Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Posadi17 (https://www.trojaner-board.de/155547-posadi17.html)

doublepack 21.06.2014 10:25
Posadi17
 
Hallo,

Ich habe ein Problem ich war auf Klassenfahrt.
In diesem Zeitpunkt war meine Sister am Pc und alles so gut wie jeden sche*** runtergeladen :headbang:.
Seitdem ich wieder von der klassen fahrt wieder da mit kann ich nicht mal mehr videos kucken weil auf einmal ein anderes video am laufen ist mit dem Internet Explorer.
Selbst wenn ich denn pc starte kommt gleich im Hintergrund ein video und ich kann es nicht beenden ..
Der pc war sauber habe mit dem nie was gemacht vllt nur 1 mal im Monat Battlefield gespielt
brauche Hilfe bitte.

Mit Freundlichen Grüßen
Doublepack

schrauber 21.06.2014 11:12
Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

doublepack 21.06.2014 11:31
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-06-2014 01
Ran by Dome&Luke (administrator) on DOMELUKE on 21-06-2014 10:54:07
Running from C:\Users\Dome&Luke\Desktop
Platform: Windows 7 Home Premium Service Pack 3 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Users\Dome&Luke\AppData\Roaming\InetStat\inetstat.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2014-04-22] (Microsoft Corporation)
HKU\S-1-5-21-1866305474-3056176706-1639482995-1000\...\Run: [InetStat] => C:\Users\Dome&Luke\AppData\Roaming\InetStat\inetstat.exe [1259488 2014-05-20] ()
HKU\S-1-5-21-1866305474-3056176706-1639482995-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-16] (Glarysoft Ltd)
HKU\S-1-5-21-1866305474-3056176706-1639482995-1000\...\MountPoints2: {e9b43d21-d6a8-11e3-825b-38607782ca6c} - H:\Start.exe
AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~2.DLL => C:\Program Files (x86)\SupTab\SearchProtect64.dll [102512 2014-05-08] (Skytech Co., Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\SupTab\SEARCH~1.DLL => C:\Program Files (x86)\SupTab\SearchProtect32.dll [91248 2014-05-08] (Skytech Co., Ltd.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk *  BootDefrag.exe

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBE421832705DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX
SearchScopes: HKLM - DefaultScope {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
SearchScopes: HKLM - {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
SearchScopes: HKCU - {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: No Name - {11111111-1111-1111-1111-110511421146} -  No File
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: No Name - {11111111-1111-1111-1111-110511421146} -  No File
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FlowSurf - {E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0} - C:\Program Files (x86)\Flowsurf\FlowSurf.dll (FlowSurf Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default
FF DefaultSearchEngine: webssearches
FF SearchEngineOrder.1: Microsoft (Bing)
FF SelectedSearchEngine: webssearches
FF Homepage: hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX
FF Keyword.URL: hxxp://www.bing.com/search
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8118
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 8118
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Dome&Luke\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\searchplugins\bing-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\webssearches.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: leethax.net extension - C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\Extensions\leethax@leethax.net.xpi [2014-05-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-21]
FF HKLM-x32\...\Firefox\Extensions: [jid1-tofUlNEIFlkUIA@jetpack] - C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\0qwaz6w5.default\extensions\quick_start@gmail.com

Chrome:
=======
CHR HomePage: hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX
CHR StartupUrls: "hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX"
CHR DefaultSearchKeyword: webssearches
CHR DefaultSearchProvider: webssearches
CHR DefaultSearchURL: hxxp://istart.webssearches.com/web/?type=dspp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-01]
CHR Extension: (Google Drive) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-01]
CHR Extension: (YouTube) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-01]
CHR Extension: (Adblock Plus) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-06-20]
CHR Extension: (Google-Suche) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-01]
CHR Extension: (avast! Online Security) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-01]
CHR Extension: (MediaPlayerplus) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd [2014-06-02]
CHR Extension: (AdBlock Plus) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhlalolcniejfpochachikjfdmfjgbdk [2014-06-20]
CHR Extension: (Google Wallet) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-21]
CHR Extension: (Google Mail) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-21]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-21] (AVAST Software)
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [704112 2014-05-08] (Cherished Technololgy LIMITED)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-14] ()
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-04-22] (Microsoft Corporation) [File not signed]
S4 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]
S2 Update ScanTack; "C:\Program Files (x86)\ScanTack\updateScanTack.exe" [X]
S2 Util ScanTack; "C:\Program Files (x86)\ScanTack\bin\utilScanTack.exe" [X]

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-21] ()
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-03] (Glarysoft Ltd)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-19] (Glarysoft Ltd)
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [61736 2014-02-28] (NetFilterSDK.com)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-03-24] (Anchorfree Inc.)
R1 {9acd1534-e8f8-40cb-b5ac-4996fe01175b}Gw64; C:\Windows\System32\drivers\{9acd1534-e8f8-40cb-b5ac-4996fe01175b}Gw64.sys [61112 2014-05-16] (StdLib)
S3 OSFMount; \??\C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-21 10:54 - 2014-06-21 10:54 - 00017148 _____ () C:\Users\Dome&Luke\Desktop\FRST.txt
2014-06-21 10:53 - 2014-06-21 10:54 - 00000000 ____D () C:\FRST
2014-06-21 10:53 - 2014-06-21 10:53 - 02083328 _____ (Farbar) C:\Users\Dome&Luke\Desktop\FRST64.exe
2014-06-21 10:52 - 2014-06-21 10:52 - 01958440 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST64.exe
2014-06-21 10:44 - 2014-06-21 10:44 - 01070592 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST.exe
2014-06-20 23:35 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
2014-06-20 22:56 - 2014-06-20 23:00 - 109068563 _____ () C:\Users\Dome&Luke\Downloads\Pokemon Black.zip
2014-06-20 22:56 - 2014-06-20 22:56 - 00624872 _____ () C:\Users\Dome&Luke\Downloads\CR_Downloader_fuer_pokemon-black.exe
2014-06-20 22:53 - 2014-06-20 22:53 - 01096820 _____ () C:\Users\Dome&Luke\Downloads\desmume-0.9.10-win32.zip
2014-06-20 17:59 - 2014-06-20 17:59 - 00229152 _____ (Premium Installer ) C:\Users\Dome&Luke\Downloads\Player-Chrome.exe
2014-06-20 16:58 - 2014-06-20 17:15 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik(Luke
2014-06-20 16:33 - 2014-06-20 16:33 - 00000320 _____ () C:\Windows\PFRO.log
2014-06-20 16:19 - 2014-06-21 10:29 - 00000168 _____ () C:\Windows\setupact.log
2014-06-20 16:19 - 2014-06-20 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-18 20:06 - 2014-06-18 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-15 13:43 - 2014-06-15 13:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-06-15 11:23 - 2014-06-15 11:23 - 00001256 _____ () C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-06-15 08:57 - 2014-06-15 09:00 - 00737280 _____ (Indigo Rose Corporation) C:\Windows\iun6002.exe
2014-06-15 07:50 - 2014-06-15 07:50 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-15 01:41 - 2011-07-28 13:26 - 00000000 ____D () C:\Users\Dome&Luke\Documents\EA Games
2014-06-15 01:26 - 2014-06-15 01:26 - 00000000 ____D () C:\Users\Dome
2014-06-14 20:53 - 2014-06-14 20:56 - 00000000 ____D () C:\Users\Dome&Luke\Documents\BFH.Beta
2014-06-14 17:20 - 2014-06-15 11:19 - 00000000 ____D () C:\wintemp
2014-06-13 13:24 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-06-12 22:17 - 2014-06-20 14:33 - 00000234 _____ () C:\BackupLoader.ini
2014-06-12 22:17 - 2014-06-03 03:26 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-06-12 22:17 - 2014-06-03 03:05 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-06-10 23:25 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-10 23:25 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-10 23:25 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 23:25 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-10 23:25 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-10 23:25 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-10 23:25 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-10 23:25 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-10 23:25 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-10 23:25 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-10 23:25 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-10 23:25 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-10 23:25 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-10 23:25 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-10 23:25 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 23:25 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-10 23:25 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-10 23:25 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-10 23:25 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 23:25 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-10 23:25 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-10 23:25 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-10 23:25 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-10 23:25 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-10 23:25 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-10 23:25 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-10 23:25 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-10 23:25 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-10 23:25 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-10 23:25 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-10 23:25 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-10 23:25 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-10 23:25 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-10 23:25 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-10 23:25 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-10 23:25 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-10 23:25 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-10 23:25 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-10 23:25 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-10 23:25 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-10 23:25 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-10 23:25 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-10 23:25 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-10 23:25 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-10 23:25 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-10 23:25 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-10 23:25 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-10 23:25 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-10 23:25 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-10 23:25 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-10 23:25 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-10 23:25 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-10 23:04 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-10 23:04 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-10 23:03 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-10 23:03 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-10 23:03 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-10 23:03 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-10 23:03 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-10 23:03 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-10 23:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-10 23:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-10 23:03 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-10 23:03 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-10 23:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-10 23:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-10 23:02 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-10 23:02 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-30 14:07 - 2014-06-01 22:25 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-30 14:07 - 2014-05-30 14:07 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Mozilla
2014-05-30 14:06 - 2014-06-19 18:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 14:06 - 2014-05-30 14:06 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\SearchProtect
2014-05-27 22:42 - 2014-02-06 20:55 - 00123548 _____ () C:\Users\Dome&Luke\Desktop\dodo monatsbericht2.odt
2014-05-26 23:35 - 2014-06-20 22:57 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\vlc
2014-05-26 23:34 - 2014-05-26 23:34 - 00001196 _____ () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-05-26 23:34 - 2014-05-26 23:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 00:12 - 2014-05-26 00:12 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-05-25 23:39 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\Documents\GTA San Andreas User Files
2014-05-25 17:32 - 2014-05-25 17:32 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Rockstar Games
2014-05-25 17:27 - 2014-05-25 17:29 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Rockstar Games
2014-05-25 17:18 - 2014-05-25 17:18 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-05-24 23:48 - 2014-05-24 23:48 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\WorldofTanks
2014-05-24 23:37 - 2014-06-18 21:20 - 538006251 _____ () C:\Windows\MEMORY.DMP
2014-05-22 23:21 - 2014-05-22 23:21 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Games for Windows - LIVE Demos
2014-05-22 23:19 - 2014-05-22 23:19 - 00001340 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk

==================== One Month Modified Files and Folders =======

2014-06-21 10:54 - 2014-06-21 10:54 - 00017148 _____ () C:\Users\Dome&Luke\Desktop\FRST.txt
2014-06-21 10:54 - 2014-06-21 10:53 - 00000000 ____D () C:\FRST
2014-06-21 10:53 - 2014-06-21 10:53 - 02083328 _____ (Farbar) C:\Users\Dome&Luke\Desktop\FRST64.exe
2014-06-21 10:52 - 2014-06-21 10:52 - 01958440 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST64.exe
2014-06-21 10:44 - 2014-06-21 10:44 - 01070592 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST.exe
2014-06-21 10:36 - 2009-07-14 06:45 - 00014608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-21 10:36 - 2009-07-14 06:45 - 00014608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-21 10:32 - 2014-04-21 16:15 - 01366650 _____ () C:\Windows\WindowsUpdate.log
2014-06-21 10:30 - 2014-05-19 22:08 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2014-06-21 10:30 - 2014-05-19 22:08 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-06-21 10:29 - 2014-06-20 16:19 - 00000168 _____ () C:\Windows\setupact.log
2014-06-21 10:29 - 2014-04-27 15:03 - 00003130 _____ () C:\Windows\Tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job
2014-06-21 10:29 - 2014-04-21 20:06 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\DiskDefrag
2014-06-21 10:29 - 2014-04-21 16:45 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-21 10:29 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-21 02:07 - 2014-04-21 16:45 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-21 01:30 - 2014-04-22 01:58 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Spotify
2014-06-21 01:23 - 2014-04-27 15:05 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-20 23:57 - 2014-05-10 20:50 - 00000000 ____D () C:\ProgramData\Origin
2014-06-20 23:35 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
2014-06-20 23:35 - 2014-06-13 13:24 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-06-20 23:35 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-20 23:34 - 2014-05-10 22:01 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-20 23:33 - 2014-05-10 20:49 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-20 23:14 - 2014-04-28 14:11 - 00002790 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-20 23:00 - 2014-06-20 22:56 - 109068563 _____ () C:\Users\Dome&Luke\Downloads\Pokemon Black.zip
2014-06-20 22:57 - 2014-05-26 23:35 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\vlc
2014-06-20 22:57 - 2014-04-21 17:45 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\uTorrent
2014-06-20 22:56 - 2014-06-20 22:56 - 00624872 _____ () C:\Users\Dome&Luke\Downloads\CR_Downloader_fuer_pokemon-black.exe
2014-06-20 22:53 - 2014-06-20 22:53 - 01096820 _____ () C:\Users\Dome&Luke\Downloads\desmume-0.9.10-win32.zip
2014-06-20 17:59 - 2014-06-20 17:59 - 00229152 _____ (Premium Installer ) C:\Users\Dome&Luke\Downloads\Player-Chrome.exe
2014-06-20 17:15 - 2014-06-20 16:58 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik(Luke
2014-06-20 16:51 - 2014-04-21 17:28 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\.minecraft
2014-06-20 16:33 - 2014-06-20 16:33 - 00000320 _____ () C:\Windows\PFRO.log
2014-06-20 16:33 - 2014-05-08 17:19 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\LogMeIn Hamachi
2014-06-20 16:19 - 2014-06-20 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-20 14:39 - 2014-05-07 13:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterActual
2014-06-20 14:39 - 2014-05-07 13:20 - 00000000 ____D () C:\Program Files\InterActual
2014-06-20 14:36 - 2014-04-21 23:30 - 00000000 ____D () C:\Windows\Minidump
2014-06-20 14:36 - 2014-04-21 16:37 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Games
2014-06-20 14:33 - 2014-06-12 22:17 - 00000234 _____ () C:\BackupLoader.ini
2014-06-20 14:33 - 2014-05-19 22:08 - 00002988 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2014-06-20 14:33 - 2014-05-19 22:08 - 00002662 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2014-06-20 14:33 - 2014-05-19 22:08 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2014-06-20 14:33 - 2014-05-19 22:08 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2014-06-19 18:46 - 2014-04-21 19:59 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-19 18:45 - 2014-05-30 14:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-18 21:20 - 2014-05-24 23:37 - 538006251 _____ () C:\Windows\MEMORY.DMP
2014-06-18 20:06 - 2014-06-18 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 13:33 - 2014-04-21 17:32 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Skype
2014-06-17 02:02 - 2014-04-21 16:45 - 00004120 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-17 02:02 - 2014-04-21 16:45 - 00003868 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-16 20:27 - 2014-04-22 01:58 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Spotify
2014-06-15 17:16 - 2014-04-25 13:27 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik
2014-06-15 17:08 - 2014-04-21 16:57 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-15 16:08 - 2014-05-05 23:54 - 00000000 ____D () C:\Program Files (x86)\NosTale(DE)
2014-06-15 15:43 - 2014-05-11 13:54 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-06-15 15:43 - 2014-05-11 05:59 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-15 15:43 - 2014-05-11 05:59 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-15 14:55 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-15 13:50 - 2014-06-15 13:43 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-06-15 11:23 - 2014-06-15 11:23 - 00001256 _____ () C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-06-15 11:19 - 2014-06-14 17:20 - 00000000 ____D () C:\wintemp
2014-06-15 09:00 - 2014-06-15 08:57 - 00737280 _____ (Indigo Rose Corporation) C:\Windows\iun6002.exe
2014-06-15 07:50 - 2014-06-15 07:50 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-15 07:46 - 2014-05-15 22:40 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-15 01:26 - 2014-06-15 01:26 - 00000000 ____D () C:\Users\Dome
2014-06-14 20:56 - 2014-06-14 20:53 - 00000000 ____D () C:\Users\Dome&Luke\Documents\BFH.Beta
2014-06-14 20:53 - 2014-05-11 13:29 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-06-14 20:23 - 2014-05-11 05:59 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-06-14 20:23 - 2014-04-21 17:54 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-14 19:55 - 2014-05-08 15:49 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\DAEMON Tools Lite
2014-06-14 17:23 - 2009-07-14 19:58 - 00709706 _____ () C:\Windows\system32\perfh007.dat
2014-06-14 17:23 - 2009-07-14 19:58 - 00154142 _____ () C:\Windows\system32\perfc007.dat
2014-06-14 17:23 - 2009-07-14 07:13 - 01648684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Opera Software
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Opera Software
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-06-13 14:27 - 2014-04-24 18:15 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-06-13 13:08 - 2014-04-21 20:11 - 00000000 ___RD () C:\Users\Dome&Luke\Dropbox
2014-06-12 23:08 - 2014-04-27 15:05 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-12 23:08 - 2014-04-27 15:04 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-12 23:08 - 2014-04-27 15:04 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-11 03:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-11 03:04 - 2014-04-21 19:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 03:02 - 2014-04-21 19:59 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 03:00 - 2014-04-24 22:47 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-09 03:56 - 2014-05-01 12:07 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-08 11:13 - 2014-06-10 23:02 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-10 23:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-03 03:26 - 2014-06-12 22:17 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-06-03 03:05 - 2014-06-12 22:17 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-06-01 22:25 - 2014-05-30 14:07 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-01 22:25 - 2014-05-20 19:50 - 00000000 ____D () C:\Program Files (x86)\Flowsurf
2014-05-30 14:07 - 2014-05-30 14:07 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Mozilla
2014-05-30 14:06 - 2014-05-30 14:06 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\SearchProtect
2014-05-30 14:06 - 2013-08-17 22:15 - 00000000 _____ () C:\END
2014-05-30 12:21 - 2014-06-10 23:25 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-10 23:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-10 23:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-10 23:25 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-10 23:25 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-10 23:25 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-10 23:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-10 23:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-10 23:25 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-10 23:25 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-10 23:25 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-10 23:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-10 23:25 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-10 23:25 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-10 23:25 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-10 23:25 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-10 23:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-10 23:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-10 23:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-10 23:25 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-10 23:25 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-10 23:25 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-10 23:25 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-10 23:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-10 23:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:39 - 2014-04-21 17:32 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-30 10:39 - 2014-04-21 17:31 - 00000000 ____D () C:\ProgramData\Skype
2014-05-30 10:38 - 2014-06-10 23:25 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-10 23:25 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-10 23:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-10 23:25 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-10 23:25 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-10 23:25 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-10 23:25 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-10 23:25 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-10 23:25 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-10 23:25 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-10 23:25 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-10 23:25 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-10 23:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-10 23:25 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-10 23:25 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-10 23:25 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-10 23:25 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-10 23:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-10 23:25 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-10 23:25 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-10 23:25 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-10 23:25 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-10 23:25 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-10 23:25 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-10 23:25 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-10 23:25 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-10 23:25 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-29 21:54 - 2014-05-10 21:59 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Origin
2014-05-29 20:55 - 2014-05-10 21:59 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Origin
2014-05-27 21:03 - 2014-04-27 15:03 - 00000000 ____D () C:\Program Files (x86)\MediaPlayerplus
2014-05-26 23:34 - 2014-05-26 23:34 - 00001196 _____ () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
2014-05-26 23:34 - 2014-05-26 23:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-26 23:34 - 2014-05-05 17:57 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-05-26 23:30 - 2014-05-21 16:08 - 00000000 ____D () C:\Program Files (x86)\ScanTack
2014-05-26 16:54 - 2014-04-21 16:35 - 00001427 _____ () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-25 23:39 - 00000000 ____D () C:\Users\Dome&Luke\Documents\GTA San Andreas User Files
2014-05-26 13:32 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-26 00:13 - 2014-04-21 17:59 - 01675046 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-26 00:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Registration
2014-05-26 00:12 - 2014-05-26 00:12 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-05-25 21:20 - 2014-05-15 21:54 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\dvdcss
2014-05-25 17:32 - 2014-05-25 17:32 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Rockstar Games
2014-05-25 17:29 - 2014-05-25 17:27 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Rockstar Games
2014-05-25 17:18 - 2014-05-25 17:18 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-05-24 23:48 - 2014-05-24 23:48 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\WorldofTanks
2014-05-22 23:21 - 2014-05-22 23:21 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Games for Windows - LIVE Demos
2014-05-22 23:19 - 2014-05-22 23:19 - 00001340 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2014-05-22 23:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 00:24

==================== End Of Log ============================
--- --- ---

--- --- ---


Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-06-2014 01
Ran by Dome&Luke at 2014-06-21 10:54:58
Running from C:\Users\Dome&Luke\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Glary Utilities PRO 5.2 (HKLM-x32\...\Glary Utilities 5) (Version: 5.2.0.5 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Hama WLAN USB Stick (HKLM-x32\...\{DB6823F8-490F-46ED-9778-F1B2DD9032E5}) (Version: 1.00.0000 - Hama GmbH & Co KG)
InetStat (HKCU\...\InetStat) (Version: 0.4 - InetStat)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.193 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.193 - LogMeIn, Inc.) Hidden
MediaPlayerplus (HKLM-x32\...\MediaPlayerplus) (Version: 1.34.4.10 - Freeven) <==== ATTENTION
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8A809006-C25A-4A3A-9DAB-94659BCDB107}) (Version: 9.10.0224 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6531 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
RrFilter (Version: 1.0.0.0 - RrFilter) Hidden
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.10.14.g578d350b - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
System Update kb70007 (x32 Version: 1.0.0 - MSR) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.10 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.1 - win.rar GmbH)

==================== Restore Points  =========================

15-06-2014 09:23:26 Gerätetreiber-Paketinstallation: Elaborate Bytes AG Speichercontroller
15-06-2014 12:53:22 Removed BlueStacks Notification Center
17-06-2014 21:22:05 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {472FC2DE-7BD1-4408-B670-81AF57CCB7E2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {4E835023-4227-421B-9B28-7152814BDFDB} - System32\Tasks\b0625433-0826-4d86-9af6-bc28310b6329-3 => C:\Program Files (x86)\MediaPlayerplus\b0625433-0826-4d86-9af6-bc28310b6329-3.exe [2014-04-27] (Freeven) <==== ATTENTION
Task: {5D090AD2-ED84-4A14-AE48-5F9BEEA4B686} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-21] (Google Inc.)
Task: {6A5960CB-F688-4005-AA9C-918C53D5CF03} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-21] (Google Inc.)
Task: {993747D0-3EA9-4C96-9D20-E925FFF3B53D} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2014-06-16] (Glarysoft Ltd)
Task: {A2F60A74-0028-449C-9E2D-6BE5BCD58A4C} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2014-06-16] (Glarysoft Ltd)
Task: {B0451992-BC13-40E9-A43A-FF8475088D2F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-12] (Adobe Systems Incorporated)
Task: {C732FBAA-8E27-447F-A8C5-BAE4A988C354} - System32\Tasks\fsupdate => C:\Program Files (x86)\Flowsurf\fsupd.exe [2014-04-15] ()
Task: {F74FC283-A23E-48D3-8923-741BC1718AF9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-21] (AVAST Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job => C:\Program Files (x86)\MediaPlayerplus\b0625433-0826-4d86-9af6-bc28310b6329-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-11 05:59 - 2014-06-14 20:23 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-20 19:49 - 2014-05-20 19:49 - 01259488 _____ () C:\Users\Dome&Luke\AppData\Roaming\InetStat\inetstat.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-06-20 22:26 - 2014-06-20 22:26 - 02783232 _____ () C:\Program Files\AVAST Software\Avast\defs\14062001\algo.dll
2014-04-21 16:44 - 2014-04-21 16:44 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-16 10:37 - 2014-06-16 10:37 - 00080160 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00113171 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 02396179 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00268307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00027667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00031251 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00066579 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 02021395 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00100371 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00240659 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00076307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_vdr_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00045587 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00060947 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00531475 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00708627 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00114195 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00040467 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00014867 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00133139 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 01512467 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00296979 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 01248787 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00054291 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00038419 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libglobalhotkeys_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 11148307 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00025619 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00336403 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00016403 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00189971 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00146451 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00091667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00733203 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00067603 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00015891 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00077331 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00022035 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00021523 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00030739 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00021011 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00063507 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00036883 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00017427 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsvcdsub_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00019987 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00025619 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00024595 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcvdsub_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00064531 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00291859 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00017939 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 01280019 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00018451 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00344595 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00198675 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00027155 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 01371667 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00036371 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00116755 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_http_plugin.dll
2014-02-05 03:32 - 2014-02-05 03:32 - 00013843 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00018963 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00130579 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00168979 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00058899 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 01496083 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00019475 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00013331 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00014355 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00014867 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00014355 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00015379 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
2014-02-05 03:31 - 2014-02-05 03:31 - 00025619 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-06-10 23:06 - 2014-06-05 15:58 - 14612296 _____ () C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll
2014-06-18 20:06 - 2014-06-18 20:06 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: OverwolfUpdaterService => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SkinPackMenu.lnk => C:\Windows\pss\SkinPackMenu.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Dome&Luke^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: GoogleChromeAutoLaunch_DB0DF608A72DF0679B18528B6CB54FD8 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: Spotify => "C:\Users\Dome&Luke\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

==================== Faulty Device Manager Devices =============

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/15/2014 11:25:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm diesims2_update_cd.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: b6c

Startzeit: 01cf887baae4e53f

Endzeit: 0

Anwendungspfad: C:\Users\Dome&Luke\Downloads\diesims2_update_cd.exe

Berichts-ID: f0e17e53-f46e-11e3-81b6-38607782ca6c

Error: (06/15/2014 09:11:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Sims2EP9.exe, Version 1.17.0.66 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 4a80

Startzeit: 01cf8867af58702d

Endzeit: 62

Anwendungspfad: C:\Program Files (x86)\EA GAMES\The Sims 2 Mansion and Garden Stuff\TSBin\Sims2EP9.exe

Berichts-ID:

Error: (06/10/2014 10:58:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x13bc
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/09/2014 11:24:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1380
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/09/2014 03:56:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1754
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/09/2014 03:04:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1534
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/09/2014 02:47:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1354
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/06/2014 11:33:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1778
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/05/2014 11:09:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x1664
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (06/04/2014 06:39:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16545, Zeitstempel: 0x531a4f73
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18409, Zeitstempel: 0x53159a86
Ausnahmecode: 0xc06d007f
Fehleroffset: 0x0000c42d
ID des fehlerhaften Prozesses: 0x17f4
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3


System errors:
=============
Error: (06/21/2014 10:29:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/21/2014 10:29:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 11:15:52 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen:
%%5

Error: (06/20/2014 04:34:23 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (06/20/2014 04:33:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 04:33:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 04:19:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 04:19:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 02:33:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (06/20/2014 02:33:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update ScanTack" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2


Microsoft Office Sessions:
=========================
Error: (06/15/2014 11:25:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: diesims2_update_cd.exe0.0.0.0b6c01cf887baae4e53f0C:\Users\Dome&Luke\Downloads\diesims2_update_cd.exef0e17e53-f46e-11e3-81b6-38607782ca6c

Error: (06/15/2014 09:11:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Sims2EP9.exe1.17.0.664a8001cf8867af58702d62C:\Program Files (x86)\EA GAMES\The Sims 2 Mansion and Garden Stuff\TSBin\Sims2EP9.exe

Error: (06/10/2014 10:58:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d13bc01cf84eec75133d1C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dll063393c3-f0e2-11e3-b3b6-38607782ca6c

Error: (06/09/2014 11:24:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d138001cf842941a1b991C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dll8024e11e-f01c-11e3-bb22-38607782ca6c

Error: (06/09/2014 03:56:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d175401cf83ea9ea78fe9C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dllddf4c12c-efdd-11e3-bbd5-38607782ca6c

Error: (06/09/2014 03:04:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d153401cf837ec06d0190C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dllfe596528-ef71-11e3-a2eb-38607782ca6c

Error: (06/09/2014 02:47:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d135401cf837c671ffeefC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dlla643d5a7-ef6f-11e3-888b-38607782ca6c

Error: (06/06/2014 11:33:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d177801cf81cee9854f00C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dll27b1c9c9-edc2-11e3-8e77-38607782ca6c

Error: (06/05/2014 11:09:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d166401cf81027a76a223C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dllb94bde3e-ecf5-11e3-947d-38607782ca6c

Error: (06/04/2014 06:39:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe9.0.8112.16545531a4f73KERNELBASE.dll6.1.7601.1840953159a86c06d007f0000c42d17f401cf80138ecd950aC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\syswow64\KERNELBASE.dllcd175c40-ec06-11e3-baf3-38607782ca6c


==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 8178.85 MB
Available physical RAM: 5651.6 MB
Total Pagefile: 16355.88 MB
Available Pagefile: 13410.26 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:1850.26 GB) (Free:1761.39 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:12.66 GB) (Free:12.53 GB) NTFS
Drive g: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 6EE1AC6B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=-212319862784) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=13 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber 21.06.2014 22:09
Adware & Co. deinstallieren

Solltest Du ein Programm nicht finden oder nicht deinstallieren können, mache bitte mit dem nächsten Schritt weiter:




Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

doublepack 22.06.2014 10:51
Habe alles gemacht nur bei einem programm habe ich keine txt das war bei dem JRT programm sonst habe ich alles.


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-06-2014 01
Ran by Dome&Luke (administrator) on DOMELUKE on 22-06-2014 11:47:35
Running from C:\Users\Dome&Luke\Desktop
Platform: Windows 7 Home Premium Service Pack 3 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\reg.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2014-04-22] (Microsoft Corporation)
HKU\S-1-5-21-1866305474-3056176706-1639482995-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-06-16] (Glarysoft Ltd)
HKU\S-1-5-21-1866305474-3056176706-1639482995-1000\...\MountPoints2: {e9b43d21-d6a8-11e3-825b-38607782ca6c} - H:\Start.exe
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk *  BootDefrag.exe

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBE421832705DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM - {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {53CFE9A6-E08E-470A-B414-AA05DCF008CF} URL = hxxp://www.sm.de/?q={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default
FF SearchEngineOrder.1: Microsoft (Bing)
FF Keyword.URL: hxxp://www.bing.com/search
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8118
FF NetworkProxy: "ssl", "127.0.0.1"
FF NetworkProxy: "ssl_port", 8118
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Dome&Luke\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\searchplugins\bing-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: leethax.net extension - C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\Extensions\leethax@leethax.net.xpi [2014-05-30]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-21]

Chrome:
=======
CHR HomePage:
CHR DefaultSearchKeyword: webssearches
CHR DefaultSearchProvider: webssearches
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-01]
CHR Extension: (Google Drive) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-01]
CHR Extension: (YouTube) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-01]
CHR Extension: (Adblock Plus) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-06-20]
CHR Extension: (Google-Suche) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-01]
CHR Extension: (avast! Online Security) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-01]
CHR Extension: (AdBlock Plus) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhlalolcniejfpochachikjfdmfjgbdk [2014-06-20]
CHR Extension: (Google Wallet) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-21]
CHR Extension: (Google Mail) - C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-21]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-21] (AVAST Software)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-14] ()
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-04-22] (Microsoft Corporation) [File not signed]
S4 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-21] ()
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-03] (Glarysoft Ltd)
R0 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-05-19] (Glarysoft Ltd)
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [61736 2014-02-28] (NetFilterSDK.com)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-03-24] (Anchorfree Inc.)
R1 {9acd1534-e8f8-40cb-b5ac-4996fe01175b}Gw64; C:\Windows\System32\drivers\{9acd1534-e8f8-40cb-b5ac-4996fe01175b}Gw64.sys [61112 2014-05-16] (StdLib)
S3 OSFMount; \??\C:\Program Files (x86)\Counter-Strike Global Offensive\image\x64\OSFMount.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-22 11:47 - 2014-06-22 11:47 - 00012330 _____ () C:\Users\Dome&Luke\Desktop\FRST.txt
2014-06-22 11:27 - 2014-06-22 11:27 - 00000000 ____D () C:\Windows\ERUNT
2014-06-22 11:26 - 2014-06-22 11:27 - 01016261 _____ (Thisisu) C:\Users\Dome&Luke\Desktop\JRT.exe
2014-06-22 11:25 - 2014-06-22 11:25 - 00006174 _____ () C:\Users\Dome&Luke\Desktop\AdwCleaner[S0].txt
2014-06-22 11:21 - 2014-06-22 11:22 - 00065987 _____ () C:\Users\Dome&Luke\Desktop\MBAM.txt
2014-06-22 11:13 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-22 11:11 - 2014-06-22 11:23 - 00000000 ____D () C:\AdwCleaner
2014-06-22 11:11 - 2014-06-22 11:11 - 01333465 _____ () C:\Users\Dome&Luke\Desktop\adwcleaner_3.212.exe
2014-06-22 11:08 - 2014-06-22 11:09 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-22 11:08 - 2014-06-22 11:08 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-22 11:08 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-22 11:08 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-22 11:08 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-22 11:07 - 2014-06-22 11:08 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Dome&Luke\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-22 10:53 - 2014-06-22 10:53 - 03007700 _____ () C:\Users\Dome&Luke\Downloads\revouninstaller.zip
2014-06-22 10:53 - 2014-06-22 10:53 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\revouninstaller-portable
2014-06-22 01:19 - 2014-06-22 01:19 - 00961360 _____ (Chip Digital GmbH) C:\Users\Dome&Luke\Desktop\Revo Uninstaller Portable - CHIP-Installer.exe
2014-06-21 12:16 - 2014-06-21 12:16 - 00049838 _____ () C:\Users\Dome&Luke\Downloads\FRST.txt
2014-06-21 10:54 - 2014-06-21 10:55 - 00039286 _____ () C:\Users\Dome&Luke\Desktop\Addition.txt
2014-06-21 10:53 - 2014-06-22 11:47 - 00000000 ____D () C:\FRST
2014-06-21 10:53 - 2014-06-21 10:53 - 02083328 _____ (Farbar) C:\Users\Dome&Luke\Desktop\FRST64.exe
2014-06-21 10:52 - 2014-06-21 10:52 - 01958440 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST64.exe
2014-06-21 10:44 - 2014-06-21 10:44 - 01070592 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST.exe
2014-06-20 23:35 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
2014-06-20 22:56 - 2014-06-20 23:00 - 109068563 _____ () C:\Users\Dome&Luke\Downloads\Pokemon Black.zip
2014-06-20 22:53 - 2014-06-20 22:53 - 01096820 _____ () C:\Users\Dome&Luke\Downloads\desmume-0.9.10-win32.zip
2014-06-20 16:58 - 2014-06-20 17:15 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik(Luke
2014-06-20 16:33 - 2014-06-22 11:24 - 00071950 _____ () C:\Windows\PFRO.log
2014-06-20 16:19 - 2014-06-22 11:25 - 00000336 _____ () C:\Windows\setupact.log
2014-06-20 16:19 - 2014-06-20 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-18 20:06 - 2014-06-18 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-15 13:43 - 2014-06-15 13:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-06-15 11:23 - 2014-06-15 11:23 - 00001256 _____ () C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-06-15 08:57 - 2014-06-15 09:00 - 00737280 _____ (Indigo Rose Corporation) C:\Windows\iun6002.exe
2014-06-15 07:50 - 2014-06-15 07:50 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-15 01:41 - 2011-07-28 13:26 - 00000000 ____D () C:\Users\Dome&Luke\Documents\EA Games
2014-06-15 01:26 - 2014-06-15 01:26 - 00000000 ____D () C:\Users\Dome
2014-06-14 20:53 - 2014-06-14 20:56 - 00000000 ____D () C:\Users\Dome&Luke\Documents\BFH.Beta
2014-06-14 17:20 - 2014-06-15 11:19 - 00000000 ____D () C:\wintemp
2014-06-13 13:24 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-06-12 22:17 - 2014-06-20 14:33 - 00000234 _____ () C:\BackupLoader.ini
2014-06-12 22:17 - 2014-06-03 03:26 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-06-12 22:17 - 2014-06-03 03:05 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-06-10 23:25 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-10 23:25 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-10 23:25 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-10 23:25 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-10 23:25 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-10 23:25 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-10 23:25 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-10 23:25 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-10 23:25 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-10 23:25 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-10 23:25 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-10 23:25 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-10 23:25 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-10 23:25 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-10 23:25 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-10 23:25 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-10 23:25 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-10 23:25 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-10 23:25 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-10 23:25 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-10 23:25 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-10 23:25 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-10 23:25 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-10 23:25 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-10 23:25 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-10 23:25 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-10 23:25 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-10 23:25 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-10 23:25 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-10 23:25 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-10 23:25 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-10 23:25 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-10 23:25 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-10 23:25 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-10 23:25 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-10 23:25 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-10 23:25 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-10 23:25 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-10 23:25 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-10 23:25 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-10 23:25 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-10 23:25 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-10 23:25 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-10 23:25 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-10 23:25 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-10 23:25 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-10 23:25 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-10 23:25 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-10 23:25 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-10 23:25 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-10 23:25 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-10 23:25 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-10 23:04 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-10 23:04 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-10 23:03 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-10 23:03 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-10 23:03 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-10 23:03 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-10 23:03 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-10 23:03 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-10 23:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-10 23:03 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-10 23:03 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-10 23:03 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-10 23:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-10 23:03 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-10 23:02 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-10 23:02 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-30 14:07 - 2014-06-01 22:25 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-30 14:07 - 2014-05-30 14:07 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Mozilla
2014-05-30 14:06 - 2014-06-19 18:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-27 22:42 - 2014-02-06 20:55 - 00123548 _____ () C:\Users\Dome&Luke\Desktop\dodo monatsbericht2.odt
2014-05-26 23:35 - 2014-06-21 11:32 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\vlc
2014-05-26 23:34 - 2014-05-26 23:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 00:12 - 2014-05-26 00:12 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-05-25 23:39 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\Documents\GTA San Andreas User Files
2014-05-25 17:32 - 2014-05-25 17:32 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Rockstar Games
2014-05-25 17:27 - 2014-05-25 17:29 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Rockstar Games
2014-05-25 17:18 - 2014-05-25 17:18 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-05-25 16:54 - 2014-05-25 23:05 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-05-24 23:48 - 2014-05-24 23:48 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\WorldofTanks
2014-05-24 23:37 - 2014-06-18 21:20 - 538006251 _____ () C:\Windows\MEMORY.DMP

==================== One Month Modified Files and Folders =======

2014-06-22 11:48 - 2014-06-22 11:47 - 00012330 _____ () C:\Users\Dome&Luke\Desktop\FRST.txt
2014-06-22 11:47 - 2014-06-21 10:53 - 00000000 ____D () C:\FRST
2014-06-22 11:32 - 2009-07-14 06:45 - 00014608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-22 11:32 - 2009-07-14 06:45 - 00014608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-22 11:27 - 2014-06-22 11:27 - 00000000 ____D () C:\Windows\ERUNT
2014-06-22 11:27 - 2014-06-22 11:26 - 01016261 _____ (Thisisu) C:\Users\Dome&Luke\Desktop\JRT.exe
2014-06-22 11:26 - 2014-05-19 22:08 - 00000342 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2014-06-22 11:25 - 2014-06-22 11:25 - 00006174 _____ () C:\Users\Dome&Luke\Desktop\AdwCleaner[S0].txt
2014-06-22 11:25 - 2014-06-20 16:19 - 00000336 _____ () C:\Windows\setupact.log
2014-06-22 11:25 - 2014-05-19 22:08 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-06-22 11:25 - 2014-04-21 16:45 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-22 11:25 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-22 11:24 - 2014-06-20 16:33 - 00071950 _____ () C:\Windows\PFRO.log
2014-06-22 11:24 - 2014-04-21 16:15 - 01410381 _____ () C:\Windows\WindowsUpdate.log
2014-06-22 11:23 - 2014-06-22 11:11 - 00000000 ____D () C:\AdwCleaner
2014-06-22 11:23 - 2014-04-27 15:05 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-22 11:22 - 2014-06-22 11:21 - 00065987 _____ () C:\Users\Dome&Luke\Desktop\MBAM.txt
2014-06-22 11:11 - 2014-06-22 11:11 - 01333465 _____ () C:\Users\Dome&Luke\Desktop\adwcleaner_3.212.exe
2014-06-22 11:11 - 2014-05-20 20:23 - 00000000 ____D () C:\temp
2014-06-22 11:09 - 2014-06-22 11:08 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-22 11:08 - 2014-06-22 11:08 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-22 11:08 - 2014-06-22 11:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-22 11:08 - 2014-06-22 11:07 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Dome&Luke\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-22 11:07 - 2014-04-21 16:45 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-22 10:53 - 2014-06-22 10:53 - 03007700 _____ () C:\Users\Dome&Luke\Downloads\revouninstaller.zip
2014-06-22 10:53 - 2014-06-22 10:53 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\revouninstaller-portable
2014-06-22 01:19 - 2014-06-22 01:19 - 00961360 _____ (Chip Digital GmbH) C:\Users\Dome&Luke\Desktop\Revo Uninstaller Portable - CHIP-Installer.exe
2014-06-21 12:16 - 2014-06-21 12:16 - 00049838 _____ () C:\Users\Dome&Luke\Downloads\FRST.txt
2014-06-21 11:32 - 2014-05-26 23:35 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\vlc
2014-06-21 10:55 - 2014-06-21 10:54 - 00039286 _____ () C:\Users\Dome&Luke\Desktop\Addition.txt
2014-06-21 10:53 - 2014-06-21 10:53 - 02083328 _____ (Farbar) C:\Users\Dome&Luke\Desktop\FRST64.exe
2014-06-21 10:52 - 2014-06-21 10:52 - 01958440 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST64.exe
2014-06-21 10:44 - 2014-06-21 10:44 - 01070592 _____ (Farbar) C:\Users\Dome&Luke\Downloads\FRST.exe
2014-06-21 10:29 - 2014-04-21 20:06 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\DiskDefrag
2014-06-21 01:30 - 2014-04-22 01:58 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Spotify
2014-06-20 23:57 - 2014-05-10 20:50 - 00000000 ____D () C:\ProgramData\Origin
2014-06-20 23:35 - 2014-06-20 23:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
2014-06-20 23:35 - 2014-06-13 13:24 - 00000000 ____D () C:\ProgramData\PopCap Games
2014-06-20 23:35 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-20 23:34 - 2014-05-10 22:01 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-20 23:33 - 2014-05-10 20:49 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-20 23:14 - 2014-04-28 14:11 - 00002790 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-20 23:00 - 2014-06-20 22:56 - 109068563 _____ () C:\Users\Dome&Luke\Downloads\Pokemon Black.zip
2014-06-20 22:57 - 2014-04-21 17:45 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\uTorrent
2014-06-20 22:53 - 2014-06-20 22:53 - 01096820 _____ () C:\Users\Dome&Luke\Downloads\desmume-0.9.10-win32.zip
2014-06-20 17:15 - 2014-06-20 16:58 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik(Luke
2014-06-20 16:51 - 2014-04-21 17:28 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\.minecraft
2014-06-20 16:33 - 2014-05-08 17:19 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\LogMeIn Hamachi
2014-06-20 16:19 - 2014-06-20 16:19 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-20 14:39 - 2014-05-07 13:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterActual
2014-06-20 14:39 - 2014-05-07 13:20 - 00000000 ____D () C:\Program Files\InterActual
2014-06-20 14:36 - 2014-04-21 23:30 - 00000000 ____D () C:\Windows\Minidump
2014-06-20 14:36 - 2014-04-21 16:37 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Games
2014-06-20 14:33 - 2014-06-12 22:17 - 00000234 _____ () C:\BackupLoader.ini
2014-06-20 14:33 - 2014-05-19 22:08 - 00002988 _____ () C:\Windows\System32\Tasks\GU5SkipUAC
2014-06-20 14:33 - 2014-05-19 22:08 - 00002662 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5
2014-06-20 14:33 - 2014-05-19 22:08 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2014-06-20 14:33 - 2014-05-19 22:08 - 00001086 _____ () C:\Users\Public\Desktop\Glary Utilities 5.lnk
2014-06-19 18:46 - 2014-04-21 19:59 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-19 18:45 - 2014-05-30 14:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-18 21:20 - 2014-05-24 23:37 - 538006251 _____ () C:\Windows\MEMORY.DMP
2014-06-18 20:06 - 2014-06-18 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 13:33 - 2014-04-21 17:32 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Skype
2014-06-17 02:02 - 2014-04-21 16:45 - 00004120 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-17 02:02 - 2014-04-21 16:45 - 00003868 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-16 20:27 - 2014-04-22 01:58 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Spotify
2014-06-15 17:16 - 2014-04-25 13:27 - 00000000 ____D () C:\Users\Dome&Luke\Desktop\Musik
2014-06-15 17:08 - 2014-04-21 16:57 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-15 16:08 - 2014-05-05 23:54 - 00000000 ____D () C:\Program Files (x86)\NosTale(DE)
2014-06-15 15:43 - 2014-05-11 13:54 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-06-15 15:43 - 2014-05-11 05:59 - 00290184 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-06-15 15:43 - 2014-05-11 05:59 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-06-15 14:55 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-15 13:50 - 2014-06-15 13:43 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-06-15 11:23 - 2014-06-15 11:23 - 00001256 _____ () C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-06-15 11:23 - 2014-06-15 11:23 - 00000000 ____D () C:\Program Files (x86)\Elaborate Bytes
2014-06-15 11:19 - 2014-06-14 17:20 - 00000000 ____D () C:\wintemp
2014-06-15 09:00 - 2014-06-15 08:57 - 00737280 _____ (Indigo Rose Corporation) C:\Windows\iun6002.exe
2014-06-15 07:50 - 2014-06-15 07:50 - 00000000 ____D () C:\Users\Public\Documents\EA Games
2014-06-15 07:46 - 2014-05-15 22:40 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-15 01:26 - 2014-06-15 01:26 - 00000000 ____D () C:\Users\Dome
2014-06-14 20:56 - 2014-06-14 20:53 - 00000000 ____D () C:\Users\Dome&Luke\Documents\BFH.Beta
2014-06-14 20:53 - 2014-05-11 13:29 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins
2014-06-14 20:23 - 2014-05-11 05:59 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-06-14 20:23 - 2014-04-21 17:54 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-14 19:55 - 2014-05-08 15:49 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\DAEMON Tools Lite
2014-06-14 17:23 - 2009-07-14 19:58 - 00709706 _____ () C:\Windows\system32\perfh007.dat
2014-06-14 17:23 - 2009-07-14 19:58 - 00154142 _____ () C:\Windows\system32\perfc007.dat
2014-06-14 17:23 - 2009-07-14 07:13 - 01648684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Opera Software
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Opera Software
2014-06-13 14:28 - 2014-05-14 07:16 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-06-13 14:27 - 2014-04-24 18:15 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-06-13 13:08 - 2014-04-21 20:11 - 00000000 ___RD () C:\Users\Dome&Luke\Dropbox
2014-06-12 23:08 - 2014-04-27 15:05 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-12 23:08 - 2014-04-27 15:04 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-12 23:08 - 2014-04-27 15:04 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-11 03:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-11 03:04 - 2014-04-21 19:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 03:02 - 2014-04-21 19:59 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 03:00 - 2014-04-24 22:47 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-09 03:56 - 2014-05-01 12:07 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-08 11:13 - 2014-06-10 23:02 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-10 23:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-03 03:26 - 2014-06-12 22:17 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-06-03 03:05 - 2014-06-12 22:17 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-06-01 22:25 - 2014-05-30 14:07 - 00001141 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-30 14:07 - 2014-05-30 14:07 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Mozilla
2014-05-30 12:21 - 2014-06-10 23:25 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-10 23:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-10 23:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-10 23:25 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-10 23:25 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-10 23:25 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-10 23:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-10 23:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-10 23:25 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-10 23:25 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-10 23:25 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-10 23:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-10 23:25 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-10 23:25 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-10 23:25 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-10 23:25 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-10 23:25 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-10 23:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-10 23:25 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-10 23:25 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-10 23:25 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-10 23:25 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-10 23:25 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-10 23:25 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-10 23:25 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:39 - 2014-04-21 17:32 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-05-30 10:39 - 2014-04-21 17:31 - 00000000 ____D () C:\ProgramData\Skype
2014-05-30 10:38 - 2014-06-10 23:25 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-10 23:25 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-10 23:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-10 23:25 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-10 23:25 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-10 23:25 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-10 23:25 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-10 23:25 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-10 23:25 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-10 23:25 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-10 23:25 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-10 23:25 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-10 23:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-10 23:25 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-10 23:25 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-10 23:25 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-10 23:25 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-10 23:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-10 23:25 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-10 23:25 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-10 23:25 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-10 23:25 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-10 23:25 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-10 23:25 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-10 23:25 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-10 23:25 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-30 09:13 - 2014-06-10 23:25 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-29 21:54 - 2014-05-10 21:59 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Origin
2014-05-29 20:55 - 2014-05-10 21:59 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Origin
2014-05-26 23:34 - 2014-05-26 23:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-05-26 23:34 - 2014-05-05 17:57 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-05-26 16:54 - 2014-04-21 16:35 - 00001427 _____ () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-26 13:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-05-26 13:44 - 2014-05-25 23:39 - 00000000 ____D () C:\Users\Dome&Luke\Documents\GTA San Andreas User Files
2014-05-26 13:32 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-05-26 00:13 - 2014-04-21 17:59 - 01675046 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-26 00:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Registration
2014-05-26 00:12 - 2014-05-26 00:12 - 00000000 ____D () C:\Windows\SysWOW64\URTTEMP
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2014-05-25 23:05 - 2014-05-25 16:54 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-05-25 21:20 - 2014-05-15 21:54 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Roaming\dvdcss
2014-05-25 17:32 - 2014-05-25 17:32 - 00000000 ____D () C:\Users\Dome&Luke\Documents\Rockstar Games
2014-05-25 17:29 - 2014-05-25 17:27 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\Rockstar Games
2014-05-25 17:18 - 2014-05-25 17:18 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-05-24 23:48 - 2014-05-24 23:48 - 00000000 ____D () C:\Users\Dome&Luke\AppData\Local\WorldofTanks

Some content of TEMP:
====================
C:\Users\Dome&Luke\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-18 00:24

==================== End Of Log ============================
--- --- ---



Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 22.06.2014
Suchlauf-Zeit: 11:09:47
Logdatei: MBAM.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.22.01
Rootkit Datenbank: v2014.06.20.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 3
CPU: x64
Dateisystem: NTFS
Benutzer: Dome&Luke

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 268157
Verstrichene Zeit: 9 Min, 35 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 1
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, 1648, , [85f4d5a61c5ff83e8ef42d2dd9287d83]

Module: 1
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [3b3e7ffc9cdf9f97deb5f495c63b6997],

Registrierungsschlüssel: 45
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, , [85f4d5a61c5ff83e8ef42d2dd9287d83],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{6CA2A4DE-483E-456B-8634-6445460D7097}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{C321541F-B22D-4593-AC1A-9634812A4E40}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A8018C54-B702-4D52-9ACC-8CA78911E633}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C6A846C5-D67F-48B4-8552-C22354E56966}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A8018C54-B702-4D52-9ACC-8CA78911E633}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C6A846C5-D67F-48B4-8552-C22354E56966}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C321541F-B22D-4593-AC1A-9634812A4E40}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{6CA2A4DE-483E-456B-8634-6445460D7097}, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\CLASSES\TYPELIB\{DCABB943-792E-44C4-9029-ECBEE6265AF9}, , [c9b06714265593a312f700471ae8f50b],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\CLASSES\INTERFACE\{3408AC0D-510E-4808-8F7B-6B70B1F88534}, , [c9b06714265593a312f700471ae8f50b],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3408AC0D-510E-4808-8F7B-6B70B1F88534}, , [c9b06714265593a312f700471ae8f50b],
PUP.Optional.OutBrowse, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{DCABB943-792E-44C4-9029-ECBEE6265AF9}, , [c9b06714265593a312f700471ae8f50b],
PUP.Optional.RRSavings.A, HKLM\SOFTWARE\rrsavings, , [651488f3d0abc670b3cf3f777c86936d],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0054246.BHO, , [76037407f3884ee855669f418083df21],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0054246.BHO.1, , [4c2d720925563ef81e9d845cad56cc34],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21636, , [8aef9cdf0873ae8881b61ca127db27d9],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [6f0a95e6fd7ef640cbc58962e2216997],
PUP.Optional.AdPeak.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{813BA625-B0FA-48D8-9B75-59759C88C219}, , [3643b5c6a6d5c571fc033e74986a47b9],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\webssearchesSoftware, , [fd7c3d3ed0ab81b531e7ead348ba768a],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0054246.BHO, , [0b6eb6c5a7d48babcaf16f71db28be42],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CrossriderApp0054246.BHO.1, , [bfba2a51ccafbf777f3c845ce61da858],
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\21636, , [ea8f2c4f0c6f68ceff386e4faf53a55b],
PUP.Optional.Qone8, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [6b0eb1ca5229171fa3ed628922e14bb5],
PUP.Optional.ScanTack.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update ScanTack, , [50296813c9b292a45496f6ca8d758779],
PUP.Optional.FlowSurf.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF, , [d1a8c2b934470234b7e45b9f976c4cb4],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [0277e893f08bb185a0aa1ada62a1fc04],
PUP.Optional.MediaPlayerplus.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MediaPlayerplus, , [eb8e80fb4932fa3c48fcbdffd72b53ad],
PUP.Optional.RRSavings.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Rr Savings, , [86f3740783f8f046bfc95066e220cf31],
PUP.Optional.FlowSurf.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF, , [433696e52952de58613a17e3ad5607f9],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21636, , [c8b1c8b3accf41f5c2763d80c04223dd],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Freeven, , [a5d4651698e3261000930bb5b84a13ed],
PUP.Optional.Qone8, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, , [5326b0cba9d23501f9969d4e4fb4dd23],
PUP.Optional.CrossRider.M, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511421146}, , [99e0205b08732d095f7ea4e05ea619e7],
PUP.Optional.CrossRider.M, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511421146}, , [99e0205b08732d095f7ea4e05ea619e7],
PUP.Optional.CrossRider.M, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110511421146}, , [99e0205b08732d095f7ea4e05ea619e7],
PUP.Optional.CrossRider.M, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110511421146}, , [99e0205b08732d095f7ea4e05ea619e7],

Registrierungswerte: 5
PUP.Optional.FlowSurf.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|jid1-tofUlNEIFlkUIA@jetpack, C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack, , [bfbad6a52d4ea5914bf7398210f2db25]
PUP.Optional.QuickStart.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|quick_start@gmail.com, C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\0qwaz6w5.default\extensions\quick_start@gmail.com, , [4732adce0d6ec86e8253e5d8669c5ea2]
PUP.Optional.FlowSurf.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF|chrid, oglkiljdmflopemijdadoiepkhcaodjn, , [d1a8c2b934470234b7e45b9f976c4cb4]
PUP.Optional.FlowSurf.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\FLOWSURF|chrid, oglkiljdmflopemijdadoiepkhcaodjn, , [433696e52952de58613a17e3ad5607f9]
PUP.Optional.QuickStart.A, HKU\S-1-5-21-1866305474-3056176706-1639482995-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\EXTENDS|appid, quick_start@gmail.com, , [3f3a7209a3d81422197d6e38d230e51b]

Registrierungsdaten: 7
PUP.Optional.Skytech.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SupTab\SEARCH~2.DLL, Gut: (), Schlecht: (C:\PROGRA~2\SupTab\SEARCH~2.DLL),,[88f12853b7c478befb98a4e59d64c43c]
PUP.Optional.Skytech.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~2\SupTab\SEARCH~1.DLL, Gut: (), Schlecht: (C:\PROGRA~2\SupTab\SEARCH~1.DLL),,[4c2dd1aa62195bdb4d46731608f9c23e]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX, Gut: (iexplore.exe), Schlecht: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX),,[7affa4d73348003600aa4433659ff20e]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/web/?type=ds&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}),,[4732493284f71d193c65a7d09c6857a9]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX),,[1f5a205ba3d8da5c415e354239cb2bd5]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX),,[1168e49737445fd7b3f05c1bbf4543bd]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX, Gut: (iexplore.exe), Schlecht: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1400608248&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX),,[d4a518637209e55135751e59010331cf]

Ordner: 60
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\weather, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\en-US, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-419, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-ES, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-BE, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CA, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CH, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-FR, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-LU, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-CH, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-IT, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pl, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt-BR, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru-MO, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\tr-TR, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\vi-VI, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-CN, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-TW, , [5722b1ca13681f178501e8def2101de3],
Stolen.Data, C:\Users\Dome&Luke\AppData\Roaming\dclogs, , [1f5a23586615de58737d59413fc40cf4],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf, , [4b2e0f6cb7c4ff37f6a262985aa9a060],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\log, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\userCode, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons\actions, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\popupResource, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0, , [75042952681365d1fbcd445148ba52ae],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\SSL, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\backup, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\images, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices, , [1465f2894e2df4420d7c7d2720e25ba5],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update, , [1465f2894e2df4420d7c7d2720e25ba5],
PUP.Optional.SearchProtect.A, C:\Users\Dome&Luke\AppData\Local\SearchProtect, , [e4954b30047774c293f76b39bd451be5],
PUP.Optional.SearchProtect.A, C:\Users\Dome&Luke\AppData\Local\SearchProtect\Logs, , [e4954b30047774c293f76b39bd451be5],

Dateien: 294
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, , [85f4d5a61c5ff83e8ef42d2dd9287d83],
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\DpInterface32.dll, , [3b3e7ffc9cdf9f97deb5f495c63b6997],
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\SearchProtect64.dll, , [88f12853b7c478befb98a4e59d64c43c],
PUP.Optional.Skytech.A, C:\Program Files (x86)\SupTab\SearchProtect32.dll, , [4c2dd1aa62195bdb4d46731608f9c23e],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SupTab.dll, , [a9d05e1d681346f02d700c3a24de1fe1],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf\flowsurf.dll, , [4c2d7a01b5c615212601c08531d1e020],
PUP.Optional.Skytech.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\UninstallManager.exe, , [bbbe95e6285374c21a79286157aa867a],
PUP.Optional.MediaPlayerplus.A, C:\$Recycle.Bin\S-1-5-21-1866305474-3056176706-1639482995-1000\$REQ8E1F\b0625433-0826-4d86-9af6-bc28310b6329-3.exe, , [83f6bfbc90eb5dd91fd6432c857c7987],
PUP.Optional.MediaPlayerplus.A, C:\$Recycle.Bin\S-1-5-21-1866305474-3056176706-1639482995-1000\$REQ8E1F\MediaPlayerplus-bho.dll, , [4a2fbac1f6855dd9b243323d867bdb25],
PUP.Optional.MediaPlayerplus.A, C:\$Recycle.Bin\S-1-5-21-1866305474-3056176706-1639482995-1000\$REQ8E1F\MediaPlayerplus-bho64.dll, , [18610e6d9cdf6bcbdd18f67925dccf31],
PUP.Optional.AdPeak.A, c:\temp\t.msi, , [7efb83f82457f83e51a0cda4a65ec040],
PUP.Optional.InstallCore, C:\Users\Dome&Luke\Downloads\CR_Downloader_fuer_pokemon-black.exe, , [0673b6c5bac166d009ddc0aff41029d7],
PUP.Optional.OptimumInstaller.A, C:\Users\Dome&Luke\Downloads\Player-Chrome.exe, , [55248bf0d0abdc5a27b62a27d130936d],
PUP.Optional.Somoto, C:\Windows\Installer\3b2fae.msi, , [9ddcbcbf5e1de650595f6012ab5954ac],
PUP.Optional.CrossRider.A, C:\Windows\System32\Tasks\b0625433-0826-4d86-9af6-bc28310b6329-3, , [fa7f1962c7b44aec292d466003ffb24e],
PUP.Optional.Ciuvo.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_api.ciuvo.com_0.localstorage, , [5e1bbebd45363ff766fe9b0e62a011ef],
PUP.Optional.Ciuvo.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_api.ciuvo.com_0.localstorage-journal, , [3f3a98e356251b1bf56f5653c33f6a96],
PUP.Optional.BetterDeals.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage, , [3346c2b93e3ddd591b2b6645b949f709],
PUP.Optional.BetterDeals.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.betterdeals00.betterdeals.co_0.localstorage-journal, , [4336cdaea8d3c96da1a507a48e7446ba],
PUP.Optional.SelectNGo.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage, , [1960b4c76516ac8aaca694190af8c13f],
PUP.Optional.SelectNGo.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal, , [accdde9db4c77abc84cef2bbf70be31d],
PUP.Optional.LiveLyrics.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage, , [34455229ff7c96a01f948e200101a25e],
PUP.Optional.LiveLyrics.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.livelyrics00.live-lyrics.com_0.localstorage-journal, , [4e2b6a110f6cdd599122981644be827e],
PUP.Optional.Superfish.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage, , [1762c9b229523afcef0a9a16d23047b9],
PUP.Optional.Superfish.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.superfish.com_0.localstorage-journal, , [e891fc7f69122f0709f0a50b90729b65],
PUP.Optional.CrossRider.A, C:\Windows\Tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job, , [215806755f1c82b44a7398232dd5cb35],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage, , [1c5d5625c1ba53e39188bc0041c1dd23],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0.localstorage-journal, , [7ffae3988eed3006d5448c30ab570af6],
PUP.Optional.WebsSearches.A, C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\webssearches.xml, , [8ced5823304b23136eac625b8b7749b7],
PUP.Optional.PCPerformer.A, C:\Windows\System32\roboot64.exe, , [1663a1daeb904ee8cce38043ca38837d],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\install.data, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterface64.dll, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\DpInterfacef32.dll, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\ient.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\RSHP.exe, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SpAPPSv32.dll, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\SpAPPSv64.dll, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\uninstall.exe, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\WebDataJs, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\data.html, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\indexIE.html, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\indexIE8.html, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\main.css, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\ver.txt, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\arrow.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_add_logo.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_add_logo_hover.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\default_logo.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\googlelogo.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\googlelogo2.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\google_trends.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon128.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon16.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\icon48.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\loading.gif, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\logo32.ico, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\img\weather\0.png, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\common.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\ga.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\ie8.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\js.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\library.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\js\xagainit.js, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json, , [5722b1ca13681f178501e8def2101de3],
PUP.Optional.SupTab.A, C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json, , [5722b1ca13681f178501e8def2101de3],
Stolen.Data, C:\Users\Dome&Luke\AppData\Roaming\dclogs\2014-05-05-2.dc, , [1f5a23586615de58737d59413fc40cf4],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf\install.ico, , [4b2e0f6cb7c4ff37f6a262985aa9a060],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf\atl110.dll, , [4b2e0f6cb7c4ff37f6a262985aa9a060],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf\fsupd.exe, , [4b2e0f6cb7c4ff37f6a262985aa9a060],
PUP.Optional.FlowSurf.A, C:\Program Files (x86)\Flowsurf\msvcr110.dll, , [4b2e0f6cb7c4ff37f6a262985aa9a060],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\119.json, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\MessageBox.xml, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\uninstallDlg2.xml, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\bg.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\bg1.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\bk_shadow.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\button.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\button1.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\checkbox.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\checkbox_select.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\checked.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\close.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\loading_bg.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\loading_light.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\min.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\scrollbar.bmp, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\Thumbs.db, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\unchecked.png, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code1.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code2.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code3.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code4.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code5.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\code6.jpg, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\images\code\Thumbs.db, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\log\UninstallManager_2014-05-26[16-52-50-918].log, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\webssearches\log\UninstallManager_2014-05-26[16-53-15-355].log, , [c3b6e19a502bcc6ad2866b2a28dae818],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\background.html, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\chromeCoreFilesIndex.txt, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\crossriderManifest.json, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\manifest.json, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\popup.html, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\manifest.xml, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins.json, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\1.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\102.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\103.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\104.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\13.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\14.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\155.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\17.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\177.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\182.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\183.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\184.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\19.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\190.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\191.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\195.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\207.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\21.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\211.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\22.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\220.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\226.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\233.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\242.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\246.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\28.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\4.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\47.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\64.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\7.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\72.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\78.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\80.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\9.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\91.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\93.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\plugins\97.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\userCode\background.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\extensionData\userCode\extension.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons\icon128.png, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons\icon16.png, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons\icon48.png, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\icons\actions\1.png, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\background.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\main.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\platformVersion.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\chrome.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\cookie.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\message.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\monitor.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\pageAction.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\api\pageActionBG.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\app_api.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\bg_app_api.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\consts.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\cookie_store.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\crossriderAPI.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\delegate.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\events.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\extensionDataStore.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\installer.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\logFile.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\logging.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\onBGDocumentLoad.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\reports.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\storageWrapper.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\updateManager.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\util.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\xhr.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\popupResource\newPopup.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd\1.26.27_0\js\lib\popupResource\popup.js, , [f683ff7cbebd71c555539ff655ad738d],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0\3, , [75042952681365d1fbcd445148ba52ae],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_majjphhgppkndjjkmhhnbgafooenebhd_0\3-journal, , [75042952681365d1fbcd445148ba52ae],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000571.ldb, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000573.ldb, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000594.ldb, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000597.ldb, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\000598.log, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\CURRENT, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOCK, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\LOG.old, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.CrossRider.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\majjphhgppkndjjkmhhnbgafooenebhd\MANIFEST-000596, , [fc7da3d8b3c8181e31a36a2b8e745ca4],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\Installbat64.dll, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\Microsoft.Deployment.WindowsInstaller.dll, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\Microsoft.Deployment.WindowsInstaller.xml, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\nfapi.dll, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\nfregdrv.exe, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\ProtocolFilters.dll, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.RRSavings.A, C:\Program Files\RrFilter\sample.dll, , [7aff0477ceadc76f37fd4951f40e3ec2],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\Installer.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\InstallerLibrary.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\InstallFirefoxExtension.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\InstallFirefoxExtension.InstallState, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\Newtonsoft.Json.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\NewVersionUploader.exe, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\NewVersionUploader.exe.config, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\SQLite.Interop.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\System.Data.SQLite.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\win32.reg, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\WindowsUpdater.exe, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\WindowsUpdater.exe.config, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\backup\InstallerLibrary.dll, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\backup\System Update kb70007\backup\uninstall.exe, , [85f43348116a0a2ca26b9c0555ad57a9],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\AUTHORS.txt, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\config.txt, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\default.action, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\default.filter, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\LICENSE.txt, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\match-all.action, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\mgwz.dll, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\privoxy.exe, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\privoxy.log, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\privoxy_uninstall.exe, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\README.txt, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\trust.txt, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\user.action, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\user.action_empty, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\user.filter, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\user.filter_old, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\p_doc.css, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\coding.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\cvs.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\documentation.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\index.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\introduction.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\newrelease.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\testing.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\developer-manual\webserver-update.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\configuration.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\contact.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\copyright.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\general.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\index.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\installation.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\misc.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\faq\trouble.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\images\files-in-use.jpg, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\images\proxy_setup.jpg, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\actions-file.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\appendix.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\config.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\configuration.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\contact.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\copyright.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\files-in-use.jpg, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\filter-file.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\index.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\installation.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\introduction.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\proxy2.jpg, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\proxy_setup.jpg, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\p_doc.css, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\quickstart.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\seealso.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\startup.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\templates.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\doc\user-manual\whatsnew.html, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\cgi-style.css, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\connect-failed, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\mod-local-help, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\mod-support-and-service, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\mod-title, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\mod-unstable-warning, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\no-such-domain, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.Privoxy.A, C:\Program Files (x86)\MSR\Privoxy\templates\url-info-osd.xml, , [7702ff7c6d0e191d808ec3de30d250b0],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update\conf, , [1465f2894e2df4420d7c7d2720e25ba5],
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: (      "startup_urls": [ "hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX" ],), ,[df9a156639423bfb411ca50a47bdb14f]
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: (  "homepage": "hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX",), ,[67124833d9a2d75fc29c8a2500049a66]
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: (      "search_url": "hxxp://istart.webssearches.com/web/?type=dspp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}",), ,[3a3fadce7b003afcbfa098177292a35d]
PUP.Optional.WebsSearches.A, C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.startup.homepage", "hxxp://istart.webssearches.com/?type=hppp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX");), ,[1d5c3c3f2259d1654c0e604fea1aca36]

Physische Sektoren: 0
(No malicious items detected)


(end)

Code:
# AdwCleaner v3.212 - Bericht erstellt am 22/06/2014 um 11:23:29
# Aktualisiert 05/06/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 3 (64 bits)
# Benutzername : Dome&Luke - DOMELUKE
# Gestartet von : C:\Users\Dome&Luke\Desktop\adwcleaner_3.212.exe
# Option : Löschen

***** [ Dienste ] *****

Dienst Gelöscht : IePluginServices
[#] Dienst Gelöscht : Update ScanTack
[#] Dienst Gelöscht : Util ScanTack

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\IePluginServices
Ordner Gelöscht : C:\ProgramData\Registry Helper
Ordner Gelöscht : C:\ProgramData\AlawarWrapper
Ordner Gelöscht : C:\Program Files (x86)\MSR
Ordner Gelöscht : C:\Program Files (x86)\predm
Ordner Gelöscht : C:\Program Files (x86)\ScanTack
Ordner Gelöscht : C:\Program Files (x86)\SupTab
Ordner Gelöscht : C:\Windows\Installer\{813BA625-B0FA-48D8-9B75-59759C88C219}
Ordner Gelöscht : C:\Program Files\002
Ordner Gelöscht : C:\Users\DOME&L~1\AppData\Local\Temp\OCS
Ordner Gelöscht : C:\Users\Dome&Luke\AppData\Local\Freesofttoday
Ordner Gelöscht : C:\Users\Dome&Luke\AppData\Local\Genesis
Ordner Gelöscht : C:\Users\Dome&Luke\AppData\Roaming\InetStat
Ordner Gelöscht : C:\Users\Dome&Luke\AppData\Roaming\SupTab
Ordner Gelöscht : C:\Users\Public\Documents\AlawarWrapper
[!] Ordner Gelöscht : C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\majjphhgppkndjjkmhhnbgafooenebhd
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Dome&Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Startfenster.lnk
Datei Gelöscht : C:\Windows\System32\Tasks\fsupdate

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [InetStat]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Daten Wiederhergestellt : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Schlüssel Gelöscht : HKCU\Software\anchorfree
Schlüssel Gelöscht : HKCU\Software\genesis
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\TutoTag
Schlüssel Gelöscht : HKLM\Software\installedbrowserextensions
Schlüssel Gelöscht : HKLM\Software\Registry Helper
Schlüssel Gelöscht : HKLM\Software\SupDp
Schlüssel Gelöscht : HKLM\Software\SupTab
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\Tutorials
Schlüssel Gelöscht : HKLM\Software\Wpm
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\installedbrowserextensions
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Daten Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Daten Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\526AB318AF0B8D84B9579557C9882C91
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\526AB318AF0B8D84B9579557C9882C91

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Users\Dome&Luke\AppData\Roaming\Mozilla\Firefox\Profiles\hqbj5sa2.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultenginename", "webssearches");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "webssearches");

-\\ Google Chrome v35.0.1916.153

[ Datei : C:\Users\Dome&Luke\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={C8CFC73E-9BBE-11E2-A2F9-FB60159D735F}&crg=3.1010006.10037&st=23
Gelöscht [Search Provider] : hxxp://searchab.com/?aff=7&uid=3d6984e4-783e-11e2-8aa6-38607782ca6c&q={searchTerms}
Gelöscht [Search Provider] : hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
Gelöscht [Search Provider] : hxxp://start.iminent.com/?appId=69D2C467-460E-4315-AB0F-2A65952B01E0&ref=toolbox&q={searchTerms}
Gelöscht [Search Provider] : hxxp://search.easylifeapp.com/?q={searchTerms}&pid=798&src=ch2&r=2013/03/29&hid=3816331264&lg=EN&cc=DE
Gelöscht [Search Provider] : hxxp://www.delta-search.com/?q={searchTerms}&affID=119816&babsrc=SP_ss&mntrId=FAC838607782CA6C
Gelöscht [Search Provider] : hxxp://search.conduit.com/Results.aspx?ctid=CT3317933&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP1C810998-F2F0-49E9-B385-48F7B860CB9A&q={searchTerms}&SSPV=
Gelöscht [Search Provider] : hxxp://www.sm.de/?q={searchTerms}
Gelöscht [Search Provider] : hxxp://istart.webssearches.com/web/?type=dspp&ts=1401709633&from=amt&uid=HitachiXHDS723020BLA642_MN1240F32X4DPD2X4DPDX&q={searchTerms}
Gelöscht [Extension] : majjphhgppkndjjkmhhnbgafooenebhd

*************************

AdwCleaner[R0].txt - [11923 octets] - [22/06/2014 11:12:46]
AdwCleaner[S0].txt - [5994 octets] - [22/06/2014 11:23:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6054 octets] ##########
Mit Freundlichen Grüßen

doublepack

schrauber 23.06.2014 09:36

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 22:55 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131