- -
Virus Webcake
(
https://www.trojaner-board.de/138790-virus-webcake.html)
| Tobi5512 | 26.07.2013 02:54 |
Virus Webcake
Guten Tag, Ich habe ein Virus Problem und hoffe hier auf Hilfe.
Ich habe hier schon ein Thema gesehen und habe nur bis zu 2 schritt gemacht. (Thema: http://www.trojaner-board.de/137166-...e-wichtig.html)
Ich hänge noch die AWD und OTL Logdatei hier an
Ich hoffe ihr könnt mir helfen,
Mit freundlichen Gruß Tobi |
| schrauber | 26.07.2013 07:13 |
hi,
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
- Starte jetzt FRST.
- Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
- Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
- Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)
 So funktioniert es: Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor: - Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
- Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
- Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
- Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307 |
| Tobi5512 | 29.07.2013 18:12 |
Vielen Dank für deine schnelle Antwort
Hier kommt die logdatei FRST
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by Tobias (ATTENTION: The logged in user is not administrator) on 29-07-2013 19:06:55
Running from C:\Users\Tobias\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\RunOnce: [*Restore] - C:\Windows\System32\rstrui.exe /runonce [271872 2012-07-26] (Microsoft Corporation)
HKLM-x32\...\Runonce: [SPUpdSentinel] - "C:\Program Files (x86)\Common Files\Umbrella\umbrella_bkp.exe" -SERVICEARGS=c [x]
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\Runonce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x]
HKCU\...\Run: [Google Update] - C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-03-27] (Google Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1807272 2013-07-27] (Valve Corporation)
HKCU\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
MountPoints2: {0ee55886-6f9d-11e2-be80-806e6f6e6963} - "G:\setup\rsrc\Autorun.exe"
MountPoints2: {294f1219-89ac-11e2-be84-d43d7e6b820d} - "E:\AutoRun.exe"
MountPoints2: {687478f9-8a33-11e2-be85-d43d7e6b820d} - "E:\AutoRun.exe"
MountPoints2: {687479b6-8a33-11e2-be85-001e101f70de} - "I:\pushinst.exe"
MountPoints2: {68748882-8a33-11e2-be85-001e101f70de} - "F:\AutoRun.exe"
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-08-16] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345144 2013-07-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TrayServer] - C:\Program Files (x86)\MAGIX\Video_deluxe_MX\TrayServer_de.exe [90112 2008-08-07] (MAGIX AG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)
Startup: C:\Users\ADMIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ESPMWHACK.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec)
Startup: C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Users\Tobias\Desktop\OpenOffice.org 3\program\quickstart.exe (No File)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&q={searchTerms}&installDate=30/05/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=hp&installDate=30/05/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&q={searchTerms}&installDate=30/05/2013
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {25005A02-AACA-40A2-BEBA-D3C854D2DB3B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: ExplorerWatcher Class - {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} - C:\Program Files (x86)\Clover\TabHelper64.dll (EJIE Technology)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\..\Interfaces\{761A48DB-49A2-495B-BEF9-6605BBCBD041}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{8853DEB6-433E-4256-8F7C-8E59FE064CB4}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{DD10A31C-0A1C-4000-B995-1F40A14F9C3C}: [NameServer]193.189.244.225 193.189.244.206
FireFox:
========
FF ProfilePath: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default
FF NewTab: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=nt&installDate=30/05/2013
FF Homepage: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=hp&installDate=30/05/2013
FF Keyword.URL: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&installDate=30/05/2013&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default\searchplugins\Web Search.xml
FF Extension: pagehacker-nico - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default\Extensions\pagehacker-nico@nc.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Stylish) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe\1.2_0
CHR Extension: (AdBlock) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.3_0
CHR Extension: (FastestChrome - Browse Faster) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpmackajapjenmaiihcnmgdgakifahh\1.1_0
CHR Extension: (FastestChrome - Browse Faster) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm\7.2.2_0
CHR Extension: (Gmail) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [mmiopbgcekanlhpjkonogoljpfmhpkhf] - C:\Program Files (x86)\XingHaoLyrics\Chrome.crx
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-07-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-01] (Avira Operations GmbH & Co. KG)
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [239968 2013-03-10] ()
R2 NlaSvc; C:\Windows\System32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-30] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [130016 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RTL8192cu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-14] (Realtek Semiconductor Corporation )
S3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-14] (Realtek Semiconductor Corporation )
R3 SaiK1703; C:\Windows\system32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
R3 SaiU1703; C:\Windows\System32\drivers\SaiU1703.sys [47168 2012-09-20] (Saitek)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-29 19:05 - 2013-07-29 19:05 - 01780547 _____ (Farbar) C:\Users\Tobias\Downloads\FRST64.exe
2013-07-29 19:01 - 2013-07-29 19:04 - 129201056 _____ (Mad catz ) C:\Users\Tobias\Downloads\Smart Technology 7_0_27_13 64Bit.exe
2013-07-29 18:57 - 2013-07-29 18:57 - 00000978 _____ C:\AdwCleaner[S2].txt
2013-07-29 18:52 - 2013-07-29 18:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2013-07-29 18:47 - 2013-07-29 18:49 - 07837816 _____ (Mad catz ) C:\Users\Tobias\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2013-07-29 18:46 - 2013-07-29 18:58 - 61046784 _____ (Mad catz ) C:\Users\Tobias\Downloads\Nicht bestätigt 90118.crdownload
2013-07-26 14:55 - 2013-07-26 15:13 - 00000000 ____D C:\Users\ADMIN\Documents\VirtualDJ
2013-07-26 14:55 - 2013-07-26 14:55 - 00001054 _____ C:\Users\ADMIN\Desktop\VirtualDJ Home FREE.lnk
2013-07-26 14:55 - 2013-07-26 14:55 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-07-26 14:53 - 2013-07-26 14:54 - 38944576 _____ (Atomix Productions) C:\Users\Tobias\Desktop\install_virtualdj_home_v7.4.exe
2013-07-26 14:50 - 2013-07-26 14:52 - 00000000 ____D C:\Users\Tobias\Desktop\ZOOOKAAAAAN
2013-07-26 04:22 - 2013-07-26 04:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-26 04:15 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-07-26 04:14 - 2013-07-26 04:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-26 04:07 - 2013-07-26 04:08 - 00140558 _____ C:\Users\Tobias\Desktop\Extras.txt
2013-07-26 04:07 - 2013-07-26 04:07 - 00062897 _____ C:\Users\Tobias\Desktop\OTL.txt
2013-07-26 04:03 - 2013-07-26 04:03 - 00140558 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-07-26 04:02 - 2013-07-26 04:02 - 00125796 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-07-26 03:56 - 2013-07-26 03:56 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-07-26 03:37 - 2013-07-26 03:37 - 00030996 _____ C:\AdwCleaner[S1].txt
2013-07-26 03:37 - 2013-07-26 03:37 - 00000207 _____ C:\Windows\DeleteOnReboot.bat
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Desktop\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00000066 _____ C:\Users\Tobias\Desktop\Neues Textdokument.txt
2013-07-26 03:30 - 2013-07-26 03:30 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-26 03:30 - 2013-07-26 03:30 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-26 03:29 - 2013-07-29 18:59 - 05056080 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-26 03:18 - 2013-07-26 03:28 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-07-26 03:18 - 2013-07-26 03:18 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\WinZipper
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\UserData
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\f22abfeae27a67446927d078890381efc546d3e1
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\cfada041afdc4a11092a096cac66ab6a0945d92b
2013-07-26 03:14 - 2013-07-26 03:23 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Pokki
2013-07-26 00:24 - 2013-07-26 00:24 - 00028332 _____ C:\Users\Tobias\Downloads\MW3_FoV_Changer_v1-9-446-0.zip
2013-07-25 22:13 - 2013-07-26 03:24 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2013-07-25 22:13 - 2013-07-25 22:13 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Gameforge4d
2013-07-20 21:36 - 2013-07-20 21:36 - 00076169 _____ C:\Users\Tobias\Downloads\Multihack.rar
2013-07-20 15:24 - 2013-07-20 15:26 - 64079267 _____ C:\Users\Tobias\Downloads\Misa.zip
2013-07-20 03:55 - 2013-07-20 03:55 - 00000000 ____D C:\Users\Tobias\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Program Files (x86)\Clover
2013-07-20 03:50 - 2013-07-20 03:50 - 02626108 _____ C:\Users\Tobias\Downloads\Clover_Setup_3.0.365.zip
2013-07-20 03:45 - 2013-07-20 03:46 - 14910445 _____ C:\Users\Tobias\Downloads\Peacekeeper Skins.rar
2013-07-20 03:42 - 2013-07-20 03:42 - 00000861 _____ C:\Users\Tobias\Desktop\LAUNCHIW4M - Verknüpfung.lnk
2013-07-20 03:41 - 2013-07-20 03:41 - 02322852 _____ C:\Users\Tobias\Downloads\pro radar.rar
2013-07-20 00:41 - 2013-07-20 00:41 - 00046837 _____ C:\Users\Tobias\Downloads\NoRecoil.rar
2013-07-20 00:36 - 2013-07-20 00:36 - 00015872 _____ C:\Users\Tobias\Downloads\MW3 4D1 FPS Unlocker.exe
2013-07-19 22:52 - 2013-07-19 22:52 - 00010709 _____ C:\Users\Tobias\Downloads\Ingame CAC by zxz.zip
2013-07-19 22:04 - 2013-07-19 22:08 - 107316220 _____ C:\Users\Tobias\Downloads\z_repzV2.iwd
2013-07-19 15:02 - 2013-07-20 17:10 - 00002816 _____ C:\Windows\windefendam.log
2013-07-19 15:02 - 2013-07-20 17:10 - 00000020 _____ C:\Windows\capsys184523.log
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Mirillis
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\ProgramData\Mirillis
2013-07-19 15:01 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Mirillis
2013-07-19 15:01 - 2013-07-19 15:01 - 00002303 _____ C:\Users\Public\Desktop\Action!.lnk
2013-07-19 15:01 - 2013-07-19 15:01 - 00000000 ____D C:\Action!
2013-07-19 15:00 - 2013-07-19 15:00 - 21092770 _____ C:\Users\Tobias\Downloads\Mirillis Action! 1.11.0.rar
2013-07-19 14:58 - 2013-07-19 14:58 - 00000000 ____D C:\NVIDIA
2013-07-19 14:52 - 2013-07-19 14:55 - 135162712 _____ (NVIDIA Corporation) C:\Users\Tobias\Downloads\320.49-desktop-win8-win7-winvista-32bit-english-whql.exe
2013-07-19 12:44 - 2013-07-19 12:46 - 91296414 _____ C:\Users\Tobias\Downloads\t6-rel2.rar
2013-07-19 02:22 - 2013-07-25 00:21 - 00000116 _____ C:\Users\Tobias\Desktop\Neues Textdokument (2).txt
2013-07-18 19:28 - 2013-07-18 19:28 - 00000000 _____ C:\Users\Tobias\Downloads\server.log
2013-07-18 19:23 - 2013-07-18 19:23 - 00510899 _____ () C:\Users\Tobias\Downloads\FTB_Launcher.exe
2013-07-18 17:25 - 2013-07-18 17:25 - 00367014 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Desktop\MagicLauncher_1.1.6.exe
2013-07-18 17:24 - 2013-07-18 17:24 - 00324419 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Downloads\MagicLauncher_1.0.0.exe
2013-07-14 17:04 - 2013-07-14 17:07 - 114760879 _____ C:\Users\Tobias\Downloads\OneLateNight.zip
2013-07-13 18:22 - 2013-07-13 18:22 - 00285184 _____ C:\Users\Tobias\Downloads\Minecraft Launcher Offline Patcher.zip
2013-07-13 12:53 - 2013-07-26 03:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\.minecraft
2013-07-12 21:11 - 2013-07-12 21:11 - 00166672 _____ () C:\Users\Tobias\Downloads\MCPatcher_downloader_by_MCPatcher.exe
2013-07-12 20:24 - 2013-07-12 20:24 - 02117546 _____ C:\Users\Tobias\Downloads\Blup.wmv
2013-07-12 20:23 - 2013-07-12 20:24 - 45340793 _____ C:\Users\Tobias\Downloads\Phil3992_Pack.zip
2013-07-12 20:23 - 2013-07-12 20:23 - 00010577 _____ C:\Users\Tobias\Downloads\MinecraftAdminTool.RAR
2013-07-12 17:30 - 2013-07-12 17:30 - 00000000 ____D C:\Windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-07-12 17:28 - 2013-07-12 17:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\2K Games
2013-07-12 17:18 - 2013-07-12 17:18 - 01906970 _____ C:\Users\Tobias\Downloads\EAM (v1.0.25) & Playerstats Editor.rar
2013-07-12 16:10 - 2013-07-12 16:35 - 987132592 _____ C:\Users\Tobias\Downloads\MafiaIIDemo.exe
2013-07-12 16:08 - 2013-07-12 16:08 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-07-12 16:07 - 2013-07-12 16:07 - 08062384 _____ (Cheat Engine ) C:\Users\Tobias\Downloads\CheatEngine63.exe
2013-07-12 15:38 - 2013-07-12 15:38 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004Core1ce7f051849627b.job
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Downloads\Minecraft.exe
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Desktop\Minecraft.exe
2013-07-10 16:22 - 2013-07-10 16:22 - 11120515 _____ C:\Users\Tobias\Downloads\One Late Night.mp4
2013-07-05 14:42 - 2013-07-26 03:25 - 00000000 ____D C:\Users\Tobias\AppData\Local\Warframe
2013-07-03 20:42 - 2013-07-04 00:05 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN Sonar
2013-06-30 11:28 - 2013-07-26 03:25 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\Documents\Battlefield 3
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN
2013-06-30 11:25 - 2013-06-30 11:25 - 00001178 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2013-06-29 19:31 - 2013-06-29 19:31 - 00000222 _____ C:\Users\Tobias\Desktop\Warframe.url
110
==================== One Month Modified Files and Folders =======
2013-07-29 19:06 - 2013-07-29 19:06 - 00000000 ____D C:\FRST
2013-07-29 19:05 - 2013-07-29 19:05 - 01780547 _____ (Farbar) C:\Users\Tobias\Downloads\FRST64.exe
2013-07-29 19:04 - 2013-07-29 19:01 - 129201056 _____ (Mad catz ) C:\Users\Tobias\Downloads\Smart Technology 7_0_27_13 64Bit.exe
2013-07-29 19:00 - 2013-03-28 18:39 - 00000000 ____D C:\Users\Tobias\AppData\Local\LogMeIn Hamachi
2013-07-29 19:00 - 2013-03-06 19:46 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-29 19:00 - 2013-03-05 20:57 - 01717136 _____ C:\Windows\WindowsUpdate.log
2013-07-29 19:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-07-29 18:59 - 2013-07-26 03:29 - 05056080 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-29 18:58 - 2013-07-29 18:46 - 61046784 _____ (Mad catz ) C:\Users\Tobias\Downloads\Nicht bestätigt 90118.crdownload
2013-07-29 18:57 - 2013-07-29 18:57 - 00000978 _____ C:\AdwCleaner[S2].txt
2013-07-29 18:53 - 2013-03-27 22:38 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\TS3Client
2013-07-29 18:52 - 2013-07-29 18:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2013-07-29 18:52 - 2012-07-26 09:21 - 00052371 _____ C:\Windows\setupact.log
2013-07-29 18:49 - 2013-07-29 18:47 - 07837816 _____ (Mad catz ) C:\Users\Tobias\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2013-07-29 18:40 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-26 15:13 - 2013-07-26 14:55 - 00000000 ____D C:\Users\ADMIN\Documents\VirtualDJ
2013-07-26 14:55 - 2013-07-26 14:55 - 00001054 _____ C:\Users\ADMIN\Desktop\VirtualDJ Home FREE.lnk
2013-07-26 14:55 - 2013-07-26 14:55 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-07-26 14:54 - 2013-07-26 14:53 - 38944576 _____ (Atomix Productions) C:\Users\Tobias\Desktop\install_virtualdj_home_v7.4.exe
2013-07-26 14:52 - 2013-07-26 14:50 - 00000000 ____D C:\Users\Tobias\Desktop\ZOOOKAAAAAN
2013-07-26 14:46 - 2012-11-05 18:36 - 00752930 _____ C:\Windows\system32\perfh007.dat
2013-07-26 14:46 - 2012-11-05 18:36 - 00156156 _____ C:\Windows\system32\perfc007.dat
2013-07-26 14:46 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-26 04:34 - 2013-03-11 09:54 - 00000000 ____D C:\Users\Tobias\Desktop\ToBi
2013-07-26 04:22 - 2013-07-26 04:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-07-26 04:21 - 2012-11-05 17:57 - 00042782 _____ C:\Windows\PFRO.log
2013-07-26 04:15 - 2013-07-26 04:15 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-26 04:15 - 2013-07-26 04:14 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-26 04:08 - 2013-07-26 04:07 - 00140558 _____ C:\Users\Tobias\Desktop\Extras.txt
2013-07-26 04:07 - 2013-07-26 04:07 - 00062897 _____ C:\Users\Tobias\Desktop\OTL.txt
2013-07-26 04:03 - 2013-07-26 04:03 - 00140558 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-07-26 04:02 - 2013-07-26 04:02 - 00125796 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-07-26 03:56 - 2013-07-26 03:56 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-07-26 03:37 - 2013-07-26 03:37 - 00030996 _____ C:\AdwCleaner[S1].txt
2013-07-26 03:37 - 2013-07-26 03:37 - 00000207 _____ C:\Windows\DeleteOnReboot.bat
2013-07-26 03:37 - 2013-03-06 17:53 - 00000000 ____D C:\Users\ADMIN
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Desktop\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00000066 _____ C:\Users\Tobias\Desktop\Neues Textdokument.txt
2013-07-26 03:30 - 2013-07-26 03:30 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-26 03:30 - 2013-07-26 03:30 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-26 03:29 - 2013-03-10 23:04 - 00000000 ____D C:\Users\Tobias
2013-07-26 03:28 - 2013-07-26 03:18 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-07-26 03:28 - 2013-01-11 14:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-07-26 03:26 - 2013-01-11 14:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-07-26 03:26 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\security
2013-07-26 03:26 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\Help
2013-07-26 03:25 - 2013-07-05 14:42 - 00000000 ____D C:\Users\Tobias\AppData\Local\Warframe
2013-07-26 03:25 - 2013-06-30 11:28 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-07-26 03:25 - 2013-05-27 20:24 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-07-26 03:25 - 2013-05-11 20:21 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-07-26 03:25 - 2013-03-11 20:11 - 00000000 ____D C:\Program Files (x86)\Tony Hawk's Underground 2
2013-07-26 03:24 - 2013-07-25 22:13 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2013-07-26 03:23 - 2013-07-26 03:14 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Pokki
2013-07-26 03:23 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\registration
2013-07-26 03:22 - 2013-07-13 12:53 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\.minecraft
2013-07-26 03:22 - 2013-01-11 14:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-26 03:18 - 2013-07-26 03:18 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\WinZipper
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\UserData
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\f22abfeae27a67446927d078890381efc546d3e1
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\cfada041afdc4a11092a096cac66ab6a0945d92b
2013-07-26 00:24 - 2013-07-26 00:24 - 00028332 _____ C:\Users\Tobias\Downloads\MW3_FoV_Changer_v1-9-446-0.zip
2013-07-25 22:13 - 2013-07-25 22:13 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Gameforge4d
2013-07-25 21:35 - 2013-01-11 14:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-07-25 00:21 - 2013-07-19 02:22 - 00000116 _____ C:\Users\Tobias\Desktop\Neues Textdokument (2).txt
2013-07-21 13:43 - 2012-11-05 19:36 - 00449509 _____ C:\Windows\DirectX.log
2013-07-20 21:36 - 2013-07-20 21:36 - 00076169 _____ C:\Users\Tobias\Downloads\Multihack.rar
2013-07-20 18:41 - 2013-04-08 02:10 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-07-20 18:41 - 2013-03-11 08:42 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-07-20 18:41 - 2013-03-11 08:42 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-07-20 18:39 - 2013-04-23 14:32 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-20 17:10 - 2013-07-19 15:02 - 00002816 _____ C:\Windows\windefendam.log
2013-07-20 17:10 - 2013-07-19 15:02 - 00000020 _____ C:\Windows\capsys184523.log
2013-07-20 15:26 - 2013-07-20 15:24 - 64079267 _____ C:\Users\Tobias\Downloads\Misa.zip
2013-07-20 03:55 - 2013-07-20 03:55 - 00000000 ____D C:\Users\Tobias\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Program Files (x86)\Clover
2013-07-20 03:50 - 2013-07-20 03:50 - 02626108 _____ C:\Users\Tobias\Downloads\Clover_Setup_3.0.365.zip
2013-07-20 03:46 - 2013-07-20 03:45 - 14910445 _____ C:\Users\Tobias\Downloads\Peacekeeper Skins.rar
2013-07-20 03:42 - 2013-07-20 03:42 - 00000861 _____ C:\Users\Tobias\Desktop\LAUNCHIW4M - Verknüpfung.lnk
2013-07-20 03:41 - 2013-07-20 03:41 - 02322852 _____ C:\Users\Tobias\Downloads\pro radar.rar
2013-07-20 00:41 - 2013-07-20 00:41 - 00046837 _____ C:\Users\Tobias\Downloads\NoRecoil.rar
2013-07-20 00:36 - 2013-07-20 00:36 - 00015872 _____ C:\Users\Tobias\Downloads\MW3 4D1 FPS Unlocker.exe
2013-07-19 22:52 - 2013-07-19 22:52 - 00010709 _____ C:\Users\Tobias\Downloads\Ingame CAC by zxz.zip
2013-07-19 22:08 - 2013-07-19 22:04 - 107316220 _____ C:\Users\Tobias\Downloads\z_repzV2.iwd
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Mirillis
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\ProgramData\Mirillis
2013-07-19 15:02 - 2013-07-19 15:01 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Mirillis
2013-07-19 15:01 - 2013-07-19 15:01 - 00002303 _____ C:\Users\Public\Desktop\Action!.lnk
2013-07-19 15:01 - 2013-07-19 15:01 - 00000000 ____D C:\Action!
2013-07-19 15:00 - 2013-07-19 15:00 - 21092770 _____ C:\Users\Tobias\Downloads\Mirillis Action! 1.11.0.rar
2013-07-19 14:58 - 2013-07-19 14:58 - 00000000 ____D C:\NVIDIA
2013-07-19 14:58 - 2013-06-16 20:04 - 00000000 ____D C:\Users\Tobias\Desktop\Fraps
2013-07-19 14:55 - 2013-07-19 14:52 - 135162712 _____ (NVIDIA Corporation) C:\Users\Tobias\Downloads\320.49-desktop-win8-win7-winvista-32bit-english-whql.exe
2013-07-19 12:46 - 2013-07-19 12:44 - 91296414 _____ C:\Users\Tobias\Downloads\t6-rel2.rar
2013-07-18 19:28 - 2013-07-18 19:28 - 00000000 _____ C:\Users\Tobias\Downloads\server.log
2013-07-18 19:23 - 2013-07-18 19:23 - 00510899 _____ () C:\Users\Tobias\Downloads\FTB_Launcher.exe
2013-07-18 19:23 - 2013-04-22 17:20 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\ftblauncher
2013-07-18 19:23 - 2013-04-22 17:20 - 00000000 ____D C:\FEED THE BEAST
2013-07-18 17:25 - 2013-07-18 17:25 - 00367014 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Desktop\MagicLauncher_1.1.6.exe
2013-07-18 17:24 - 2013-07-18 17:24 - 00324419 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Downloads\MagicLauncher_1.0.0.exe
2013-07-14 17:07 - 2013-07-14 17:04 - 114760879 _____ C:\Users\Tobias\Downloads\OneLateNight.zip
2013-07-13 18:22 - 2013-07-13 18:22 - 00285184 _____ C:\Users\Tobias\Downloads\Minecraft Launcher Offline Patcher.zip
2013-07-13 08:27 - 2013-03-27 20:02 - 00002339 _____ C:\Users\Tobias\Desktop\Google Chrome.lnk
2013-07-12 21:11 - 2013-07-12 21:11 - 00166672 _____ () C:\Users\Tobias\Downloads\MCPatcher_downloader_by_MCPatcher.exe
2013-07-12 20:24 - 2013-07-12 20:24 - 02117546 _____ C:\Users\Tobias\Downloads\Blup.wmv
2013-07-12 20:24 - 2013-07-12 20:23 - 45340793 _____ C:\Users\Tobias\Downloads\Phil3992_Pack.zip
2013-07-12 20:23 - 2013-07-12 20:23 - 00010577 _____ C:\Users\Tobias\Downloads\MinecraftAdminTool.RAR
2013-07-12 17:30 - 2013-07-12 17:30 - 00000000 ____D C:\Windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-07-12 17:28 - 2013-07-12 17:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\2K Games
2013-07-12 17:18 - 2013-07-12 17:18 - 01906970 _____ C:\Users\Tobias\Downloads\EAM (v1.0.25) & Playerstats Editor.rar
2013-07-12 16:35 - 2013-07-12 16:10 - 987132592 _____ C:\Users\Tobias\Downloads\MafiaIIDemo.exe
2013-07-12 16:08 - 2013-07-12 16:08 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-07-12 16:08 - 2013-05-30 11:33 - 00001093 _____ C:\Users\ADMIN\Desktop\Cheat Engine.lnk
2013-07-12 16:07 - 2013-07-12 16:07 - 08062384 _____ (Cheat Engine ) C:\Users\Tobias\Downloads\CheatEngine63.exe
2013-07-12 15:38 - 2013-07-12 15:38 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004Core1ce7f051849627b.job
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Downloads\Minecraft.exe
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Desktop\Minecraft.exe
2013-07-10 16:22 - 2013-07-10 16:22 - 11120515 _____ C:\Users\Tobias\Downloads\One Late Night.mp4
2013-07-04 00:05 - 2013-07-03 20:42 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN Sonar
2013-07-01 14:44 - 2013-05-07 13:35 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-06-30 11:33 - 2013-03-11 08:42 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\Documents\Battlefield 3
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN
2013-06-30 11:28 - 2013-03-11 09:44 - 00000000 ____D C:\Users\Tobias\AppData\Local\PunkBuster
2013-06-30 11:26 - 2013-03-30 14:28 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-06-30 11:25 - 2013-06-30 11:25 - 00001178 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2013-06-29 19:31 - 2013-06-29 19:31 - 00000222 _____ C:\Users\Tobias\Desktop\Warframe.url
2013-06-29 19:31 - 2013-03-27 20:05 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-29 18:54 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-29 18:54 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-06-29 18:36 - 2013-03-27 20:00 - 00001142 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004UA.job
2013-06-29 18:27 - 2013-05-27 20:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-29 17:03 - 2013-06-16 18:23 - 00000000 ____D C:\ProgramData\simplitec
2013-06-29 15:55 - 2013-01-11 13:50 - 00000870 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-06-29 14:42 - 2013-04-23 14:34 - 00000000 ____D C:\Users\Tobias\AppData\Local\Origin
2013-06-29 14:07 - 2013-04-23 14:34 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-06-29 14:06 - 2013-04-23 14:32 - 00000000 ____D C:\ProgramData\Origin
2013-06-29 12:58 - 2013-04-23 14:34 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Origin
2013-06-29 11:58 - 2013-01-11 13:50 - 00000868 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
--- --- ---
Und hier die Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-07-2013
Ran by Tobias at 2013-07-29 19:07:30
Running from C:\Users\Tobias\Downloads
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
7-Zip 9.20 (x32)
Ace of Spades (x32)
Action! (x32 Version: 1.11.0)
Adobe AIR (x32 Version: 3.6.0.6090)
Adobe Download Assistant (x32 Version: 1.2.5)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
APB Reloaded (x32)
Apple Application Support (x32 Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
Archeblade (x32)
Assassin's Creed II (x32)
Avidemux 2.6 (32-bit) (x32 Version: 2.6.3.8518)
Avira Free Antivirus (x32 Version: 13.0.0.3884)
Battlefield 2(TM) (x32)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
Bonjour (Version: 3.0.0.10)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7)
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32)
Call of Duty: Black Ops II - Multiplayer (x32)
Call of Duty: Modern Warfare 2 - Multiplayer (x32)
Call of Duty: Modern Warfare 2 (x32)
Call of Duty: Modern Warfare 3 - Dedicated Server (x32)
Cheat Engine 6.2 (x32)
Cheat Engine 6.3 (x32)
Cinema 4D version R12 (x32 Version: R12)
Clover 3.0 (x32 Version: 3.0)
Combat Arms EU (x32)
Counter-Strike: Global Offensive (x32)
Crysis 2 Maximum Edition (x32)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.5415)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3111_44883)
CyberLink Power2Go 8 (x32 Version: 8.0.0.1920)
CyberLink PowerDVD 10 (x32 Version: 10.0.4125.02)
CyberLink PowerDVD Copy 1.5 (x32 Version: 1.5.2715b)
CyberLink PowerRecover (Version: 5.7.0.0913)
CyberLink PowerRecover (x32 Version: 5.7.0.0913)
D3DX10 (x32 Version: 15.4.2368.0902)
Dead Island (x32)
Dota 2 (x32)
Duty Calls (x32 Version: 1.00.0000)
ESN Sonar (x32 Version: 0.70.4)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0)
FormatFactory 3.1.0 (x32 Version: 3.1.0)
Fotogalerie (x32 Version: 16.4.3505.0912)
Fotogalerija (x32 Version: 16.4.3505.0912)
Fotogalleri (x32 Version: 16.4.3505.0912)
Fotogalleriet (x32 Version: 16.4.3505.0912)
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912)
Fotótár (x32 Version: 16.4.3505.0912)
Fraps (remove only) (x32)
Galeria de Fotografias (x32 Version: 16.4.3505.0912)
Galería de fotos (x32 Version: 16.4.3505.0912)
Galeria fotografii (x32 Version: 16.4.3505.0912)
Galerie de photos (x32 Version: 16.4.3505.0912)
Garry's Mod (x32)
Google Chrome (HKCU Version: 28.0.1500.72)
ID CPU-Z 1.64.0
Intel(R) Control Center (x32 Version: 1.2.1.1008)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.36354)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1281)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001)
Intel® Trusted Connect Service Client (Version: 1.24.738.1)
iTunes (Version: 11.0.2.26)
Java 7 Update 17 (x32 Version: 7.0.170)
Java Auto Updater (x32 Version: 2.1.9.0)
Just Cause 2 (x32)
LAME v3.99.3 (for Windows) (x32)
League of Legends (x32 Version: 1.3)
Left 4 Dead 2 (x32)
LogMeIn Hamachi (x32 Version: 2.1.0.374)
Mafia II - Demo (x32)
MAGIX Content und Soundpools (x32 Version: 1.0.0.0)
MAGIX Goya burnR (MSI) (Version: 4.3.2.0)
MAGIX Goya burnR (MSI) (x32 Version: 4.3.2.0)
MAGIX Music Maker 2013 (Version: 19.0.1.36)
MAGIX Music Maker 2013 (x32 Version: 19.0.1.36)
MAGIX Music Maker 2013 Trial Soundpools (Version: 1.0.0.0)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
MAGIX Video deluxe MX (Version: 11.0.6.0)
MAGIX Video deluxe MX (x32 Version: 11.0.6.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mario Forever 4.0 (x32 Version: 4.0)
McAfee Security Scan Plus (x32 Version: 3.0.318.3)
Mediathek (x32 Version: 1.4.0)
Medion Home Cinema 10 (x32 Version: 10.0)
Medion Home Cinema 10 (x32 Version: 10.1924)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office (x32 Version: 14.0.6120.5004)
Microsoft Silverlight (x32 Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Mobile Partner (x32 Version: 21.005.15.02.382)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 20.0.1 (x86 de) (x32 Version: 20.0.1)
Mozilla Maintenance Service (x32 Version: 20.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
Nexon Game Manager (x32)
Notepad++ (x32 Version: 6.3.2)
NVIDIA Control Panel 306.14 (Version: 306.14)
NVIDIA Graphics Driver 306.14 (Version: 306.14)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (x32 Version: 9.12.0807)
NVIDIA PhysX System Software 9.12.0807 (Version: 9.12.0807)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Origin (x32 Version: 9.1.15.109)
Photo Common (x32 Version: 16.4.3505.0912)
Photo Gallery (x32 Version: 16.4.3505.0912)
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912)
proDAD Adorage 3.0 (x32 Version: 3.0.92)
PunkBuster Services (x32 Version: 0.991)
QuickLaunch (x32 Version: 1.00.0019)
Raccolta foto (x32 Version: 16.4.3505.0912)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6710)
REALTEK Wireless LAN Driver (x32 Version: 1.00.0192)
RocketDock 1.3.5 (x32)
San Andreas Mod Installer (x32 Version: 1.1)
simplitec simplicheck (x32 Version: 1.3.10.0)
Snap.Do (x32 Version: 1.6.1.930)
Star Wars Battlefront II (x32 Version: 1.0)
Star Wars Empire at War (x32 Version: 1.0)
Steam (x32 Version: 1.0.0.0)
System Requirements Lab Detection (x32 Version: 1.0.5.0)
TeamSpeak 3 Client (HKCU Version: 3.0.10.1)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
VirtualDJ Home FREE (x32 Version: 7.4)
VLC media player 2.0.6 (x32 Version: 2.0.6)
Warframe (x32)
WarRock (x32)
Windows Live (x32 Version: 16.4.3505.0912)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live Temel Parçalar (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912)
==================== Restore Points =========================
Could not list Restore Points.
==================== Hosts content: ==========================
2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004Core1ce7f051849627b.job => C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004UA.job => C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => ?
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => ?
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/29/2013 07:07:29 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:07:29Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:06:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:06:59Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:06:29 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:06:29Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:05:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:05:59Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:05:29 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:05:29Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:04:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:04:59Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:04:29 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:04:29Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:03:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:03:59Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:03:29 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:03:29Z. Fehlercode: 0x80040154.
Error: (07/29/2013 07:02:59 PM) (Source: Software Protection Platform Service) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2113-07-05T17:02:59Z. Fehlercode: 0x80040154.
System errors:
=============
Error: (07/29/2013 07:01:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/29/2013 07:01:02 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (07/29/2013 06:59:52 PM) (Source: DCOM) (User: ToBi5512)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ToBi5512TobiasS-1-5-21-2948387052-3577778483-2893961966-1004LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (07/29/2013 06:59:52 PM) (Source: DCOM) (User: ToBi5512)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ToBi5512TobiasS-1-5-21-2948387052-3577778483-2893961966-1004LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (07/29/2013 06:59:24 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/29/2013 06:59:24 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.
Error: (07/26/2013 04:22:05 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/26/2013 04:22:05 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.
Error: (07/26/2013 03:39:40 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/26/2013 03:39:40 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.
Microsoft Office Sessions:
=========================
Error: (07/29/2013 07:07:29 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:07:29Z
Error: (07/29/2013 07:06:59 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:06:59Z
Error: (07/29/2013 07:06:29 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:06:29Z
Error: (07/29/2013 07:05:59 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:05:59Z
Error: (07/29/2013 07:05:29 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:05:29Z
Error: (07/29/2013 07:04:59 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:04:59Z
Error: (07/29/2013 07:04:29 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:04:29Z
Error: (07/29/2013 07:03:59 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:03:59Z
Error: (07/29/2013 07:03:29 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:03:29Z
Error: (07/29/2013 07:02:59 PM) (Source: Software Protection Platform Service)(User: )
Description: 0x800401542113-07-05T17:02:59Z
==================== Memory info ===========================
Percentage of memory in use: 25%
Total physical RAM: 8136.15 MB
Available physical RAM: 6068.11 MB
Total Pagefile: 9352.15 MB
Available Pagefile: 6929.52 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB
==================== Drives ================================
Drive c: (Boot) (Fixed) (Total:869.99 GB) (Free:463.46 GB) NTFS
Drive d: (Recover) (Fixed) (Total:59.81 GB) (Free:41.3 GB) NTFS
Drive e: (HP_507) (Removable) (Total:0.48 GB) (Free:0.08 GB) FAT (Disk=1 Partition=1)
Drive g: (COD4MW) (CDROM) (Total:6.35 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
==================== End Of Log ============================
|
| schrauber | 29.07.2013 20:01 |
ADWCleaner löschen.
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
- Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
- Starte die AdwCleaner.exe mit einem Doppelklick.
- Stimme den Nutzungsbedingungen zu.
- Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
- Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
- Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
- Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
- Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade  Junkware Removal Tool auf Deinen Desktop - Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
- Drücke eine beliebige Taste, um das Tool zu starten.
- Je nach System kann der Scan eine Weile dauern.
- Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
- Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.
und ein frisches FRST log bitte. |
| Tobi5512 | 29.07.2013 20:43 |
Ich habe heute schon mal adw ausgeführt ich poste jetzt erst die von mittag Code:
# AdwCleaner v2.306 - Datei am 29/07/2013 um 18:57:31 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Windows 8 (64 bits)
# Benutzer : ADMIN - TOBI5512
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Tobias\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gelöscht : C:\Program Files (x86)\Iminent
Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
Ordner Gelöscht : C:\Users\Tobias\AppData\Roaming\Iminent
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKLM\Software\PIP
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16537
[OK] Die Registrierungsdatenbank ist sauber.
*************************
AdwCleaner[S1].txt - [30996 octets] - [26/07/2013 03:37:16]
AdwCleaner[S2].txt - [853 octets] - [29/07/2013 18:57:31]
########## EOF - \AdwCleaner[S2].txt - [912 octets] ##########
Und jetzt die ich grad gemacht habe Code:
# AdwCleaner v2.306 - Datei am 29/07/2013 um 21:29:44 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Windows 8 (64 bits)
# Benutzer : ADMIN - TOBI5512
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Tobias\Downloads\adwcleaner (1).exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
***** [Registrierungsdatenbank] *****
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16537
[OK] Die Registrierungsdatenbank ist sauber.
*************************
AdwCleaner[S1].txt - [30996 octets] - [26/07/2013 03:37:16]
AdwCleaner[S2].txt - [978 octets] - [29/07/2013 18:57:31]
AdwCleaner[S3].txt - [667 octets] - [29/07/2013 21:29:44]
########## EOF - \AdwCleaner[S3].txt - [726 octets] ##########
Hier denn neue FRST log
FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by Tobias (ATTENTION: The logged in user is not administrator) on 29-07-2013 21:38:24
Running from C:\Users\Tobias\Desktop
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Tobias\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-20] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ProfilerU] - C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\RunOnce: [*Restore] - C:\Windows\System32\rstrui.exe /runonce [271872 2012-07-26] (Microsoft Corporation)
HKLM-x32\...\Runonce: [SPUpdSentinel] - "C:\Program Files (x86)\Common Files\Umbrella\umbrella_bkp.exe" -SERVICEARGS=c [x]
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\Runonce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x]
HKCU\...\Run: [Google Update] - C:\Users\Tobias\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-03-27] (Google Inc.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1807272 2013-07-27] (Valve Corporation)
HKCU\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
MountPoints2: {0ee55886-6f9d-11e2-be80-806e6f6e6963} - "G:\setup\rsrc\Autorun.exe"
MountPoints2: {294f1219-89ac-11e2-be84-d43d7e6b820d} - "E:\AutoRun.exe"
MountPoints2: {687478f9-8a33-11e2-be85-d43d7e6b820d} - "E:\AutoRun.exe"
MountPoints2: {687479b6-8a33-11e2-be85-001e101f70de} - "I:\pushinst.exe"
MountPoints2: {68748882-8a33-11e2-be85-001e101f70de} - "F:\AutoRun.exe"
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-08-16] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345144 2013-07-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TrayServer] - C:\Program Files (x86)\MAGIX\Video_deluxe_MX\TrayServer_de.exe [90112 2008-08-07] (MAGIX AG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)
Startup: C:\Users\ADMIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ESPMWHACK.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec)
Startup: C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Users\Tobias\Desktop\OpenOffice.org 3\program\quickstart.exe (No File)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&q={searchTerms}&installDate=30/05/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=hp&installDate=30/05/2013
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&q={searchTerms}&installDate=30/05/2013
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {25005A02-AACA-40A2-BEBA-D3C854D2DB3B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
BHO: ExplorerWatcher Class - {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} - C:\Program Files (x86)\Clover\TabHelper64.dll (EJIE Technology)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\..\Interfaces\{761A48DB-49A2-495B-BEF9-6605BBCBD041}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{8853DEB6-433E-4256-8F7C-8E59FE064CB4}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{DD10A31C-0A1C-4000-B995-1F40A14F9C3C}: [NameServer]193.189.244.225 193.189.244.206
FireFox:
========
FF ProfilePath: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default
FF NewTab: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=nt&installDate=30/05/2013
FF Homepage: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=hp&installDate=30/05/2013
FF Keyword.URL: hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&installDate=30/05/2013&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default\searchplugins\Web Search.xml
FF Extension: pagehacker-nico - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\6e7nvncw.default\Extensions\pagehacker-nico@nc.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Tobias\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Tobias\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Google Docs) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Stylish) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe\1.2_0
CHR Extension: (AdBlock) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.3_0
CHR Extension: (FastestChrome - Browse Faster) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpmackajapjenmaiihcnmgdgakifahh\1.1_0
CHR Extension: (FastestChrome - Browse Faster) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm\7.2.2_0
CHR Extension: (Gmail) - C:\Users\Tobias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [mmiopbgcekanlhpjkonogoljpfmhpkhf] - C:\Program Files (x86)\XingHaoLyrics\Chrome.crx
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-07-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-01] (Avira Operations GmbH & Co. KG)
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-19] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [239968 2013-03-10] ()
R2 NlaSvc; C:\Windows\System32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-30] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [130016 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RTL8192cu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-14] (Realtek Semiconductor Corporation )
S3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1576080 2012-09-14] (Realtek Semiconductor Corporation )
R3 SaiK1703; C:\Windows\system32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1703; C:\Windows\System32\drivers\SaiU1703.sys [47168 2012-09-20] (Saitek)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-26] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-29 21:29 - 2013-07-29 21:29 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner (1).exe
2013-07-29 21:29 - 2013-07-29 21:29 - 00562353 _____ (Oleg N. Scherbakov) C:\Users\Tobias\Desktop\JRT.exe
2013-07-29 21:27 - 2013-07-29 21:27 - 00001015 _____ C:\Users\ADMIN\Desktop\Audacity.lnk
2013-07-29 21:27 - 2013-07-29 21:27 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-07-29 21:26 - 2013-07-29 21:26 - 21281052 _____ (Audacity Team ) C:\Users\Tobias\Downloads\audacity-win-2.0.3.exe
2013-07-29 20:10 - 2013-07-29 20:10 - 00002523 _____ C:\Users\Tobias\Desktop\Profileditor.lnk
2013-07-29 20:10 - 2013-07-29 20:10 - 00002497 _____ C:\Users\Tobias\Desktop\Profiler.lnk
2013-07-29 20:09 - 2013-07-29 20:09 - 00000000 ____D C:\Users\Tobias\AppData\Local\SmartTechnology
2013-07-29 20:09 - 2013-07-29 20:09 - 00000000 ____D C:\Users\ADMIN\AppData\Local\SmartTechnology
2013-07-29 20:07 - 2013-07-29 20:07 - 00000000 ____D C:\ProgramData\SmartTechnology
2013-07-29 20:07 - 2013-07-29 20:07 - 00000000 ____D C:\Program Files\SmartTechnology
2013-07-29 19:08 - 2013-07-29 19:08 - 00032844 _____ C:\Users\Tobias\Desktop\Addition.txt
2013-07-29 19:07 - 2013-07-29 19:07 - 00042854 _____ C:\Users\Tobias\Downloads\FRST.txt
2013-07-29 19:07 - 2013-07-29 19:07 - 00016464 _____ C:\Users\Tobias\Downloads\Addition.txt
2013-07-29 19:06 - 2013-07-29 19:06 - 00000000 ____D C:\FRST
2013-07-29 19:05 - 2013-07-29 19:05 - 01780547 _____ (Farbar) C:\Users\Tobias\Desktop\FRST64.exe
2013-07-29 18:57 - 2013-07-29 18:57 - 00000978 _____ C:\AdwCleaner[S2].txt
2013-07-29 18:52 - 2013-07-29 18:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2013-07-29 18:47 - 2013-07-29 18:49 - 07837816 _____ (Mad catz ) C:\Users\Tobias\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2013-07-29 18:46 - 2013-07-29 18:58 - 61046784 _____ (Mad catz ) C:\Users\Tobias\Downloads\Nicht bestätigt 90118.crdownload
2013-07-26 14:55 - 2013-07-26 15:13 - 00000000 ____D C:\Users\ADMIN\Documents\VirtualDJ
2013-07-26 14:55 - 2013-07-26 14:55 - 00001054 _____ C:\Users\ADMIN\Desktop\VirtualDJ Home FREE.lnk
2013-07-26 14:55 - 2013-07-26 14:55 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-07-26 14:53 - 2013-07-26 14:54 - 38944576 _____ (Atomix Productions) C:\Users\Tobias\Desktop\install_virtualdj_home_v7.4.exe
2013-07-26 14:50 - 2013-07-26 14:52 - 00000000 ____D C:\Users\Tobias\Desktop\ZOOOKAAAAAN
2013-07-26 04:22 - 2013-07-26 04:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-26 04:15 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-07-26 04:14 - 2013-07-26 04:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-26 04:07 - 2013-07-26 04:08 - 00140558 _____ C:\Users\Tobias\Desktop\Extras.txt
2013-07-26 04:07 - 2013-07-26 04:07 - 00062897 _____ C:\Users\Tobias\Desktop\OTL.txt
2013-07-26 04:03 - 2013-07-26 04:03 - 00140558 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-07-26 04:02 - 2013-07-26 04:02 - 00125796 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-07-26 03:56 - 2013-07-26 03:56 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-07-26 03:37 - 2013-07-26 03:37 - 00030996 _____ C:\AdwCleaner[S1].txt
2013-07-26 03:37 - 2013-07-26 03:37 - 00000207 _____ C:\Windows\DeleteOnReboot.bat
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00000066 _____ C:\Users\Tobias\Desktop\Neues Textdokument.txt
2013-07-26 03:30 - 2013-07-26 03:30 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-26 03:30 - 2013-07-26 03:30 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-26 03:29 - 2013-07-29 18:59 - 05056080 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-26 03:18 - 2013-07-26 03:28 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-07-26 03:18 - 2013-07-26 03:18 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\WinZipper
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\UserData
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\f22abfeae27a67446927d078890381efc546d3e1
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\cfada041afdc4a11092a096cac66ab6a0945d92b
2013-07-26 03:14 - 2013-07-26 03:23 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Pokki
2013-07-26 00:24 - 2013-07-26 00:24 - 00028332 _____ C:\Users\Tobias\Downloads\MW3_FoV_Changer_v1-9-446-0.zip
2013-07-25 22:13 - 2013-07-26 03:24 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2013-07-25 22:13 - 2013-07-25 22:13 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Gameforge4d
2013-07-20 21:36 - 2013-07-20 21:36 - 00076169 _____ C:\Users\Tobias\Downloads\Multihack.rar
2013-07-20 15:24 - 2013-07-20 15:26 - 64079267 _____ C:\Users\Tobias\Downloads\Misa.zip
2013-07-20 03:55 - 2013-07-20 03:55 - 00000000 ____D C:\Users\Tobias\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Program Files (x86)\Clover
2013-07-20 03:50 - 2013-07-20 03:50 - 02626108 _____ C:\Users\Tobias\Downloads\Clover_Setup_3.0.365.zip
2013-07-20 03:45 - 2013-07-20 03:46 - 14910445 _____ C:\Users\Tobias\Downloads\Peacekeeper Skins.rar
2013-07-20 03:42 - 2013-07-20 03:42 - 00000861 _____ C:\Users\Tobias\Desktop\LAUNCHIW4M - Verknüpfung.lnk
2013-07-20 03:41 - 2013-07-20 03:41 - 02322852 _____ C:\Users\Tobias\Downloads\pro radar.rar
2013-07-20 00:41 - 2013-07-20 00:41 - 00046837 _____ C:\Users\Tobias\Downloads\NoRecoil.rar
2013-07-20 00:36 - 2013-07-20 00:36 - 00015872 _____ C:\Users\Tobias\Downloads\MW3 4D1 FPS Unlocker.exe
2013-07-19 22:52 - 2013-07-19 22:52 - 00010709 _____ C:\Users\Tobias\Downloads\Ingame CAC by zxz.zip
2013-07-19 22:04 - 2013-07-19 22:08 - 107316220 _____ C:\Users\Tobias\Downloads\z_repzV2.iwd
2013-07-19 15:02 - 2013-07-20 17:10 - 00002816 _____ C:\Windows\windefendam.log
2013-07-19 15:02 - 2013-07-20 17:10 - 00000020 _____ C:\Windows\capsys184523.log
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Mirillis
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\ProgramData\Mirillis
2013-07-19 15:01 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Mirillis
2013-07-19 15:01 - 2013-07-19 15:01 - 00002303 _____ C:\Users\Public\Desktop\Action!.lnk
2013-07-19 15:01 - 2013-07-19 15:01 - 00000000 ____D C:\Action!
2013-07-19 15:00 - 2013-07-19 15:00 - 21092770 _____ C:\Users\Tobias\Downloads\Mirillis Action! 1.11.0.rar
2013-07-19 14:58 - 2013-07-19 14:58 - 00000000 ____D C:\NVIDIA
2013-07-19 14:52 - 2013-07-19 14:55 - 135162712 _____ (NVIDIA Corporation) C:\Users\Tobias\Downloads\320.49-desktop-win8-win7-winvista-32bit-english-whql.exe
2013-07-19 12:44 - 2013-07-19 12:46 - 91296414 _____ C:\Users\Tobias\Downloads\t6-rel2.rar
2013-07-19 02:22 - 2013-07-25 00:21 - 00000116 _____ C:\Users\Tobias\Desktop\Neues Textdokument (2).txt
2013-07-18 19:28 - 2013-07-18 19:28 - 00000000 _____ C:\Users\Tobias\Downloads\server.log
2013-07-18 19:23 - 2013-07-18 19:23 - 00510899 _____ () C:\Users\Tobias\Downloads\FTB_Launcher.exe
2013-07-18 17:25 - 2013-07-18 17:25 - 00367014 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Desktop\MagicLauncher_1.1.6.exe
2013-07-18 17:24 - 2013-07-18 17:24 - 00324419 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Downloads\MagicLauncher_1.0.0.exe
2013-07-14 17:04 - 2013-07-14 17:07 - 114760879 _____ C:\Users\Tobias\Downloads\OneLateNight.zip
2013-07-13 18:22 - 2013-07-13 18:22 - 00285184 _____ C:\Users\Tobias\Downloads\Minecraft Launcher Offline Patcher.zip
2013-07-13 12:53 - 2013-07-26 03:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\.minecraft
2013-07-12 21:11 - 2013-07-12 21:11 - 00166672 _____ () C:\Users\Tobias\Downloads\MCPatcher_downloader_by_MCPatcher.exe
2013-07-12 20:24 - 2013-07-12 20:24 - 02117546 _____ C:\Users\Tobias\Downloads\Blup.wmv
2013-07-12 20:23 - 2013-07-12 20:24 - 45340793 _____ C:\Users\Tobias\Downloads\Phil3992_Pack.zip
2013-07-12 20:23 - 2013-07-12 20:23 - 00010577 _____ C:\Users\Tobias\Downloads\MinecraftAdminTool.RAR
2013-07-12 17:30 - 2013-07-12 17:30 - 00000000 ____D C:\Windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-07-12 17:28 - 2013-07-12 17:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\2K Games
2013-07-12 17:18 - 2013-07-12 17:18 - 01906970 _____ C:\Users\Tobias\Downloads\EAM (v1.0.25) & Playerstats Editor.rar
2013-07-12 16:10 - 2013-07-12 16:35 - 987132592 _____ C:\Users\Tobias\Downloads\MafiaIIDemo.exe
2013-07-12 16:08 - 2013-07-12 16:08 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-07-12 16:07 - 2013-07-12 16:07 - 08062384 _____ (Cheat Engine ) C:\Users\Tobias\Downloads\CheatEngine63.exe
2013-07-12 15:38 - 2013-07-12 15:38 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004Core1ce7f051849627b.job
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Downloads\Minecraft.exe
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Desktop\Minecraft.exe
2013-07-10 16:22 - 2013-07-10 16:22 - 11120515 _____ C:\Users\Tobias\Downloads\One Late Night.mp4
2013-07-05 14:42 - 2013-07-26 03:25 - 00000000 ____D C:\Users\Tobias\AppData\Local\Warframe
2013-07-03 20:42 - 2013-07-04 00:05 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN Sonar
2013-06-30 11:28 - 2013-07-26 03:25 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\Documents\Battlefield 3
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN
2013-06-30 11:25 - 2013-06-30 11:25 - 00001178 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2013-06-29 19:31 - 2013-06-29 19:31 - 00000222 _____ C:\Users\Tobias\Desktop\Warframe.url
124
==================== One Month Modified Files and Folders =======
2013-07-29 21:32 - 2013-03-28 18:39 - 00000000 ____D C:\Users\Tobias\AppData\Local\LogMeIn Hamachi
2013-07-29 21:32 - 2013-03-06 19:46 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-29 21:32 - 2013-03-05 20:57 - 01797040 _____ C:\Windows\WindowsUpdate.log
2013-07-29 21:30 - 2013-07-29 21:29 - 00000792 _____ C:\AdwCleaner[S3].txt
2013-07-29 21:29 - 2013-07-29 21:29 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner (1).exe
2013-07-29 21:29 - 2013-07-29 21:29 - 00562353 _____ (Oleg N. Scherbakov) C:\Users\Tobias\Desktop\JRT.exe
2013-07-29 21:29 - 2013-03-11 21:13 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Audacity
2013-07-29 21:27 - 2013-07-29 21:27 - 00001015 _____ C:\Users\ADMIN\Desktop\Audacity.lnk
2013-07-29 21:27 - 2013-07-29 21:27 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-07-29 21:26 - 2013-07-29 21:26 - 21281052 _____ (Audacity Team ) C:\Users\Tobias\Downloads\audacity-win-2.0.3.exe
2013-07-29 21:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-07-29 20:21 - 2013-03-27 22:38 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\TS3Client
2013-07-29 20:10 - 2013-07-29 20:10 - 00002523 _____ C:\Users\Tobias\Desktop\Profileditor.lnk
2013-07-29 20:10 - 2013-07-29 20:10 - 00002497 _____ C:\Users\Tobias\Desktop\Profiler.lnk
2013-07-29 20:09 - 2013-07-29 20:09 - 00000000 ____D C:\Users\Tobias\AppData\Local\SmartTechnology
2013-07-29 20:09 - 2013-07-29 20:09 - 00000000 ____D C:\Users\ADMIN\AppData\Local\SmartTechnology
2013-07-29 20:07 - 2013-07-29 20:07 - 00000000 ____D C:\ProgramData\SmartTechnology
2013-07-29 20:07 - 2013-07-29 20:07 - 00000000 ____D C:\Program Files\SmartTechnology
2013-07-29 20:07 - 2012-07-26 09:21 - 00052975 _____ C:\Windows\setupact.log
2013-07-29 19:57 - 2013-04-08 02:10 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-07-29 19:57 - 2013-03-11 08:42 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-07-29 19:56 - 2013-03-11 08:42 - 00280904 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-07-29 19:55 - 2013-04-23 14:32 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-29 19:08 - 2013-07-29 19:08 - 00032844 _____ C:\Users\Tobias\Desktop\Addition.txt
2013-07-29 19:07 - 2013-07-29 19:07 - 00042854 _____ C:\Users\Tobias\Downloads\FRST.txt
2013-07-29 19:07 - 2013-07-29 19:07 - 00016464 _____ C:\Users\Tobias\Downloads\Addition.txt
2013-07-29 19:06 - 2013-07-29 19:06 - 00000000 ____D C:\FRST
2013-07-29 19:05 - 2013-07-29 19:05 - 01780547 _____ (Farbar) C:\Users\Tobias\Desktop\FRST64.exe
2013-07-29 18:59 - 2013-07-26 03:29 - 05056080 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-29 18:58 - 2013-07-29 18:46 - 61046784 _____ (Mad catz ) C:\Users\Tobias\Downloads\Nicht bestätigt 90118.crdownload
2013-07-29 18:57 - 2013-07-29 18:57 - 00000978 _____ C:\AdwCleaner[S2].txt
2013-07-29 18:52 - 2013-07-29 18:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SaiK1703_01009.Wdf
2013-07-29 18:49 - 2013-07-29 18:47 - 07837816 _____ (Mad catz ) C:\Users\Tobias\Downloads\Range_RAT3_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe
2013-07-29 18:40 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-07-26 15:13 - 2013-07-26 14:55 - 00000000 ____D C:\Users\ADMIN\Documents\VirtualDJ
2013-07-26 14:55 - 2013-07-26 14:55 - 00001054 _____ C:\Users\ADMIN\Desktop\VirtualDJ Home FREE.lnk
2013-07-26 14:55 - 2013-07-26 14:55 - 00000000 ____D C:\Program Files (x86)\VirtualDJ
2013-07-26 14:54 - 2013-07-26 14:53 - 38944576 _____ (Atomix Productions) C:\Users\Tobias\Desktop\install_virtualdj_home_v7.4.exe
2013-07-26 14:52 - 2013-07-26 14:50 - 00000000 ____D C:\Users\Tobias\Desktop\ZOOOKAAAAAN
2013-07-26 14:46 - 2012-11-05 18:36 - 00752930 _____ C:\Windows\system32\perfh007.dat
2013-07-26 14:46 - 2012-11-05 18:36 - 00156156 _____ C:\Windows\system32\perfc007.dat
2013-07-26 14:46 - 2012-07-26 09:28 - 01748838 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-26 04:34 - 2013-03-11 09:54 - 00000000 ____D C:\Users\Tobias\Desktop\ToBi
2013-07-26 04:22 - 2013-07-26 04:22 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-07-26 04:21 - 2012-11-05 17:57 - 00042782 _____ C:\Windows\PFRO.log
2013-07-26 04:15 - 2013-07-26 04:15 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-26 04:15 - 2013-07-26 04:15 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-26 04:15 - 2013-07-26 04:14 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-26 04:08 - 2013-07-26 04:07 - 00140558 _____ C:\Users\Tobias\Desktop\Extras.txt
2013-07-26 04:07 - 2013-07-26 04:07 - 00062897 _____ C:\Users\Tobias\Desktop\OTL.txt
2013-07-26 04:03 - 2013-07-26 04:03 - 00140558 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-07-26 04:02 - 2013-07-26 04:02 - 00125796 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-07-26 03:56 - 2013-07-26 03:56 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-07-26 03:37 - 2013-07-26 03:37 - 00030996 _____ C:\AdwCleaner[S1].txt
2013-07-26 03:37 - 2013-07-26 03:37 - 00000207 _____ C:\Windows\DeleteOnReboot.bat
2013-07-26 03:37 - 2013-03-06 17:53 - 00000000 ____D C:\Users\ADMIN
2013-07-26 03:36 - 2013-07-26 03:36 - 00666633 _____ C:\Users\Tobias\Downloads\adwcleaner.exe
2013-07-26 03:36 - 2013-07-26 03:36 - 00000066 _____ C:\Users\Tobias\Desktop\Neues Textdokument.txt
2013-07-26 03:30 - 2013-07-26 03:30 - 00000930 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-07-26 03:30 - 2013-07-26 03:30 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-07-26 03:29 - 2013-03-10 23:04 - 00000000 ____D C:\Users\Tobias
2013-07-26 03:28 - 2013-07-26 03:18 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-07-26 03:28 - 2013-01-11 14:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-07-26 03:26 - 2013-01-11 14:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-07-26 03:26 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\security
2013-07-26 03:26 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\Help
2013-07-26 03:25 - 2013-07-05 14:42 - 00000000 ____D C:\Users\Tobias\AppData\Local\Warframe
2013-07-26 03:25 - 2013-06-30 11:28 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-07-26 03:25 - 2013-05-27 20:24 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-07-26 03:25 - 2013-05-11 20:21 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-07-26 03:25 - 2013-03-11 20:11 - 00000000 ____D C:\Program Files (x86)\Tony Hawk's Underground 2
2013-07-26 03:24 - 2013-07-25 22:13 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2013-07-26 03:23 - 2013-07-26 03:14 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Pokki
2013-07-26 03:23 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\registration
2013-07-26 03:22 - 2013-07-13 12:53 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\.minecraft
2013-07-26 03:22 - 2013-01-11 14:01 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-26 03:18 - 2013-07-26 03:18 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\WinZipper
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\UserData
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\f22abfeae27a67446927d078890381efc546d3e1
2013-07-26 03:15 - 2013-07-26 03:15 - 00000000 ____D C:\cfada041afdc4a11092a096cac66ab6a0945d92b
2013-07-26 00:24 - 2013-07-26 00:24 - 00028332 _____ C:\Users\Tobias\Downloads\MW3_FoV_Changer_v1-9-446-0.zip
2013-07-25 22:13 - 2013-07-25 22:13 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Gameforge4d
2013-07-25 21:35 - 2013-01-11 14:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-07-25 00:21 - 2013-07-19 02:22 - 00000116 _____ C:\Users\Tobias\Desktop\Neues Textdokument (2).txt
2013-07-21 13:43 - 2012-11-05 19:36 - 00449509 _____ C:\Windows\DirectX.log
2013-07-20 21:36 - 2013-07-20 21:36 - 00076169 _____ C:\Users\Tobias\Downloads\Multihack.rar
2013-07-20 17:10 - 2013-07-19 15:02 - 00002816 _____ C:\Windows\windefendam.log
2013-07-20 17:10 - 2013-07-19 15:02 - 00000020 _____ C:\Windows\capsys184523.log
2013-07-20 15:26 - 2013-07-20 15:24 - 64079267 _____ C:\Users\Tobias\Downloads\Misa.zip
2013-07-20 03:55 - 2013-07-20 03:55 - 00000000 ____D C:\Users\Tobias\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Clover
2013-07-20 03:51 - 2013-07-20 03:51 - 00000000 ____D C:\Program Files (x86)\Clover
2013-07-20 03:50 - 2013-07-20 03:50 - 02626108 _____ C:\Users\Tobias\Downloads\Clover_Setup_3.0.365.zip
2013-07-20 03:46 - 2013-07-20 03:45 - 14910445 _____ C:\Users\Tobias\Downloads\Peacekeeper Skins.rar
2013-07-20 03:42 - 2013-07-20 03:42 - 00000861 _____ C:\Users\Tobias\Desktop\LAUNCHIW4M - Verknüpfung.lnk
2013-07-20 03:41 - 2013-07-20 03:41 - 02322852 _____ C:\Users\Tobias\Downloads\pro radar.rar
2013-07-20 00:41 - 2013-07-20 00:41 - 00046837 _____ C:\Users\Tobias\Downloads\NoRecoil.rar
2013-07-20 00:36 - 2013-07-20 00:36 - 00015872 _____ C:\Users\Tobias\Downloads\MW3 4D1 FPS Unlocker.exe
2013-07-19 22:52 - 2013-07-19 22:52 - 00010709 _____ C:\Users\Tobias\Downloads\Ingame CAC by zxz.zip
2013-07-19 22:08 - 2013-07-19 22:04 - 107316220 _____ C:\Users\Tobias\Downloads\z_repzV2.iwd
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\Users\ADMIN\AppData\Roaming\Mirillis
2013-07-19 15:02 - 2013-07-19 15:02 - 00000000 ____D C:\ProgramData\Mirillis
2013-07-19 15:02 - 2013-07-19 15:01 - 00000000 ____D C:\Users\ADMIN\AppData\Local\Mirillis
2013-07-19 15:01 - 2013-07-19 15:01 - 00002303 _____ C:\Users\Public\Desktop\Action!.lnk
2013-07-19 15:01 - 2013-07-19 15:01 - 00000000 ____D C:\Action!
2013-07-19 15:00 - 2013-07-19 15:00 - 21092770 _____ C:\Users\Tobias\Downloads\Mirillis Action! 1.11.0.rar
2013-07-19 14:58 - 2013-07-19 14:58 - 00000000 ____D C:\NVIDIA
2013-07-19 14:58 - 2013-06-16 20:04 - 00000000 ____D C:\Users\Tobias\Desktop\Fraps
2013-07-19 14:55 - 2013-07-19 14:52 - 135162712 _____ (NVIDIA Corporation) C:\Users\Tobias\Downloads\320.49-desktop-win8-win7-winvista-32bit-english-whql.exe
2013-07-19 12:46 - 2013-07-19 12:44 - 91296414 _____ C:\Users\Tobias\Downloads\t6-rel2.rar
2013-07-18 19:28 - 2013-07-18 19:28 - 00000000 _____ C:\Users\Tobias\Downloads\server.log
2013-07-18 19:23 - 2013-07-18 19:23 - 00510899 _____ () C:\Users\Tobias\Downloads\FTB_Launcher.exe
2013-07-18 19:23 - 2013-04-22 17:20 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\ftblauncher
2013-07-18 19:23 - 2013-04-22 17:20 - 00000000 ____D C:\FEED THE BEAST
2013-07-18 17:25 - 2013-07-18 17:25 - 00367014 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Desktop\MagicLauncher_1.1.6.exe
2013-07-18 17:24 - 2013-07-18 17:24 - 00324419 _____ (hxxp://magiclauncher.com) C:\Users\Tobias\Downloads\MagicLauncher_1.0.0.exe
2013-07-14 17:07 - 2013-07-14 17:04 - 114760879 _____ C:\Users\Tobias\Downloads\OneLateNight.zip
2013-07-13 18:22 - 2013-07-13 18:22 - 00285184 _____ C:\Users\Tobias\Downloads\Minecraft Launcher Offline Patcher.zip
2013-07-13 08:27 - 2013-03-27 20:02 - 00002339 _____ C:\Users\Tobias\Desktop\Google Chrome.lnk
2013-07-12 21:11 - 2013-07-12 21:11 - 00166672 _____ () C:\Users\Tobias\Downloads\MCPatcher_downloader_by_MCPatcher.exe
2013-07-12 20:24 - 2013-07-12 20:24 - 02117546 _____ C:\Users\Tobias\Downloads\Blup.wmv
2013-07-12 20:24 - 2013-07-12 20:23 - 45340793 _____ C:\Users\Tobias\Downloads\Phil3992_Pack.zip
2013-07-12 20:23 - 2013-07-12 20:23 - 00010577 _____ C:\Users\Tobias\Downloads\MinecraftAdminTool.RAR
2013-07-12 17:30 - 2013-07-12 17:30 - 00000000 ____D C:\Windows\3F5C371F8EA24F259D3DD0B4526E3AEA.TMP
2013-07-12 17:28 - 2013-07-12 17:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\2K Games
2013-07-12 17:18 - 2013-07-12 17:18 - 01906970 _____ C:\Users\Tobias\Downloads\EAM (v1.0.25) & Playerstats Editor.rar
2013-07-12 16:35 - 2013-07-12 16:10 - 987132592 _____ C:\Users\Tobias\Downloads\MafiaIIDemo.exe
2013-07-12 16:08 - 2013-07-12 16:08 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.3
2013-07-12 16:08 - 2013-05-30 11:33 - 00001093 _____ C:\Users\ADMIN\Desktop\Cheat Engine.lnk
2013-07-12 16:07 - 2013-07-12 16:07 - 08062384 _____ (Cheat Engine ) C:\Users\Tobias\Downloads\CheatEngine63.exe
2013-07-12 15:38 - 2013-07-12 15:38 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004Core1ce7f051849627b.job
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Downloads\Minecraft.exe
2013-07-10 16:50 - 2013-07-10 16:50 - 00484992 _____ C:\Users\Tobias\Desktop\Minecraft.exe
2013-07-10 16:22 - 2013-07-10 16:22 - 11120515 _____ C:\Users\Tobias\Downloads\One Late Night.mp4
2013-07-04 00:05 - 2013-07-03 20:42 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN Sonar
2013-07-01 14:44 - 2013-05-07 13:35 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-06-30 11:33 - 2013-03-11 08:42 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\Documents\Battlefield 3
2013-06-30 11:28 - 2013-06-30 11:28 - 00000000 ____D C:\Users\Tobias\AppData\Local\ESN
2013-06-30 11:28 - 2013-03-11 09:44 - 00000000 ____D C:\Users\Tobias\AppData\Local\PunkBuster
2013-06-30 11:26 - 2013-03-30 14:28 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-06-30 11:25 - 2013-06-30 11:25 - 00001178 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2013-06-29 19:31 - 2013-06-29 19:31 - 00000222 _____ C:\Users\Tobias\Desktop\Warframe.url
2013-06-29 19:31 - 2013-03-27 20:05 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ToastData
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-06-29 18:54 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-06-29 18:54 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-06-29 18:54 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-06-29 18:36 - 2013-03-27 20:00 - 00001142 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2948387052-3577778483-2893961966-1004UA.job
2013-06-29 18:27 - 2013-05-27 20:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-29 17:03 - 2013-06-16 18:23 - 00000000 ____D C:\ProgramData\simplitec
2013-06-29 15:55 - 2013-01-11 13:50 - 00000870 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-06-29 14:42 - 2013-04-23 14:34 - 00000000 ____D C:\Users\Tobias\AppData\Local\Origin
2013-06-29 14:07 - 2013-04-23 14:34 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-06-29 14:06 - 2013-04-23 14:32 - 00000000 ____D C:\ProgramData\Origin
2013-06-29 12:58 - 2013-04-23 14:34 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Origin
2013-06-29 11:58 - 2013-01-11 13:50 - 00000868 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- ---
Und hier denn JRT log Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.7 (07.29.2013:1)
OS: Windows 8 x64
Ran by Tobias on 29.07.2013 at 21:39:55,06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2948387052-3577778483-2893961966-1004\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Bar
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\Default_Search_URL
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL\\Default
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\iminent
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\simplitec"
Successfully deleted: [Folder] "C:\Users\Tobias\AppData\Roaming\simplitec"
Failed to delete: [Folder] "C:\Program Files (x86)\simplitec"
~~~ FireFox
Successfully deleted: [File] C:\Users\Tobias\AppData\Roaming\mozilla\firefox\profiles\6e7nvncw.default\searchplugins\web search.xml
Successfully deleted the following from C:\Users\Tobias\AppData\Roaming\mozilla\firefox\profiles\6e7nvncw.default\prefs.js
user_pref("browser.newtab.url", "hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=nt&installDate=30/05/2013");
user_pref("browser.startup.homepage", "hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=hp&installDate=30/05/2013
user_pref("keyword.URL", "hxxp://feed.snap.do/?publisher=Somoto&dpid=Somoto&co=DE&userid=dcb23221-5f55-4058-96cc-5fc6ec9de387&searchtype=ds&installDate=30/05/2013&q=");
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.07.2013 at 21:42:18,19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
| schrauber | 30.07.2013 07:10 |
ESET Online Scanner - Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
- Lade und starte
Eset Online Scanner - Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
- Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
- Klicke auf Starten.
- Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
- Klicke am Ende des Suchlaufs auf Fertig stellen.
- Schließe das Fenster von ESET.
- Explorer öffnen.
- C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
- Logfile hier posten.
- Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
- Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset
Downloade Dir bitte  SecurityCheck und: - Speichere es auf dem Desktop.
- Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
- Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
und ein frisches FRST log bitte. Noch Probleme? :) |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 07:54 Uhr. | |
Copyright ©2000-2025, Trojaner-Board
Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.
