Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05-2014
Ran by Patrick at 2014-05-03 04:33:29
Running from C:\Users\Patrick\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.206 - Adobe Systems Incorporated)
aEton CommunicaEor (HKLM-x32\...\aEton CommunicaEor) (Version: 0.1.0.12 - aEton Usenet LTD)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
ARMA 3 Launcher By Head (HKLM-x32\...\ARMA 3 Launcher By Head) (Version: 1.0.0.0 - Whoopshop Studios)
Assassin’s Creed® III (HKLM-x32\...\Steam App 208480) (Version: - Ubisoft Montreal)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward - Sledgehammer Games)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version: - )
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESL Wire 1.17.0 (HKLM\...\ESL Wire_is1) (Version: - Turtle Entertainment GmbH)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version: - Ubisoft)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - Square Enix)
Hotspot Shield 3.25 (HKLM-x32\...\HotspotShield) (Version: 3.25 - AnchorFree Inc.)
Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version: - Hammerpoint Interactive)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.45 (HKLM\...\Logitech Gaming Software) (Version: 8.45.88 - Logitech Inc.)
Logitech SetPoint 6.52 (HKLM\...\sp6) (Version: 6.52.74 - Logitech)
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0 (x86 de)) (Version: 29.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.55 (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.55 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.22 (Version: 1.2.22 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.2.1.4399 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\T3V0bGFzdA==_is1) (Version: 1 - )
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
SHIELD Streaming (Version: 1.8.323 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.18051 - TeamViewer)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version: - The Creative Assembly)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.296 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.296 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.296 - TuneUp Software) Hidden
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Restore Points =========================
03-05-2014 01:18:58 TuneUp Utilities 2014 wird installiert
==================== Hosts content: ==========================
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {12241F58-D4E5-4C5A-B866-3EE9267ED13A} - System32\Tasks\AVG-Secure-Search-Update_0414c_rel => C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe [2014-04-24] ()
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {27970789-9284-477C-86EB-52814E72EB9B} - System32\Tasks\Microsoft Office 15 Sync Maintenance for TIGERUNDHASE-Patrick TigerundHase => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3634D07E-06FF-476F-9505-1C2B4A560650} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {63C420B3-E2A5-46DD-B306-3A486F9BB3DE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-04-10] (Microsoft Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6ACAF7A6-C878-435B-9E8A-F6F28EE3E47C} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2091321574-2286861353-877536314-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7E8D79F8-A3E3-4496-8F47-88AA03080222} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2091321574-2286861353-877536314-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {92D45469-F43C-42BD-A29F-40F9F192DA56} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2014-01-22] (RealNetworks, Inc.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A9415EAC-BCBA-47D9-931D-EF40686DDEAC} - System32\Tasks\AVG-Secure-Search-Update_0414c_rmv => C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe [2014-04-24] ()
Task: {ACEBF880-CF4C-4105-93DD-328D8349A88D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2091321574-2286861353-877536314-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {CB2F6B9C-0087-42C4-8EC2-3EDF24FF81BC} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2091321574-2286861353-877536314-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E9C30FD3-384E-4388-80EB-D716299308F1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-28] (Adobe Systems Incorporated)
Task: {F10FF439-2E0A-47DE-9304-7465E88800C3} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2091321574-2286861353-877536314-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rel.job => C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rmv.job => C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
==================== Loaded Modules (whitelisted) =============
2013-11-08 20:25 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-03-15 02:35 - 2014-03-15 02:35 - 00555304 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2013-08-14 16:19 - 2013-08-14 16:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2014-04-15 15:59 - 2014-04-15 15:59 - 00675640 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2014-04-24 20:53 - 2014-04-24 20:53 - 02725912 _____ () C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
2013-04-04 02:09 - 2013-04-04 02:09 - 04300432 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-03-19 20:38 - 2014-03-19 20:38 - 00908584 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2014-03-19 23:46 - 2014-03-19 23:46 - 00381224 _____ () C:\Program Files (x86)\Hotspot Shield\bin\cmwarchplugin.dll
2014-03-19 19:48 - 2014-03-19 19:48 - 00506664 _____ () C:\Program Files (x86)\Hotspot Shield\bin\HssRep.dll
2014-02-12 07:38 - 2014-02-12 07:38 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\16d775b1ea12cb97ca0cc77cde8e9fd8\PSIClient.ni.dll
2014-05-01 05:55 - 2014-04-22 11:25 - 03845232 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Patrick\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (05/03/2014 03:22:24 AM) (Source: Application Hang) (User: )
Description: Programm Integrator.exe, Version 14.0.1000.296 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 170c
Startzeit: 01cf666dfd67ae01
Endzeit: 4
Anwendungspfad: C:\Program Files (x86)\TuneUp Utilities 2014\Integrator.exe
Berichts-ID: 5ee8a0c6-d261-11e3-bea2-902b34553f00
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/03/2014 03:22:09 AM) (Source: Application Hang) (User: )
Description: Programm OneClick.exe, Version 14.0.1000.296 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: b6c
Startzeit: 01cf666e0a6913e1
Endzeit: 5
Anwendungspfad: C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe
Berichts-ID: 55c783fd-d261-11e3-bea2-902b34553f00
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/03/2014 03:19:18 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Volume bzw. Datenträger ist nicht richtig angeschlossen oder wurde nicht gefunden.
Fehlerkontext: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 00000000000001B0,0x00530194,0000000000000000,0,0000006BCBE9BE90,4096,[0]).
Vorgang:
Schattenkopien abfragen
Error: (05/03/2014 01:49:42 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Dead Island Epidemic.exe, Version: 4.3.3.30826, Zeitstempel: 0x52cd4305
Name des fehlerhaften Moduls: Dead Island Epidemic.exe, Version: 4.3.3.30826, Zeitstempel: 0x52cd4305
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032708
ID des fehlerhaften Prozesses: 0x11d8
Startzeit der fehlerhaften Anwendung: 0xDead Island Epidemic.exe0
Pfad der fehlerhaften Anwendung: Dead Island Epidemic.exe1
Pfad des fehlerhaften Moduls: Dead Island Epidemic.exe2
Berichtskennung: Dead Island Epidemic.exe3
Vollständiger Name des fehlerhaften Pakets: Dead Island Epidemic.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Dead Island Epidemic.exe5
Error: (05/03/2014 01:33:01 AM) (Source: Application Hang) (User: )
Description: Programm DayZ.exe, Version 0.44.123.800 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 13ec
Startzeit: 01cf665e9729b9e5
Endzeit: 4294967295
Anwendungspfad: D:\Programme\steamapps\common\DayZ\DayZ.exe
Berichts-ID: 18a7b6a4-d252-11e3-bea2-902b34553f00
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/03/2014 01:22:12 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/03/2014 00:49:42 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (05/02/2014 11:37:34 PM) (Source: Microsoft-Windows-LocationProvider) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database
Error: (05/02/2014 08:43:12 PM) (Source: ESENT) (User: )
Description: svchost (1504) SRUJet: Bei Datenbankwiederherstellung trat ein unerwarteter Fehler -344 auf.
Error: (05/02/2014 08:43:12 PM) (Source: ESENT) (User: )
Description: svchost (1504) SRUJet: Die Protokolldatei-Reihenfolge in "C:\WINDOWS\system32\SRU\" wurde durch einen schwerwiegenden Fehler angehalten. Für die Datenbank, die diese Protokolldatei-Reihenfolge verwendet, sind keine weiteren Aktualisierungen möglich. Bitte korrigieren Sie das Problem, und starten Sie erneut, oder führen Sie eine Wiederherstellung aus einer Sicherung durch.
System errors:
=============
Error: (05/03/2014 00:36:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x800f0902 fehlgeschlagen: Windows 8.1 Update für x64-basierte Systeme (KB2919355)
Error: (05/02/2014 08:20:27 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 02.05.2014 um 11:25:34 unerwartet heruntergefahren.
Error: (05/02/2014 10:00:00 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (05/01/2014 08:13:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (05/01/2014 00:40:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073712 fehlgeschlagen: Windows 8.1 Update für x64-basierte Systeme (KB2919355)
Error: (05/01/2014 10:00:01 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (05/01/2014 05:53:10 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update WiseEnhance" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/01/2014 05:40:20 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "MgAssist Service" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (05/01/2014 05:40:15 AM) (Source: Service Control Manager) (User: )
Description: Dienst "MgAssist Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/01/2014 05:39:57 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Search Protect by Conduit Updater" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Microsoft Office Sessions:
=========================
Error: (05/03/2014 03:22:24 AM) (Source: Application Hang)(User: )
Description: Integrator.exe14.0.1000.296170c01cf666dfd67ae014C:\Program Files (x86)\TuneUp Utilities 2014\Integrator.exe5ee8a0c6-d261-11e3-bea2-902b34553f00
Error: (05/03/2014 03:22:09 AM) (Source: Application Hang)(User: )
Description: OneClick.exe14.0.1000.296b6c01cf666e0a6913e15C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe55c783fd-d261-11e3-bea2-902b34553f00
Error: (05/03/2014 03:19:18 AM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 00000000000001B0,0x00530194,0000000000000000,0,0000006BCBE9BE90,4096,[0])
Vorgang:
Schattenkopien abfragen
Error: (05/03/2014 01:49:42 AM) (Source: Application Error)(User: )
Description: Dead Island Epidemic.exe4.3.3.3082652cd4305Dead Island Epidemic.exe4.3.3.3082652cd4305c00000050003270811d801cf665df2cc3b0eC:\Program Files (x86)\Steam\steamapps\common\Dead Island Epidemic\Dead Island Epidemic.exeC:\Program Files (x86)\Steam\steamapps\common\Dead Island Epidemic\Dead Island Epidemic.exe6e310064-d254-11e3-bea2-902b34553f00
Error: (05/03/2014 01:33:01 AM) (Source: Application Hang)(User: )
Description: DayZ.exe0.44.123.80013ec01cf665e9729b9e54294967295D:\Programme\steamapps\common\DayZ\DayZ.exe18a7b6a4-d252-11e3-bea2-902b34553f00
Error: (05/03/2014 01:22:12 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/03/2014 00:49:42 AM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe
Error: (05/02/2014 11:37:34 PM) (Source: Microsoft-Windows-LocationProvider)(User: NT-AUTORITÄT)
Description: -2147024883
Error: (05/02/2014 08:43:12 PM) (Source: ESENT)(User: )
Description: svchost1504SRUJet: -344
Error: (05/02/2014 08:43:12 PM) (Source: ESENT)(User: )
Description: svchost1504SRUJet: C:\WINDOWS\system32\SRU\
FRST Logfile:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-05-2014
Ran by Patrick (administrator) on TIGERUNDHASE on 03-05-2014 04:33:15
Running from C:\Users\Patrick\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
() C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDWebCam.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPictureViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDYT.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
() C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\HSSCP.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20461_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2991856 2013-02-21] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7468784 2013-02-28] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1225920 2014-04-02] (NVIDIA Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2201032 2014-04-02] (NVIDIA Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2014-01-22] (RealNetworks, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2091321574-2286861353-877536314-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1825984 2014-04-24] (Valve Corporation)
HKU\S-1-5-21-2091321574-2286861353-877536314-1002\...\Run: [DAEMON Tools Lite] => D:\Programme\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-2091321574-2286861353-877536314-1002\...\Run: [AVG-Secure-Search-Update_0414c] => C:\Program Files (x86)\Avg Secure Update\AVG-Secure-Search-Update_0414c.exe [2725912 2014-04-24] ()
HKU\S-1-5-21-2091321574-2286861353-877536314-1002\...\Run: [BackgroundContainerV2] => "C:\WINDOWS\SysWOW64\Rundll32.exe" "C:\Users\Patrick\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun
Startup: C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
ShortcutTarget: Logitech . Produktregistrierung.lnk -> C:\Program Files\Logitech Gaming Software\EReg\eReg.exe (Leader Technologies/Logitech)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1398915541&from=cor&uid=ST1500DM003-9YN16G_W241AYPSXXXXW241AYPS&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1398915541&from=cor&uid=ST1500DM003-9YN16G_W241AYPSXXXXW241AYPS&q={searchTerms}
URLSearchHook: HKLM-x32 - (No Name) - {e44a1809-4d10-4ab8-b343-3326b64c7cdd} - No File
SearchScopes: HKLM - {7D4DC4B9-9947-464F-BDAA-EF002A68651B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
SearchScopes: HKLM-x32 - {BC635699-9EDF-403F-ACBA-B540FDF50B99} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
SearchScopes: HKCU - DefaultScope {F1600FC8-347B-40F7-BED1-00EF8EF518A9} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3281675&CUI=UN38929885002785349&UM=2
SearchScopes: HKCU - {7D4DC4B9-9947-464F-BDAA-EF002A68651B} URL =
SearchScopes: HKCU - {F1600FC8-347B-40F7-BED1-00EF8EF518A9} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3281675&CUI=UN38929885002785349&UM=2
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {E44A1809-4D10-4AB8-B343-3326B64C7CDD} - No File
Tcpip\Parameters: [DhcpNameServer] 80.69.100.110 80.69.100.102
FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\yy23xn79.default
FF Homepage: https://www.facebook.com/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\yy23xn79.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2014-03-19]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-04-12]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-01-22]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
==================== Services (Whitelisted) =================
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [925480 2014-03-20] (AnchorFree Inc.)
S2 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [78512 2014-03-19] ()
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304 2014-03-15] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-04-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20541216 2014-04-02] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2140984 2014-04-15] (TuneUp Software)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [746392 2013-03-20] (Tunngle.net GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-05-29] (DT Soft Ltd)
R0 ESLWireAC; C:\Windows\System32\drivers\ESLWireACD.sys [189968 2013-06-06] (<Turtle Entertainment>)
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [54984 2014-03-19] (AnchorFree Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-01] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2014-05-03] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-21] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-03-19] (Anchorfree Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-03-26] (TuneUp Software)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-03 04:33 - 2014-05-03 04:33 - 00017433 _____ () C:\Users\Patrick\Downloads\FRST.txt
2014-05-03 04:33 - 2014-05-03 04:33 - 00000000 ____D () C:\FRST
2014-05-03 04:32 - 2014-05-03 04:32 - 02062336 _____ (Farbar) C:\Users\Patrick\Downloads\FRST64.exe
2014-05-03 04:07 - 2014-05-03 04:17 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-03 04:07 - 2014-05-03 04:07 - 00001120 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-03 04:07 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-05-03 04:07 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-05-03 04:07 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-05-03 04:06 - 2014-05-03 04:07 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Patrick\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-03 03:27 - 2014-05-03 03:27 - 00003756 _____ () C:\WINDOWS\System32\Tasks\Real Player-Online-Aktualisierungsprogramm
2014-05-03 03:27 - 2014-05-03 03:27 - 00003704 _____ () C:\WINDOWS\System32\Tasks\Java Update Scheduler
2014-05-03 03:21 - 2014-04-15 15:59 - 00040760 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2014-05-03 03:21 - 2014-04-15 15:59 - 00029496 _____ (TuneUp Software) C:\WINDOWS\system32\authuitu.dll
2014-05-03 03:21 - 2014-04-15 15:59 - 00025400 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\authuitu.dll
2014-05-03 03:20 - 2014-05-03 03:20 - 00002227 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00002207 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\TuneUp Software
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 ____D () C:\Users\Patrick\AppData\Local\TuneUp Software
2014-05-03 03:19 - 2014-05-03 03:20 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-05-03 03:18 - 2014-05-03 03:26 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-03 03:18 - 2014-05-03 03:21 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-03 03:18 - 2014-05-03 03:18 - 27883432 _____ (TuneUp Software) C:\Users\Patrick\Downloads\TuneUpUtilities2014_de-DE.exe
2014-05-03 01:57 - 2014-05-03 02:00 - 00000000 ____D () C:\ProgramData\ParetoLogic
2014-05-03 01:57 - 2014-05-03 01:57 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Patrick\Downloads\ParetoLogic PC Health Advisor_de.exe
2014-05-03 01:57 - 2014-05-03 01:57 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\ParetoLogic
2014-05-03 01:57 - 2014-05-03 01:57 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\DriverCure
2014-05-03 00:27 - 2014-05-03 00:27 - 00003338 _____ () C:\WINDOWS\System32\Tasks\{C2B018EF-7F5C-41BF-9B0F-E3D95F761626}
2014-05-03 00:26 - 2014-04-29 18:00 - 23133184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-03 00:26 - 2014-04-29 16:47 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-01 09:13 - 2014-05-01 09:13 - 09774581 _____ () C:\Users\Patrick\Downloads\Bodo Bach - Koks.7z
2014-05-01 06:25 - 2014-05-03 00:37 - 00000000 ____D () C:\ProgramData\Avira
2014-05-01 06:24 - 2014-05-01 06:25 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Patrick\Downloads\avira_de_av___ws(1).exe
2014-05-01 06:04 - 2014-05-01 06:17 - 00000000 ____D () C:\Users\Patrick\Downloads\backups
2014-05-01 06:02 - 2014-05-01 06:18 - 00011472 _____ () C:\Users\Patrick\Downloads\hijackthis.log
2014-05-01 06:01 - 2014-05-01 06:02 - 00388608 _____ (Trend Micro Inc.) C:\Users\Patrick\Downloads\HiJackThis204(1).exe
2014-05-01 06:01 - 2014-05-01 06:01 - 00388608 _____ (Trend Micro Inc.) C:\Users\Patrick\Downloads\HiJackThis204.exe
2014-05-01 05:55 - 2014-05-01 05:55 - 00001177 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-01 05:55 - 2014-05-01 05:55 - 00001165 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-01 05:55 - 2014-05-01 05:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-01 05:40 - 2014-05-01 19:58 - 00000000 ____D () C:\Program Files\CPUID
2014-05-01 05:39 - 2014-05-03 04:15 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\SupTab
2014-05-01 05:39 - 2014-05-03 00:27 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\sweet-page
2014-05-01 05:39 - 2014-05-01 05:44 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\Systweak
2014-05-01 05:39 - 2014-05-01 05:42 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Mobogenie
2014-05-01 05:39 - 2014-05-01 05:40 - 00000000 ____D () C:\Users\Patrick\AppData\Local\cache
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\Documents\Mobogenie
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\.android
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 _____ () C:\Users\Patrick\daemonprocess.txt
2014-05-01 05:38 - 2014-05-01 05:38 - 01688976 _____ ( ) C:\Users\Patrick\Downloads\cpu-z [1].exe
2014-05-01 05:37 - 2014-05-01 05:38 - 00692480 _____ () C:\Users\Patrick\Downloads\cpu-z.exe
2014-05-01 05:30 - 2014-05-01 05:30 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ARMA 3 Launcher By Head
2014-05-01 05:10 - 2014-05-01 05:57 - 00000000 ____D () C:\Users\Patrick\Desktop\Neuer Ordner (5)
2014-05-01 05:04 - 2014-05-01 07:10 - 00001213 _____ () C:\Users\Patrick\AppData\Roaming\BreakingPoint_Options.ini
2014-05-01 04:46 - 2014-05-01 06:44 - 00000282 _____ () C:\Users\Patrick\AppData\Roaming\BreakingPoint_Login.ini
2014-05-01 04:21 - 2014-05-01 04:21 - 00000904 _____ () C:\Users\Patrick\Desktop\Breaking Point.lnk
2014-05-01 04:19 - 2014-05-01 04:20 - 01686528 _____ (Alderon Games) C:\Users\Patrick\Downloads\BP_Installer.exe
2014-05-01 03:30 - 2014-05-01 07:10 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Arma 3
2014-05-01 03:30 - 2014-05-01 03:31 - 00000000 ____D () C:\Users\Patrick\Documents\Arma 3
2014-05-01 03:30 - 2014-05-01 03:30 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-04-30 20:10 - 2014-04-30 20:10 - 00000222 _____ () C:\Users\Patrick\Desktop\Arma 3.url
2014-04-30 05:52 - 2014-03-19 19:51 - 00054984 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys
2014-04-26 05:12 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2014-04-26 05:09 - 2014-03-04 16:35 - 25255256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 23716640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 17755424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 17561544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 15783992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 12708128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-04-26 05:09 - 2014-03-04 16:35 - 11636176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 11589272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 09728064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 09690424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 03143456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 02958792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 02783008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 02411976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 01885472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433523.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 01516488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433523.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00892704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00877856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00863064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00846168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00832936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00484296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00409544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00377688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00353504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00333600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00305600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00174296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2014-04-26 05:09 - 2014-03-04 16:35 - 00148016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2014-04-26 05:05 - 2014-03-21 21:43 - 00040392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2014-04-26 05:05 - 2014-03-21 21:43 - 00033568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2014-04-26 04:14 - 2014-04-26 04:14 - 00000219 _____ () C:\Users\Patrick\Desktop\Left 4 Dead 2.url
2014-04-24 20:53 - 2014-05-03 04:16 - 00000400 _____ () C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rmv.job
2014-04-24 20:53 - 2014-05-03 04:16 - 00000400 _____ () C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rel.job
2014-04-24 20:53 - 2014-04-24 20:53 - 00002674 _____ () C:\WINDOWS\System32\Tasks\AVG-Secure-Search-Update_0414c_rmv
2014-04-24 20:53 - 2014-04-24 20:53 - 00002672 _____ () C:\WINDOWS\System32\Tasks\AVG-Secure-Search-Update_0414c_rel
2014-04-24 20:53 - 2014-04-24 20:53 - 00000000 ____D () C:\Program Files (x86)\Avg Secure Update
2014-04-24 03:48 - 2014-04-24 03:48 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\StunlockStudios
2014-04-24 03:47 - 2014-04-24 03:47 - 00000222 _____ () C:\Users\Patrick\Desktop\Dead Island Epidemic.url
2014-04-21 20:37 - 2014-04-21 20:37 - 01123441 _____ () C:\Users\Patrick\Downloads\Filme_Carrie.2013.German.DL.PAL.DVDR-WM.nzb
2014-04-21 17:39 - 2014-04-22 04:35 - 00000644 _____ () C:\Users\Patrick\Desktop\^Cs go befehle.txt
2014-04-20 14:30 - 2014-04-20 14:30 - 01070840 _____ (Solid State Networks) C:\Users\Patrick\Downloads\install_flashplayer13x32au_ltr5x64d_awc_aih(1).exe
2014-04-19 01:07 - 2014-04-19 01:07 - 00004253 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-19 01:07 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-04-19 01:07 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-04-19 01:07 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-04-19 01:07 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-04-17 17:05 - 2014-04-17 17:07 - 406228158 _____ () C:\Users\Patrick\Downloads\AmberSpanksAbbey1Full.mov
2014-04-17 17:05 - 2014-04-17 17:06 - 99135947 _____ () C:\Users\Patrick\Downloads\AmberandAbbeykitchen2.mov
2014-04-17 17:05 - 2014-04-17 17:06 - 160152136 _____ () C:\Users\Patrick\Downloads\AmberandAbbeyKitchen1.mov
2014-04-17 17:02 - 2014-04-17 17:05 - 646879244 _____ () C:\Users\Patrick\Downloads\Cannamiss.mov
2014-04-17 17:01 - 2014-04-17 17:01 - 88041025 _____ () C:\Users\Patrick\Downloads\AmberSpanksAbbeyVegas.mov
2014-04-17 16:58 - 2014-04-17 16:59 - 183207238 _____ () C:\Users\Patrick\Downloads\sa371.mov
2014-04-17 16:51 - 2014-04-17 16:51 - 264952326 _____ () C:\Users\Patrick\Downloads\adn021.mov
2014-04-15 22:59 - 2014-04-15 22:59 - 01571648 _____ (AVM Software Inc.) C:\Users\Patrick\Documents\pal_install_a4650_r131001_p97000.exe
2014-04-13 16:01 - 2014-04-13 16:02 - 01070840 _____ (Solid State Networks) C:\Users\Patrick\Downloads\install_flashplayer13x32au_ltr5x64d_awc_aih.exe
2014-04-10 04:47 - 2014-04-10 04:47 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-04-10 04:47 - 2014-04-10 04:47 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-04-10 04:47 - 2014-03-10 12:35 - 02008408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-04-10 04:47 - 2014-03-10 12:35 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-04-10 04:47 - 2014-03-06 11:19 - 01287576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-04-10 04:47 - 2014-03-06 11:02 - 01109424 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-04-10 04:47 - 2014-03-06 08:17 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-04-10 04:47 - 2014-03-06 08:10 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-04-06 05:50 - 2014-04-06 05:50 - 135351737 _____ () C:\Users\Patrick\Downloads\sa196.mov
2014-04-06 05:49 - 2014-04-06 05:48 - 00000413 _____ () C:\Users\Patrick\Downloads\sa105mov.htm
2014-04-06 05:05 - 2014-04-06 05:05 - 83846847 _____ () C:\Users\Patrick\Downloads\sa127.mov
2014-04-06 00:38 - 2014-04-06 01:10 - 1576243053 _____ () C:\Users\Patrick\Downloads\Grave Encounters 2.mkv
2014-04-06 00:29 - 2014-04-06 00:29 - 01196845 _____ () C:\Users\Patrick\Downloads\Filme_Grave Encounters 2011 German 720p BluRay x264.nzb
==================== One Month Modified Files and Folders =======
2014-05-03 04:33 - 2014-05-03 04:33 - 00017433 _____ () C:\Users\Patrick\Downloads\FRST.txt
2014-05-03 04:33 - 2014-05-03 04:33 - 00000000 ____D () C:\FRST
2014-05-03 04:32 - 2014-05-03 04:32 - 02062336 _____ (Farbar) C:\Users\Patrick\Downloads\FRST64.exe
2014-05-03 04:22 - 2013-09-30 06:14 - 01780340 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-03 04:22 - 2013-09-30 05:56 - 00765378 _____ () C:\WINDOWS\system32\perfh007.dat
2014-05-03 04:22 - 2013-09-30 05:56 - 00159696 _____ () C:\WINDOWS\system32\perfc007.dat
2014-05-03 04:21 - 2014-01-13 19:39 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{51CF3EB9-BDA1-4450-B979-BDC2D241BED9}
2014-05-03 04:21 - 2013-11-08 20:25 - 01919231 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-03 04:21 - 2013-04-12 18:19 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2091321574-2286861353-877536314-1002
2014-05-03 04:17 - 2014-05-03 04:07 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-03 04:17 - 2013-11-09 12:28 - 00000000 __RDO () C:\Users\Patrick\SkyDrive
2014-05-03 04:17 - 2013-04-12 18:24 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-03 04:16 - 2014-04-24 20:53 - 00000400 _____ () C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rmv.job
2014-05-03 04:16 - 2014-04-24 20:53 - 00000400 _____ () C:\WINDOWS\Tasks\AVG-Secure-Search-Update_0414c_rel.job
2014-05-03 04:16 - 2013-11-08 20:25 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-03 04:16 - 2013-09-29 21:04 - 00111148 _____ () C:\WINDOWS\PFRO.log
2014-05-03 04:16 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-03 04:15 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\SupTab
2014-05-03 04:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Branding
2014-05-03 04:15 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-05-03 04:15 - 2013-05-09 00:04 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\TS3Client
2014-05-03 04:07 - 2014-05-03 04:07 - 00001120 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-03 04:07 - 2014-05-03 04:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-05-03 04:07 - 2014-05-03 04:06 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Patrick\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-03 04:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-05-03 03:45 - 2013-04-12 18:40 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-03 03:39 - 2013-04-09 14:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-03 03:27 - 2014-05-03 03:27 - 00003756 _____ () C:\WINDOWS\System32\Tasks\Real Player-Online-Aktualisierungsprogramm
2014-05-03 03:27 - 2014-05-03 03:27 - 00003704 _____ () C:\WINDOWS\System32\Tasks\Java Update Scheduler
2014-05-03 03:26 - 2014-05-03 03:18 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-03 03:21 - 2014-05-03 03:18 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-03 03:20 - 2014-05-03 03:20 - 00002227 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00002219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00002207 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\TuneUp Software
2014-05-03 03:20 - 2014-05-03 03:20 - 00000000 ____D () C:\Users\Patrick\AppData\Local\TuneUp Software
2014-05-03 03:20 - 2014-05-03 03:19 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-05-03 03:18 - 2014-05-03 03:18 - 27883432 _____ (TuneUp Software) C:\Users\Patrick\Downloads\TuneUpUtilities2014_de-DE.exe
2014-05-03 02:00 - 2014-05-03 01:57 - 00000000 ____D () C:\ProgramData\ParetoLogic
2014-05-03 01:57 - 2014-05-03 01:57 - 05249448 _____ (ParetoLogic Inc.) C:\Users\Patrick\Downloads\ParetoLogic PC Health Advisor_de.exe
2014-05-03 01:57 - 2014-05-03 01:57 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\ParetoLogic
2014-05-03 01:57 - 2014-05-03 01:57 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\DriverCure
2014-05-03 01:20 - 2014-01-13 18:41 - 00005160 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for TIGERUNDHASE-Patrick TigerundHase
2014-05-03 01:10 - 2013-12-04 19:16 - 00003374 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2091321574-2286861353-877536314-1002
2014-05-03 01:10 - 2013-12-04 19:16 - 00003320 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2091321574-2286861353-877536314-1002
2014-05-03 00:37 - 2014-05-01 06:25 - 00000000 ____D () C:\ProgramData\Avira
2014-05-03 00:28 - 2013-08-09 10:31 - 00003892 _____ () C:\WINDOWS\avmadd321.log
2014-05-03 00:28 - 2013-08-09 10:31 - 00001678 _____ () C:\WINDOWS\avmadd32.log
2014-05-03 00:27 - 2014-05-03 00:27 - 00003338 _____ () C:\WINDOWS\System32\Tasks\{C2B018EF-7F5C-41BF-9B0F-E3D95F761626}
2014-05-03 00:27 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\sweet-page
2014-05-03 00:25 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-05-03 00:25 - 2013-06-01 16:22 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-03 00:24 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-02 23:37 - 2013-08-22 16:46 - 00339463 _____ () C:\WINDOWS\setupact.log
2014-05-02 22:33 - 2013-11-08 20:29 - 00000000 ____D () C:\Users\Patrick
2014-05-01 23:00 - 2013-04-14 15:31 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\vlc
2014-05-01 19:58 - 2014-05-01 05:40 - 00000000 ____D () C:\Program Files\CPUID
2014-05-01 09:13 - 2014-05-01 09:13 - 09774581 _____ () C:\Users\Patrick\Downloads\Bodo Bach - Koks.7z
2014-05-01 07:10 - 2014-05-01 05:04 - 00001213 _____ () C:\Users\Patrick\AppData\Roaming\BreakingPoint_Options.ini
2014-05-01 07:10 - 2014-05-01 03:30 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Arma 3
2014-05-01 06:44 - 2014-05-01 04:46 - 00000282 _____ () C:\Users\Patrick\AppData\Roaming\BreakingPoint_Login.ini
2014-05-01 06:25 - 2014-05-01 06:24 - 04530864 _____ (Avira Operations GmbH & Co. KG) C:\Users\Patrick\Downloads\avira_de_av___ws(1).exe
2014-05-01 06:18 - 2014-05-01 06:02 - 00011472 _____ () C:\Users\Patrick\Downloads\hijackthis.log
2014-05-01 06:17 - 2014-05-01 06:04 - 00000000 ____D () C:\Users\Patrick\Downloads\backups
2014-05-01 06:02 - 2014-05-01 06:01 - 00388608 _____ (Trend Micro Inc.) C:\Users\Patrick\Downloads\HiJackThis204(1).exe
2014-05-01 06:02 - 2013-04-12 18:14 - 00000000 ____D () C:\Users\Patrick\AppData\Local\VirtualStore
2014-05-01 06:01 - 2014-05-01 06:01 - 00388608 _____ (Trend Micro Inc.) C:\Users\Patrick\Downloads\HiJackThis204.exe
2014-05-01 05:57 - 2014-05-01 05:10 - 00000000 ____D () C:\Users\Patrick\Desktop\Neuer Ordner (5)
2014-05-01 05:55 - 2014-05-01 05:55 - 00001177 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-01 05:55 - 2014-05-01 05:55 - 00001165 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-01 05:55 - 2014-05-01 05:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-01 05:55 - 2014-03-19 22:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-01 05:55 - 2013-08-27 03:07 - 00000000 ____D () C:\coolspot AG
2014-05-01 05:52 - 2014-03-06 20:48 - 00055296 ___SH () C:\Users\Patrick\Desktop\Thumbs.db
2014-05-01 05:44 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\Systweak
2014-05-01 05:42 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Mobogenie
2014-05-01 05:40 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\AppData\Local\cache
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\Documents\Mobogenie
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 ____D () C:\Users\Patrick\.android
2014-05-01 05:39 - 2014-05-01 05:39 - 00000000 _____ () C:\Users\Patrick\daemonprocess.txt
2014-05-01 05:38 - 2014-05-01 05:38 - 01688976 _____ ( ) C:\Users\Patrick\Downloads\cpu-z [1].exe
2014-05-01 05:38 - 2014-05-01 05:37 - 00692480 _____ () C:\Users\Patrick\Downloads\cpu-z.exe
2014-05-01 05:30 - 2014-05-01 05:30 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ARMA 3 Launcher By Head
2014-05-01 05:10 - 2013-04-14 15:49 - 01015808 ___SH () C:\Users\Patrick\Downloads\Thumbs.db
2014-05-01 04:21 - 2014-05-01 04:21 - 00000904 _____ () C:\Users\Patrick\Desktop\Breaking Point.lnk
2014-05-01 04:20 - 2014-05-01 04:19 - 01686528 _____ (Alderon Games) C:\Users\Patrick\Downloads\BP_Installer.exe
2014-05-01 03:31 - 2014-05-01 03:30 - 00000000 ____D () C:\Users\Patrick\Documents\Arma 3
2014-05-01 03:30 - 2014-05-01 03:30 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-05-01 03:30 - 2013-04-12 19:39 - 00256874 _____ () C:\WINDOWS\DirectX.log
2014-04-30 20:10 - 2014-04-30 20:10 - 00000222 _____ () C:\Users\Patrick\Desktop\Arma 3.url
2014-04-30 05:58 - 2013-05-29 00:28 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Conduit
2014-04-30 05:52 - 2014-01-19 04:28 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield
2014-04-30 05:51 - 2014-01-19 04:28 - 00001070 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk
2014-04-29 18:00 - 2014-05-03 00:26 - 23133184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-04-29 16:47 - 2014-05-03 00:26 - 17074688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-04-28 19:37 - 2013-07-21 11:35 - 00000000 ____D () C:\Users\Patrick\AppData\Local\Adobe
2014-04-28 19:37 - 2013-04-12 18:40 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-04-26 05:12 - 2013-11-08 20:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-04-26 05:12 - 2013-04-12 18:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-04-26 05:06 - 2013-11-09 18:33 - 00000000 ____D () C:\Users\Patrick\AppData\Local\NVIDIA Corporation
2014-04-26 05:06 - 2013-11-08 20:25 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-04-26 04:14 - 2014-04-26 04:14 - 00000219 _____ () C:\Users\Patrick\Desktop\Left 4 Dead 2.url
2014-04-24 20:53 - 2014-04-24 20:53 - 00002674 _____ () C:\WINDOWS\System32\Tasks\AVG-Secure-Search-Update_0414c_rmv
2014-04-24 20:53 - 2014-04-24 20:53 - 00002672 _____ () C:\WINDOWS\System32\Tasks\AVG-Secure-Search-Update_0414c_rel
2014-04-24 20:53 - 2014-04-24 20:53 - 00000000 ____D () C:\Program Files (x86)\Avg Secure Update
2014-04-24 03:48 - 2014-04-24 03:48 - 00000000 ____D () C:\Users\Patrick\AppData\Roaming\StunlockStudios
2014-04-24 03:47 - 2014-04-24 03:47 - 00000222 _____ () C:\Users\Patrick\Desktop\Dead Island Epidemic.url
2014-04-23 21:06 - 2013-09-09 21:24 - 00000000 ____D () C:\Users\Patrick\Desktop\Neuer Ordner (3)
2014-04-23 02:24 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-04-23 02:24 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-22 04:35 - 2014-04-21 17:39 - 00000644 _____ () C:\Users\Patrick\Desktop\^Cs go befehle.txt
2014-04-21 21:30 - 2013-05-29 10:31 - 00000000 ____D () C:\Users\Patrick\AppData\Local\QuickPar
2014-04-21 20:37 - 2014-04-21 20:37 - 01123441 _____ () C:\Users\Patrick\Downloads\Filme_Carrie.2013.German.DL.PAL.DVDR-WM.nzb
2014-04-21 18:10 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-04-20 14:30 - 2014-04-20 14:30 - 01070840 _____ (Solid State Networks) C:\Users\Patrick\Downloads\install_flashplayer13x32au_ltr5x64d_awc_aih(1).exe
2014-04-19 01:09 - 2013-10-23 21:01 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-19 01:07 - 2014-04-19 01:07 - 00004253 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-19 01:07 - 2013-07-07 20:27 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-17 23:56 - 2013-07-21 12:14 - 00001093 _____ () C:\Users\Patrick\Desktop\Youtube.txt
2014-04-17 17:07 - 2014-04-17 17:05 - 406228158 _____ () C:\Users\Patrick\Downloads\AmberSpanksAbbey1Full.mov
2014-04-17 17:06 - 2014-04-17 17:05 - 99135947 _____ () C:\Users\Patrick\Downloads\AmberandAbbeykitchen2.mov
2014-04-17 17:06 - 2014-04-17 17:05 - 160152136 _____ () C:\Users\Patrick\Downloads\AmberandAbbeyKitchen1.mov
2014-04-17 17:05 - 2014-04-17 17:02 - 646879244 _____ () C:\Users\Patrick\Downloads\Cannamiss.mov
2014-04-17 17:01 - 2014-04-17 17:01 - 88041025 _____ () C:\Users\Patrick\Downloads\AmberSpanksAbbeyVegas.mov
2014-04-17 16:59 - 2014-04-17 16:58 - 183207238 _____ () C:\Users\Patrick\Downloads\sa371.mov
2014-04-17 16:51 - 2014-04-17 16:51 - 264952326 _____ () C:\Users\Patrick\Downloads\adn021.mov
2014-04-15 22:59 - 2014-04-15 22:59 - 01571648 _____ (AVM Software Inc.) C:\Users\Patrick\Documents\pal_install_a4650_r131001_p97000.exe
2014-04-15 15:59 - 2014-05-03 03:21 - 00040760 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2014-04-15 15:59 - 2014-05-03 03:21 - 00029496 _____ (TuneUp Software) C:\WINDOWS\system32\authuitu.dll
2014-04-15 15:59 - 2014-05-03 03:21 - 00025400 _____ (TuneUp Software) C:\WINDOWS\SysWOW64\authuitu.dll
2014-04-14 20:13 - 2014-04-19 01:07 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-19 01:07 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-19 01:07 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-19 01:07 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-04-13 16:02 - 2014-04-13 16:01 - 01070840 _____ (Solid State Networks) C:\Users\Patrick\Downloads\install_flashplayer13x32au_ltr5x64d_awc_aih.exe
2014-04-11 23:27 - 2014-01-13 19:40 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-10 05:07 - 2013-08-21 20:53 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-04-10 05:06 - 2013-04-14 16:19 - 90655440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-04-10 04:47 - 2014-04-10 04:47 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-04-10 04:47 - 2014-04-10 04:47 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-04-06 05:50 - 2014-04-06 05:50 - 135351737 _____ () C:\Users\Patrick\Downloads\sa196.mov
2014-04-06 05:48 - 2014-04-06 05:49 - 00000413 _____ () C:\Users\Patrick\Downloads\sa105mov.htm
2014-04-06 05:05 - 2014-04-06 05:05 - 83846847 _____ () C:\Users\Patrick\Downloads\sa127.mov
2014-04-06 01:10 - 2014-04-06 00:38 - 1576243053 _____ () C:\Users\Patrick\Downloads\Grave Encounters 2.mkv
2014-04-06 00:29 - 2014-04-06 00:29 - 01196845 _____ () C:\Users\Patrick\Downloads\Filme_Grave Encounters 2011 German 720p BluRay x264.nzb
2014-04-03 09:51 - 2014-05-03 04:07 - 00088280 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-05-03 04:07 - 00063192 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-05-03 04:07 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
Some content of TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
C:\Users\Patrick\AppData\Local\Temp\UNINSTALL.EXE
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-03 00:48
==================== End Of Log ============================
--- --- ---
--- --- ---
FRST 32-Bit | FRST 64-Bit
So funktioniert es:
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
