _____ () C:\Users\hristos\Downloads\BoL.dll
2014-04-07 20:07 - 2014-04-07 20:08 - 01888256 _____ () C:\Users\hristos\Downloads\BoL Studio.exe
2014-04-07 19:26 - 2014-04-07 19:28 - 27055956 _____ () C:\Users\hristos\Downloads\BoL Studio(Full Deal).rar
2014-04-07 19:24 - 2014-04-07 19:24 - 06120184 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de.exe
2014-04-07 19:01 - 2014-04-07 20:09 - 00000000 ____D () C:\Users\hristos\Desktop\bol
2014-04-07 19:00 - 2014-04-07 19:01 - 10339653 _____ () C:\Users\hristos\Downloads\BoL Studio.rar
2014-04-02 20:18 - 2014-04-02 20:18 - 00000000 ____D () C:\Users\hristos\AppData\Local\{67FB84F9-A5F9-4DE4-9858-03BB4B5DC3B5}
2014-03-27 19:00 - 2014-03-27 19:01 - 00206928 _____ () C:\Users\hristos\Documents\cc_20140327_180054.reg
==================== One Month Modified Files and Folders =======
2014-04-20 20:28 - 2014-04-20 20:28 - 00016913 _____ () C:\Users\hristos\Desktop\FRST.txt
2014-04-20 20:28 - 2014-04-20 20:28 - 00000000 ____D () C:\Users\hristos\Desktop\FRST-OlderVersion
2014-04-20 20:28 - 2014-04-17 15:13 - 00000000 ____D () C:\FRST
2014-04-20 20:28 - 2014-04-17 15:12 - 01043968 _____ (Farbar) C:\Users\hristos\Desktop\FRST.exe
2014-04-20 20:22 - 2011-08-13 12:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job
2014-04-20 20:10 - 2011-10-21 20:45 - 00000000 ____D () C:\Program Files\adf-soft´s Screenshot
2014-04-20 20:09 - 2011-10-15 22:26 - 00000000 ____D () C:\Program Files\Google
2014-04-20 20:06 - 2011-09-04 10:25 - 00000000 ____D () C:\Program Files\MAXON
2014-04-20 20:05 - 2014-04-09 20:45 - 00000000 ____D () C:\Program Files\CONEXANT
2014-04-20 20:05 - 2011-09-04 10:23 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\MAXON
2014-04-20 20:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-04-20 20:03 - 2011-10-15 22:26 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-20 20:02 - 2011-08-13 15:49 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-04-20 20:02 - 2011-08-13 15:48 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-20 20:01 - 2011-08-13 15:49 - 00000000 ____D () C:\Program Files\Adobe
2014-04-20 19:57 - 2011-09-30 20:37 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\TS3Client
2014-04-20 19:05 - 2014-04-07 20:10 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\BoL
2014-04-20 18:15 - 2014-04-20 18:15 - 00000000 ____D () C:\Users\hristos\AppData\Local\BoLUpdater
2014-04-20 18:11 - 2011-10-19 21:01 - 00001146 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000UA.job
2014-04-20 17:53 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-20 17:53 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-20 17:51 - 2011-08-13 02:37 - 00006252 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-20 17:49 - 2011-08-13 02:29 - 01560295 _____ () C:\Windows\WindowsUpdate.log
2014-04-20 17:46 - 2011-10-15 22:26 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-20 17:45 - 2014-04-14 18:27 - 00001346 _____ () C:\Windows\PFRO.log
2014-04-20 17:45 - 2014-04-14 18:27 - 00000672 _____ () C:\Windows\setupact.log
2014-04-20 17:45 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-20 16:22 - 2011-08-13 12:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job
2014-04-20 00:11 - 2011-10-19 21:01 - 00001124 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109183035-3835306969-3137161351-1000Core.job
2014-04-17 20:31 - 2014-04-09 22:48 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\DriverTurbo
2014-04-17 15:14 - 2014-04-17 15:14 - 00035700 _____ () C:\Users\hristos\Downloads\Addition.txt
2014-04-17 15:14 - 2014-04-17 15:13 - 00035488 _____ () C:\Users\hristos\Downloads\FRST.txt
2014-04-17 03:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-04-17 03:16 - 2014-04-17 03:16 - 00000000 _____ () C:\Windows\NDSTray.INI
2014-04-17 03:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-04-16 04:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-04-14 20:59 - 2014-04-09 20:48 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-14 18:59 - 2011-12-15 08:25 - 00116480 _____ () C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-14 18:27 - 2014-04-14 18:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-14 00:40 - 2014-03-09 16:11 - 00000000 ____D () C:\Program Files\Steam
2014-04-14 00:15 - 2014-04-14 00:06 - 00000000 ____D () C:\Users\hristos\Desktop\naked
2014-04-13 23:57 - 2013-04-26 20:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-04-12 23:59 - 2012-05-08 18:07 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Spotify
2014-04-12 11:49 - 2012-05-08 18:11 - 00000000 ____D () C:\Users\hristos\AppData\Local\Spotify
2014-04-12 10:13 - 2014-04-12 10:12 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-11 20:56 - 2014-04-11 16:51 - 00000070 _____ () C:\Users\hristos\Desktop\stolen acc.txt
2014-04-09 23:08 - 2014-04-09 23:08 - 00231952 _____ () C:\Users\hristos\Downloads\DriverTurboSetup.exe
2014-04-09 21:43 - 2014-04-09 21:34 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517115314.zip
2014-04-09 21:26 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-04-09 21:25 - 2014-04-09 21:11 - 00173651 _____ () C:\Users\hristos\Downloads\sound-20100517111051 (1).zip.opdownload
2014-04-09 20:48 - 2014-04-09 20:48 - 00001020 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 20:47 - 2014-04-09 20:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-09 20:47 - 2012-03-03 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-09 20:46 - 2014-04-09 20:44 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\hristos\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-09 20:43 - 2014-04-09 20:31 - 38692329 _____ () C:\Users\hristos\Downloads\sound-20100517111051.zip
2014-04-09 18:06 - 2012-01-06 02:45 - 00000000 ____D () C:\Users\hristos\AppData\Roaming\Skype
2014-04-09 14:08 - 2013-07-30 16:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 14:05 - 2013-08-15 07:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 14:00 - 2012-03-08 18:03 - 88028728 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-07 20:12 - 2014-04-07 20:12 - 00000000 ____D () C:\Users\hristos\Desktop\BoL Studio(Full Deal)
2014-04-07 20:09 - 2014-04-07 20:08 - 06528512 _____ () C:\Users\hristos\Downloads\BoL.dll
2014-04-07 20:09 - 2014-04-07 19:01 - 00000000 ____D () C:\Users\hristos\Desktop\bol
2014-04-07 20:08 - 2014-04-07 20:07 - 01888256 _____ () C:\Users\hristos\Downloads\BoL Studio.exe
2014-04-07 19:28 - 2014-04-07 20:12 - 27055956 _____ () C:\Users\hristos\Desktop\BoL Studio(Full Deal).rar
2014-04-07 19:28 - 2014-04-07 19:26 - 27055956 _____ () C:\Users\hristos\Downloads\BoL Studio(Full Deal).rar
2014-04-07 19:24 - 2014-04-07 19:24 - 06120184 _____ (TeamViewer GmbH) C:\Users\hristos\Downloads\TeamViewer_Setup_de.exe
2014-04-07 19:01 - 2014-04-07 19:00 - 10339653 _____ () C:\Users\hristos\Downloads\BoL Studio.rar
2014-04-05 22:45 - 2014-03-12 15:53 - 00000000 ____D () C:\Program Files\Opera
2014-04-03 09:51 - 2014-04-09 20:47 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-09 20:47 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-09 20:47 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 03:01 - 2011-08-13 02:44 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-04-03 03:01 - 2011-08-13 02:42 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-04-02 20:18 - 2014-04-02 20:18 - 00000000 ____D () C:\Users\hristos\AppData\Local\{67FB84F9-A5F9-4DE4-9858-03BB4B5DC3B5}
2014-04-02 20:18 - 2011-10-20 21:47 - 00000000 ____D () C:\Users\hristos\AppData\Local\Windows Live
2014-03-31 22:22 - 2014-04-11 09:11 - 00000000 ____D () C:\Users\hristos\Desktop\Skrillex - Recess (2014)
2014-03-27 19:01 - 2014-03-27 19:00 - 00206928 _____ () C:\Users\hristos\Documents\cc_20140327_180054.reg
2014-03-27 19:00 - 2012-12-13 22:13 - 00116480 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-03-21 22:36 - 2013-10-07 16:27 - 00016400 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
Files to move or delete:
====================
C:\Users\hristos\Setup.bat
Some content of TEMP:
====================
C:\Users\hristos\AppData\Local\Temp\KUIU.EXE
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-19 00:51
==================== End Of Log ============================
meines wissens alles entfernt <3 |
|
| Themen zu Bildschirm nach bootvorgang stark flackernd - Virus ? |
| 32bit, bekannte, bereinigt, bildschirm, bootvorgang, compu, computer, gestern, links, malware / spyware, nichts, premium, rechner, rechts, stark, symbol, treffen, trojaner, virus, virus ?, vorgang, win, win 7, zieht |
Linear-Darstellung
