Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Twunk_32 bringt mir Werbung als .avi/mp4 auf den PC (https://www.trojaner-board.de/156294-twunk_32-bringt-mir-werbung-avi-mp4-pc.html)

Kami-sama 09.07.2014 21:59
Twunk_32 bringt mir Werbung als .avi/mp4 auf den PC
 
Nabend erst mal.
Ich bin jetzt nicht gerade der hellste was die innereien von Windows angeht, aber soviel ich weis ist ja die Twunk_32.exe eine Windows Datei, die auch benötigt wird und ja eigentlich keine Malware sein kann, jedoch wie kann das dann sein, dass diese .exe-Datei mir ständig fast schon im regelmäßigen Takt von ca 3 std. Werbung in Form von .avi/mp4 in temporäre Ordner reinknallt, die dann auch noch zu undefinierbaren Zeiten einfach aufploppen über den VLC Media-Player und mein Spiel dann minimieren lässt. Ich bin darauf aufmerksam geworden, dass das Twunk_32.exe Dateien downloadet, weil immer ein Fenster erscheint, mit der älteren Darstellung eines Downloads (das mit dem Globus, wo Blätter da rauskommen und die dann in einen Ordner gesteckt werden. Screenshot hab ich nich nicht bekommen, weil es einfach zu schnell downloadet, jedoch versuche ich es noch nachzureichen), welches ich dann an meine Taskleiste fixiert habe. Ob dies nun wirklich mit den Werbungen zutun hat weis ich nicht zu 100%, jedoch holen mich beide Prozesse unsanft aus dem Spielgeschehen raus, was auch schon, durch resultierende Frustrationen und starken Schwerkrafteinwirkungen, mein G930-Headset sein Mikro gekostet hat.
Da es nunmal ein Windows-Prozess ist, würde ich gerne wissen, wie man soetwas überhaupt angeht und ob diese Situation schonmal irgendwo zustande kam und wenn ja, wie war die Lösung.
Danke schonmal im voraus :dankeschoen::dankeschoen::dankeschoen:

schrauber 10.07.2014 07:09
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Kami-sama 11.07.2014 16:19
FRST

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-07-2014
Ran by Phillip (administrator) on PHILLIP-PC on 11-07-2014 13:24:58
Running from C:\Users\Phillip\Downloads
Platform: Windows 7 Ultimate (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files (x86)\Mobogenie\MgAssist.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BitTorrent Inc.) C:\Users\Phillip\AppData\Roaming\uTorrent\uTorrent.exe
(Insight Software Solutions, Inc.) C:\Program Files (x86)\Macro Express3\MacExp.exe
(BitTorrent Inc.) C:\Users\Phillip\AppData\Roaming\uTorrent\uTorrent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
() D:\Terraria\Gameiki Mod Installer\Gameiki Mod Installer.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Insight Software Solutions, Inc.) C:\Program Files (x86)\Macro Express3\ME3x64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Twain Working Group) C:\Windows\twunk_32.exe
(Twain Working Group) C:\Windows\twunk_32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Altiris) C:\Program Files (x86)\Macro Express3\UNWISE.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\Firefox\firefox.exe
(Nullsoft, Inc.) D:\Winamp\winamp.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe
(Valve Corporation) D:\Steam\Steam.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7174728 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.)
HKLM\...\Run: [R.A.T.TE] => C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe [195072 2014-02-11] (Mad Catz Inc)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [775872 2014-02-02] ()
HKLM-x32\...\Run: [Gameiki] => D:\Terraria\Gameiki Mod Installer\Gameiki Mod Installer.exe [358912 2014-02-23] ()
HKLM-x32\...\Run: [iWareV3] => D:\\OfficeMouse.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-06-23] (LogMeIn Inc.)
HKLM Group Policy restriction on software: C:\Program Files\AVAST Software <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files (x86)\Security Task Manager <====== ATTENTION
HKLM\...\Policies\Explorer\Run: [explorer.exe] => C:\Users\Public\Music\explorer.exe No File
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\Run: [dualmonitor] => [X]
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\Run: [awfvdmr] => regsvr32.exe "C:\ProgramData\awfvdmr.dat"
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\Run: [uTorrent] => C:\Users\Phillip\AppData\Roaming\uTorrent\uTorrent.exe [1322832 2014-07-01] (BitTorrent Inc.)
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\Policies\Explorer\Run: [explorer.exe] => C:\Users\Public\Music\explorer.exe
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\MountPoints2: {5e443c85-87aa-11e2-89b4-001c4af08102} - F:\setup.exe
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\MountPoints2: {5e443cd2-87aa-11e2-89b4-001c4af08102} - G:\setup.exe
HKU\S-1-5-21-764779674-1917267945-3389255741-1000\...\MountPoints2: {9892905b-53ff-11e2-978d-bf43568a7e7d} - E:\pushinst.exe
Startup: C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EPUHelp.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC10876E15CE8CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www.holasearch.com/?affID=121962&tt=180413_ctrl&babsrc=HP_ss&mntrId=5CD2001C4AF08102
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=46364&st=home&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&st=chrome&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1391302226&from=amt&uid=MaxtorX6L200P0_L41EB2CH
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=46364&st=home&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=46364&st=chrome&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746&q=
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://www.delta-homes.com/?type=sc&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
SearchScopes: HKLM-x32 - URL hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746&q={searchTerms}
SearchScopes: HKLM-x32 - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=46364&gid=46364-3869-1372420317282-844746&dbCode=1&command={searchTerms}
SearchScopes: HKLM-x32 - TopResultURLFallback hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746&q={searchTerms}
SearchScopes: HKLM-x32 - {01bd49d7-c76b-4310-8beb-14d7e5f322c6} URL = hxxp://search.easylifeapp.com/?q={searchTerms}&pid=625&src=ie2&r=2013/04/05&hid=3692913997&lg=EN&cc=DE
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L200P0_L41EB2CH&ts=1393419045&type=default&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372937759988&tguid=46364-3869-1372420317282-844746&q={searchTerms}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchinweb.info/?l=1&q={searchTerms}&pid=34&r=2014/02/02&hid=4998674025318812004&lg=EN&cc=DE&unqvl=47
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH&q={searchTerms}
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPDD3E15BF-BC4B-48D7-AA13-1ADBAB5359BC&q={searchTerms}
SearchScopes: HKCU - {01bd49d7-c76b-4310-8beb-14d7e5f322c6} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=4.1&ts=1372937759988.000004&tguid=46364-3869-1372420317282-844746&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchab.com/?aff=7&uid=6897d005-6779-11e2-b9bf-d43d7e29bd93&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&affID=121962&tt=180413_ctrl&babsrc=SP_ss_Btisdt7&mntrId=5CD2001C4AF08102
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372937759988&tguid=46364-3869-1372420317282-844746&q={searchTerms}
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.searchinweb.info/?l=1&q={searchTerms}&pid=34&r=2014/02/02&hid=4998674025318812004&lg=EN&cc=DE&unqvl=47
BHO: YoutubeAdblocker - {43FA6B9B-A788-6577-4FF5-E59A11D2E55D} - C:\Program Files (x86)\YoutubeAdblocker\JyJ.x64.dll ()
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Media Player - {3b1777cd-0065-4e71-a170-ea37320ed98a} - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha5890\ie\MediaPlayerV1alpha5890.dll ()
BHO-x32: YoutubeAdblocker - {43FA6B9B-A788-6577-4FF5-E59A11D2E55D} - C:\Program Files (x86)\YoutubeAdblocker\JyJ.dll ()
BHO-x32: Media Watch - {4c45689b-8019-4b1e-9666-e37436c4f4ce} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home663\ie\MediaWatchV1home663.dll ()
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Media View - {78954c94-9901-4395-8cc6-101f396be030} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1529\ie\MediaViewV1alpha1529.dll ()
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Media View - {9c9b27b6-6ea3-40ca-a54d-3f0ba911804e} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha7049\ie\MediaViewV1alpha7049.dll ()
BHO-x32: Media Viewer - {c63e472d-0e9b-4439-a3f0-b699bee6edca} - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha844\ie\MediaViewerV1alpha844.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Phillip\AppData\Roaming\Mozilla\Firefox\Profiles\qcfxts1h.Standard-Benutzer
FF NewTab: about:home
FF DefaultSearchEngine: LEO Eng-Deu
FF SelectedSearchEngine: LEO Eng-Deu
FF Homepage: Google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - D:\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Phillip\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Phillip\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2014-02-12]
FF Extension: No Name - C:\Users\Phillip\AppData\Roaming\Mozilla\Firefox\Profiles\qcfxts1h.Standard-Benutzer\Extensions\jid0-HbNL9qqBkuuKRhJ9ncTonCky1HU@jetpack.xpi [2014-04-16]
FF Extension: Adblock Plus - C:\Users\Phillip\AppData\Roaming\Mozilla\Firefox\Profiles\qcfxts1h.Standard-Benutzer\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-15]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-03-08]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaPlayerV1alpha5890.net] - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha5890\ff
FF Extension: Media Player - C:\Program Files (x86)\MediaPlayerV1\MediaPlayerV1alpha5890\ff [2014-02-17]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewerV1alpha844.net] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha844\ff
FF Extension: Media Viewer - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha844\ff [2014-02-24]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha1529.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1529\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1529\ff [2014-02-27]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaViewV1alpha7049.net] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha7049\ff
FF Extension: Media View - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha7049\ff [2014-03-16]
FF HKLM-x32\...\Firefox\Extensions: [ext@MediaWatchV1home663.net] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home663\ff
FF Extension: Media Watch - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home663\ff [2014-03-23]
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Phillip\AppData\Roaming\Mozilla\Firefox\Profiles\qcfxts1h.Standard-Benutzer\extensions\faststartff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Users\Phillip\AppData\Roaming\Mozilla\Firefox\Profiles\qcfxts1h.Standard-Benutzer\extensions\shortcutff@gmail.com
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\Firefox\firefox.exe

Chrome:
=======
CHR HomePage:
CHR StartupUrls: "hxxp://search.conduit.com/?ctid=CT3244149&SearchSource=48", "", "hxxp://search.easylifeapp.com/?pid=625&src=ch1&r=2013/04/05&hid=3692913997&lg=EN&cc=DE", "hxxp://www.delta-homes.com/?type=hp&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH"
CHR NewTab: "chrome-extension://pelmeidfhdlhlbjimpabfcbnnojbboma/index.html"
CHR DefaultSearchKeyword: delta-homes
CHR DefaultSearchProvider: delta-homes
CHR DefaultSearchURL: hxxp://search.delta-homes.com/web/?type=ds&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Quick Sidebar) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainbkicbloikcngphmjfpjdemblcojdd [2014-06-12]
CHR Extension: (Media View) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ambiigpelebcpfnennimfkhgbgmmclbm [2014-04-14]
CHR Extension: (Google Docs) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-14]
CHR Extension: (Google Drive) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-14]
CHR Extension: (Media View) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\bamnagjagolbhfeghcidimdcgjmfmalc [2014-04-14]
CHR Extension: (YouTube) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-14]
CHR Extension: (Adblock Plus) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-14]
CHR Extension: (Google-Suche) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-14]
CHR Extension: (avast! WebRep) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2014-04-14]
CHR Extension: (Media Watch) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbabckefmbeljecbhhfocjbajnninidn [2014-04-14]
CHR Extension: (Google Wallet) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-14]
CHR Extension: (Extended Protection) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo [2014-06-12]
CHR Extension: (Media Viewer) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\olgpkkonngbegddlojchflahjemlfdjk [2014-04-14]
CHR Extension: (Quick start) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma [2014-06-12]
CHR Extension: (Google Mail) - C:\Users\Phillip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-14]
CHR HKLM-x32\...\Chrome\Extension: [ambiigpelebcpfnennimfkhgbgmmclbm] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha1529\ch\MediaViewV1alpha1529.crx [2014-02-26]
CHR HKLM-x32\...\Chrome\Extension: [bamnagjagolbhfeghcidimdcgjmfmalc] - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha7049\ch\MediaViewV1alpha7049.crx [2014-02-27]
CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-03-08]
CHR HKLM-x32\...\Chrome\Extension: [mbabckefmbeljecbhhfocjbajnninidn] - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home663\ch\MediaWatchV1home663.crx [2014-03-20]
CHR HKLM-x32\...\Chrome\Extension: [olgpkkonngbegddlojchflahjemlfdjk] - C:\Program Files (x86)\MediaViewerV1\MediaViewerV1alpha844\ch\MediaViewerV1alpha844.crx [2014-02-23]
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.delta-homes.com/?type=sc&ts=1402568694&from=wpm0612&uid=MaxtorX6L200P0_L41EB2CH
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248 2013-03-07] (AVAST Software)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] () [File not signed]
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [761968 2014-06-12] (Cherished Technololgy LIMITED)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-15] (LogMeIn, Inc.)
R2 MgAssistService; C:\Program Files (x86)\Mobogenie\MgAssist.exe [63168 2014-02-02] ()
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139680 2012-07-09] (Microsoft Corporation) [File not signed]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5127200 2013-05-27] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-07-09] ()
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [297984 2014-04-09] () [File not signed]
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [540304 2014-06-11] (Cherished Technololgy LIMITED)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [X]
S4 syshost32; "C:\Windows\Installer\{E1FAC530-2E45-ACBF-4A6F-FA5F2A21C918}\syshost.exe" /service [X]

==================== Drivers (Whitelisted) ====================

S4 8f0c429ce96d18cb; C:\Windows\System32\Drivers\8f0c429ce96d18cb.sys [78800 2014-01-02] () [File not signed]
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-03-07] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [70992 2013-03-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-03-07] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-03-07] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [377920 2013-03-07] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [68920 2013-03-07] (AVAST Software)
S3 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178624 2013-03-07] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-09] (DT Soft Ltd)
R3 EuMusDesignVirtualAudioCableWdm; C:\Windows\System32\DRIVERS\vrtaucbl.sys [67584 2014-07-06] (Eugene V. Muzychenko) [File not signed]
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [24040 2014-02-12] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [51560 2014-02-12] (Saitek)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
R3 _hid_0738_1704; C:\Windows\System32\DRIVERS\_hid_0738_1704.sys [179904 2014-02-12] (Saitek)
R3 _usb_0738_1704; C:\Windows\System32\DRIVERS\_usb_0738_1704.sys [46528 2014-02-12] (Saitek)
S3 MSICDSetup; \??\D:\MSI\CDriver64.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\MSI\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-11 13:24 - 2014-07-11 13:25 - 00030163 _____ () C:\Users\Phillip\Downloads\FRST.txt
2014-07-11 13:24 - 2014-07-11 13:25 - 00000000 ____D () C:\FRST
2014-07-11 13:23 - 2014-07-11 13:24 - 02084864 _____ (Farbar) C:\Users\Phillip\Downloads\FRST64.exe
2014-07-10 05:37 - 2014-07-10 05:37 - 00227056 _____ () C:\Users\Phillip\Downloads\DLive_OST1_downloader-I3AttGjiY.exe
2014-07-10 05:37 - 2014-07-10 05:37 - 00227040 _____ () C:\Users\Phillip\Downloads\DLive_OST2_downloader-If35APovB.exe
2014-07-08 05:14 - 2014-02-16 02:17 - 00001085 _____ () C:\Users\Phillip\Desktop\Code Geass - Lelouch of the Rebellion - Verknüpfung.lnk
2014-07-07 23:10 - 2014-07-07 23:10 - 00000873 _____ () C:\Users\Phillip\Desktop\Counter Strike 1.6 No Steam.lnk
2014-07-07 23:10 - 2014-07-07 23:10 - 00000865 _____ () C:\Users\Phillip\Desktop\Dedicated Server.lnk
2014-07-06 01:05 - 2014-07-06 01:05 - 00000870 _____ () C:\Users\Phillip\Desktop\Control panel.lnk
2014-07-06 01:04 - 2014-07-06 01:05 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-07-06 01:04 - 2014-07-06 01:04 - 00067584 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-07-06 01:04 - 2014-07-06 01:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-07-06 01:03 - 2014-07-06 01:03 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Virtual Audio Cable - CHIP-Installer.exe
2014-07-06 01:03 - 2014-07-06 01:03 - 00279379 _____ () C:\Users\Phillip\Downloads\VirtualAudioCable409.zip
2014-07-04 21:58 - 2014-07-04 21:58 - 00000577 _____ () C:\Users\Phillip\Desktop\World of Tanks 0.9.1 ProMod.lnk
2014-07-04 21:54 - 2014-07-04 21:54 - 05718016 _____ (OldSkool) C:\Users\Phillip\Downloads\ProMod.exe
2014-06-30 03:57 - 2014-06-30 03:57 - 00000392 _____ () C:\Users\Phillip\Desktop\Arnie Complaint.txt
2014-06-29 11:08 - 2014-06-29 11:08 - 00008021 _____ () C:\Users\Phillip\Desktop\Neues Textdokument.txt
2014-06-28 13:15 - 2014-06-28 13:15 - 00013157 _____ () C:\Users\Phillip\Desktop\Sound - Verknüpfung.lnk
2014-06-28 12:38 - 2014-06-28 12:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-06-28 12:23 - 2014-06-28 12:23 - 00029610 _____ () C:\Windows\DirectX.log
2014-06-28 12:23 - 2014-06-28 12:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2014-06-28 12:23 - 2014-06-28 12:23 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories
2014-06-28 12:21 - 2014-06-28 12:21 - 07886712 _____ (Microsoft Corporation) C:\Users\Phillip\Downloads\Xbox360_64Deu.exe
2014-06-28 12:18 - 2014-06-28 12:18 - 00000000 ____D () C:\Users\Phillip\AppData\Local\SmartTechnology
2014-06-28 12:15 - 2014-06-28 12:18 - 00000000 ____D () C:\Users\Public\Documents\Mad Catz
2014-06-28 12:15 - 2014-06-28 12:15 - 00003001 _____ () C:\Users\Phillip\Desktop\R.A.T.TE.lnk
2014-06-28 12:15 - 2014-06-28 12:15 - 00000000 ____D () C:\Program Files\Mad Catz
2014-06-28 12:13 - 2014-06-28 12:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel__hid_0738_1704_01009.Wdf
2014-06-28 11:50 - 2014-06-28 11:53 - 00001352 _____ () C:\Users\Phillip\Documents\AutoHotkey.ahk
2014-06-28 11:50 - 2014-06-28 11:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-06-28 11:50 - 2014-06-28 11:50 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-06-28 11:49 - 2014-06-28 11:49 - 02047357 _____ () C:\Users\Phillip\Downloads\AutoHotkey104805_Install.exe
2014-06-28 11:44 - 2014-06-28 11:41 - 00004640 _____ () C:\Users\Phillip\Documents\macex_bak000.~mex
2014-06-28 11:41 - 2014-07-11 13:22 - 00000000 ____D () C:\Program Files (x86)\Macro Express3
2014-06-28 11:41 - 2014-06-28 11:41 - 00004640 _____ () C:\Users\Phillip\Documents\macex.mex
2014-06-28 11:41 - 2014-06-28 11:41 - 00000000 ____D () C:\ProgramData\Insight Software Solutions
2014-06-28 11:39 - 2014-06-28 11:39 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Macro Express - CHIP-Installer.exe
2014-06-28 11:13 - 2014-06-28 11:13 - 00000000 ____D () C:\Users\Phillip\AppData\Local\Logitech
2014-06-28 11:13 - 2014-06-28 11:13 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-06-28 11:12 - 2014-06-29 10:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-28 11:12 - 2014-06-28 11:13 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2014-06-28 11:12 - 2014-06-28 11:12 - 00000923 _____ () C:\Users\Phillip\Desktop\Logitech Gaming Software 8.53.lnk
2014-06-28 11:11 - 2014-06-29 04:35 - 00003842 _____ () C:\Windows\WindowsUpdate.log
2014-06-28 11:10 - 2014-06-28 11:10 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Logitech
2014-06-28 11:10 - 2014-06-28 11:10 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Logishrd
2014-06-27 23:48 - 2014-06-28 11:17 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Audacity
2014-06-27 23:47 - 2014-06-27 23:47 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-27 23:47 - 2014-06-27 23:47 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-27 23:46 - 2014-06-27 23:46 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Audacity - CHIP-Installer.exe
2014-06-27 17:44 - 2014-07-07 01:19 - 00000000 ____D () C:\Users\Phillip\Desktop\Anime
2014-06-26 23:59 - 2014-06-27 00:03 - 00000000 ____D () C:\Users\Phillip\Desktop\MP3
2014-06-26 11:32 - 2014-07-11 13:18 - 00005403 _____ () C:\Windows\setupact.log
2014-06-26 11:32 - 2014-07-10 00:21 - 00062464 ___SH () C:\Users\Phillip\Desktop\Thumbs.db
2014-06-26 11:32 - 2014-06-26 11:32 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-25 10:41 - 2014-06-25 10:41 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-25 10:41 - 2014-06-25 10:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-06-25 10:38 - 2014-06-25 10:38 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Nvidia PhysX System Software - CHIP-Installer.exe
2014-06-25 10:32 - 2013-02-07 20:24 - 00000000 ____D () C:\Users\Phillip\Documents\BioWare
2014-06-25 10:09 - 2014-06-25 10:31 - 00000872 _____ () C:\Users\Phillip\Desktop\Play Dragon Age Origins.lnk
2014-06-25 04:39 - 2014-07-07 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
2014-06-25 04:33 - 2014-07-07 23:05 - 00000927 _____ () C:\Users\Phillip\Desktop\hl.exe - Verknüpfung.lnk
2014-06-24 19:07 - 2014-06-24 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-24 19:07 - 2014-06-24 19:07 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-06-22 20:52 - 2014-06-22 20:52 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-06-21 23:34 - 2014-07-06 01:59 - 00000000 ____D () C:\Users\Phillip\Desktop\Mappi
2014-06-21 17:13 - 2014-06-27 09:37 - 00000000 ___RD () C:\Users\Phillip\Desktop\Desktoppi
2014-06-19 17:00 - 2014-06-19 17:00 - 02247960 _____ () C:\Users\Phillip\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-06-19 12:09 - 2014-06-23 01:16 - 00010040 _____ () C:\Users\Phillip\Documents\gaming.xlsx
2014-06-13 22:39 - 2014-06-28 11:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-12 12:26 - 2014-06-12 13:28 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\337Games
2014-06-12 12:26 - 2014-06-12 12:26 - 00000000 ____D () C:\ProgramData\IePluginServices

==================== One Month Modified Files and Folders =======

2014-07-11 13:25 - 2014-07-11 13:24 - 00030163 _____ () C:\Users\Phillip\Downloads\FRST.txt
2014-07-11 13:25 - 2014-07-11 13:24 - 00000000 ____D () C:\FRST
2014-07-11 13:25 - 2013-01-26 07:03 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\uTorrent
2014-07-11 13:24 - 2014-07-11 13:23 - 02084864 _____ (Farbar) C:\Users\Phillip\Downloads\FRST64.exe
2014-07-11 13:22 - 2014-06-28 11:41 - 00000000 ____D () C:\Program Files (x86)\Macro Express3
2014-07-11 13:18 - 2014-06-26 11:32 - 00005403 _____ () C:\Windows\setupact.log
2014-07-11 13:15 - 2014-04-14 22:10 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-11 12:34 - 2014-05-18 22:03 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-11 11:52 - 2009-07-14 06:45 - 00023200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-11 11:52 - 2009-07-14 06:45 - 00023200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-11 11:51 - 2013-06-26 11:11 - 00004196 _____ () C:\Windows\System32\Tasks\Software Updater
2014-07-11 11:47 - 2013-02-01 21:54 - 00000000 ____D () C:\Users\Phillip\AppData\Local\LogMeIn Hamachi
2014-07-11 11:46 - 2014-04-14 22:10 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-11 11:46 - 2013-01-26 07:30 - 00000366 ____H () C:\Windows\Tasks\ZoomExUpdaterTask{D5F77443-76F8-4031-8389-46B2A7B7FF66}.job
2014-07-11 11:46 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-10 23:48 - 2013-01-27 19:41 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\TS3Client
2014-07-10 17:59 - 2013-01-29 16:39 - 00007666 _____ () C:\Users\Phillip\AppData\Local\Resmon.ResmonCfg
2014-07-10 15:01 - 2013-04-18 22:00 - 00000280 _____ () C:\Windows\Tasks\PC Performer_DEFAULT.job
2014-07-10 08:33 - 2013-04-06 16:11 - 00000000 ____D () C:\ProgramData\Origin
2014-07-10 05:50 - 2013-08-02 11:07 - 00000000 ____D () C:\Users\Phillip\Desktop\alles
2014-07-10 05:37 - 2014-07-10 05:37 - 00227056 _____ () C:\Users\Phillip\Downloads\DLive_OST1_downloader-I3AttGjiY.exe
2014-07-10 05:37 - 2014-07-10 05:37 - 00227040 _____ () C:\Users\Phillip\Downloads\DLive_OST2_downloader-If35APovB.exe
2014-07-10 00:21 - 2014-06-26 11:32 - 00062464 ___SH () C:\Users\Phillip\Desktop\Thumbs.db
2014-07-09 23:10 - 2014-06-03 05:42 - 00297088 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-07-09 23:10 - 2014-06-03 05:17 - 00297088 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-07-09 23:10 - 2014-06-03 05:17 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-07-09 23:06 - 2014-06-03 05:17 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-09 22:00 - 2013-04-18 22:00 - 00000288 _____ () C:\Windows\Tasks\PC Performer_UPDATES.job
2014-07-09 15:05 - 2014-01-03 15:38 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\vlc
2014-07-09 00:34 - 2014-05-18 22:03 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-09 00:34 - 2014-05-18 22:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-09 00:34 - 2014-05-18 22:03 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-07 23:10 - 2014-07-07 23:10 - 00000873 _____ () C:\Users\Phillip\Desktop\Counter Strike 1.6 No Steam.lnk
2014-07-07 23:10 - 2014-07-07 23:10 - 00000865 _____ () C:\Users\Phillip\Desktop\Dedicated Server.lnk
2014-07-07 23:10 - 2014-06-25 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
2014-07-07 23:05 - 2014-06-25 04:33 - 00000927 _____ () C:\Users\Phillip\Desktop\hl.exe - Verknüpfung.lnk
2014-07-07 22:18 - 2009-07-14 19:58 - 00702198 _____ () C:\Windows\system32\perfh007.dat
2014-07-07 22:18 - 2009-07-14 19:58 - 00149838 _____ () C:\Windows\system32\perfc007.dat
2014-07-07 22:18 - 2009-07-14 07:13 - 01626920 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-07 17:42 - 2013-01-27 17:56 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Skype
2014-07-07 01:19 - 2014-06-27 17:44 - 00000000 ____D () C:\Users\Phillip\Desktop\Anime
2014-07-06 01:59 - 2014-06-21 23:34 - 00000000 ____D () C:\Users\Phillip\Desktop\Mappi
2014-07-06 01:05 - 2014-07-06 01:05 - 00000870 _____ () C:\Users\Phillip\Desktop\Control panel.lnk
2014-07-06 01:05 - 2014-07-06 01:04 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-07-06 01:04 - 2014-07-06 01:04 - 00067584 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-07-06 01:04 - 2014-07-06 01:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-07-06 01:03 - 2014-07-06 01:03 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Virtual Audio Cable - CHIP-Installer.exe
2014-07-06 01:03 - 2014-07-06 01:03 - 00279379 _____ () C:\Users\Phillip\Downloads\VirtualAudioCable409.zip
2014-07-04 21:58 - 2014-07-04 21:58 - 00000577 _____ () C:\Users\Phillip\Desktop\World of Tanks 0.9.1 ProMod.lnk
2014-07-04 21:54 - 2014-07-04 21:54 - 05718016 _____ (OldSkool) C:\Users\Phillip\Downloads\ProMod.exe
2014-07-04 21:54 - 2013-03-20 17:33 - 00155136 _____ () C:\Windows\SysWOW64\unrar.dll
2014-07-04 21:54 - 2013-03-20 17:33 - 00034308 _____ () C:\Windows\SysWOW64\bassmod.dll
2014-07-03 12:38 - 2013-01-27 19:40 - 00000000 ____D () C:\Users\Phillip\AppData\Local\TeamSpeak 3 Client
2014-06-30 03:57 - 2014-06-30 03:57 - 00000392 _____ () C:\Users\Phillip\Desktop\Arnie Complaint.txt
2014-06-29 11:08 - 2014-06-29 11:08 - 00008021 _____ () C:\Users\Phillip\Desktop\Neues Textdokument.txt
2014-06-29 10:50 - 2014-06-28 11:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-29 04:35 - 2014-06-28 11:11 - 00003842 _____ () C:\Windows\WindowsUpdate.log
2014-06-28 16:59 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-28 13:15 - 2014-06-28 13:15 - 00013157 _____ () C:\Users\Phillip\Desktop\Sound - Verknüpfung.lnk
2014-06-28 12:38 - 2014-06-28 12:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-06-28 12:23 - 2014-06-28 12:23 - 00029610 _____ () C:\Windows\DirectX.log
2014-06-28 12:23 - 2014-06-28 12:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2014-06-28 12:23 - 2014-06-28 12:23 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories
2014-06-28 12:21 - 2014-06-28 12:21 - 07886712 _____ (Microsoft Corporation) C:\Users\Phillip\Downloads\Xbox360_64Deu.exe
2014-06-28 12:18 - 2014-06-28 12:18 - 00000000 ____D () C:\Users\Phillip\AppData\Local\SmartTechnology
2014-06-28 12:18 - 2014-06-28 12:15 - 00000000 ____D () C:\Users\Public\Documents\Mad Catz
2014-06-28 12:15 - 2014-06-28 12:15 - 00003001 _____ () C:\Users\Phillip\Desktop\R.A.T.TE.lnk
2014-06-28 12:15 - 2014-06-28 12:15 - 00000000 ____D () C:\Program Files\Mad Catz
2014-06-28 12:13 - 2014-06-28 12:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel__hid_0738_1704_01009.Wdf
2014-06-28 11:53 - 2014-06-28 11:50 - 00001352 _____ () C:\Users\Phillip\Documents\AutoHotkey.ahk
2014-06-28 11:51 - 2014-06-28 11:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-06-28 11:50 - 2014-06-28 11:50 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-06-28 11:50 - 2009-07-14 20:18 - 00000000 ____D () C:\Windows\ShellNew
2014-06-28 11:49 - 2014-06-28 11:49 - 02047357 _____ () C:\Users\Phillip\Downloads\AutoHotkey104805_Install.exe
2014-06-28 11:41 - 2014-06-28 11:44 - 00004640 _____ () C:\Users\Phillip\Documents\macex_bak000.~mex
2014-06-28 11:41 - 2014-06-28 11:41 - 00004640 _____ () C:\Users\Phillip\Documents\macex.mex
2014-06-28 11:41 - 2014-06-28 11:41 - 00000000 ____D () C:\ProgramData\Insight Software Solutions
2014-06-28 11:39 - 2014-06-28 11:39 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Macro Express - CHIP-Installer.exe
2014-06-28 11:17 - 2014-06-27 23:48 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Audacity
2014-06-28 11:13 - 2014-06-28 11:13 - 00000000 ____D () C:\Users\Phillip\AppData\Local\Logitech
2014-06-28 11:13 - 2014-06-28 11:13 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-06-28 11:13 - 2014-06-28 11:12 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2014-06-28 11:12 - 2014-06-28 11:12 - 00000923 _____ () C:\Users\Phillip\Desktop\Logitech Gaming Software 8.53.lnk
2014-06-28 11:12 - 2014-06-13 22:39 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-28 11:10 - 2014-06-28 11:10 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Logitech
2014-06-28 11:10 - 2014-06-28 11:10 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Logishrd
2014-06-28 02:49 - 2013-05-07 15:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2
2014-06-27 23:47 - 2014-06-27 23:47 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-27 23:47 - 2014-06-27 23:47 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-27 23:46 - 2014-06-27 23:46 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Audacity - CHIP-Installer.exe
2014-06-27 18:59 - 2013-11-18 18:47 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-06-27 09:37 - 2014-06-21 17:13 - 00000000 ___RD () C:\Users\Phillip\Desktop\Desktoppi
2014-06-27 00:03 - 2014-06-26 23:59 - 00000000 ____D () C:\Users\Phillip\Desktop\MP3
2014-06-26 11:32 - 2014-06-26 11:32 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-26 01:43 - 2013-07-24 22:52 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Winamp
2014-06-25 13:44 - 2013-01-01 12:23 - 00000000 ____D () C:\Windows.old.000
2014-06-25 13:18 - 2013-03-09 08:50 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\DAEMON Tools Lite
2014-06-25 13:18 - 2013-01-18 23:32 - 00000000 ____D () C:\Windows\Minidump
2014-06-25 10:41 - 2014-06-25 10:41 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-25 10:41 - 2014-06-25 10:41 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-06-25 10:38 - 2014-06-25 10:38 - 00961360 _____ (Chip Digital GmbH) C:\Users\Phillip\Downloads\Nvidia PhysX System Software - CHIP-Installer.exe
2014-06-25 10:31 - 2014-06-25 10:09 - 00000872 _____ () C:\Users\Phillip\Desktop\Play Dragon Age Origins.lnk
2014-06-25 10:31 - 2013-01-01 12:42 - 00000000 ____D () C:\Users\Phillip
2014-06-24 19:07 - 2014-06-24 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-24 19:07 - 2014-06-24 19:07 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-06-24 19:07 - 2014-05-14 13:59 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-06-24 13:57 - 2013-01-05 17:47 - 00000000 ____D () C:\Users\Phillip\Downloads\desktop hintergrund
2014-06-23 01:16 - 2014-06-19 12:09 - 00010040 _____ () C:\Users\Phillip\Documents\gaming.xlsx
2014-06-22 21:07 - 2014-04-14 13:45 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\.minecraft
2014-06-22 20:52 - 2014-06-22 20:52 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-06-21 19:20 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-21 10:40 - 2014-04-15 01:18 - 00073804 _____ () C:\Users\Phillip\Desktop\Moron.m3u
2014-06-19 17:00 - 2014-06-19 17:00 - 02247960 _____ () C:\Users\Phillip\Downloads\battlelog-web-plugins_2.4.0_141.exe
2014-06-19 09:50 - 2014-04-15 10:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-19 01:04 - 2014-03-29 12:20 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 22:45 - 2013-07-23 19:27 - 00000000 ____D () C:\Users\Phillip\Desktop\11post bilder
2014-06-12 13:34 - 2013-01-01 21:22 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-12 13:33 - 2014-02-26 14:51 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-06-12 13:28 - 2014-06-12 12:26 - 00000000 ____D () C:\Users\Phillip\AppData\Roaming\337Games
2014-06-12 12:26 - 2014-06-12 12:26 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-06-12 12:24 - 2014-04-15 10:44 - 00001463 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-12 12:24 - 2014-04-15 10:44 - 00001451 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-12 12:24 - 2014-04-14 22:11 - 00002429 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-12 12:24 - 2014-02-02 02:50 - 00000000 ____D () C:\ProgramData\WPM
2014-06-12 12:24 - 2013-01-01 12:43 - 00001621 _____ () C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-12 12:24 - 2013-01-01 12:43 - 00001599 _____ () C:\Users\Phillip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

Files to move or delete:
====================
C:\ProgramData\awfvdmr.dat


Some content of TEMP:
====================
C:\Users\Phillip\AppData\Local\Temp\GLB1A2B.EXE


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-07-08 17:21

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

Addition
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-07-2014
Ran by Phillip at 2014-07-11 13:25:40
Running from C:\Users\Phillip\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{5E03A267-415E-5383-FA8F-3CE4145663B9}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2012.1219.1521.27485 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.71219.1540 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In  (Version: 2.04.0000 - AMD) Hidden
AMD VISION Engine Control Center (x32 Version: 2012.1219.1521.27485 - Ihr Firmenname) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 8.0.1483.0 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version:  - AVM Berlin)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.1219.1520.27485 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.1219.1521.27485 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.28 - Piriform)
Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version:  - Dark Byte)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)
Counter-Strike Source Version 1807769 (HKLM\...\{28659B67-FC49-49DB-9DAC-1AD52203D75A}_is1) (Version: 1807769 - Strogino CS Portal)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Dark Souls Prepare to Die Edition (HKLM-x32\...\GFWL_{4E4D0FA1-F880-4CCB-999A-501000008200}) (Version: 1.0.0000.130 - NAMCO BANDAI Games Europe S.A.S.)
Dark Souls Prepare to Die Edition (x32 Version: 1.0.0000.130 - NAMCO BANDAI Games Europe S.A.S.) Hidden
DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - Ihr Firmenname)
Dokan Library 0.6.0 (HKLM-x32\...\DokanLibrary) (Version:  - )
Driver Genius (HKLM-x32\...\Driver Genius_is1) (Version: 12.0 - Driver-Soft Inc.)
Dual Monitor 1.22 (HKLM-x32\...\{64AA3F94-ED4A-4A4B-B72C-B7A1481ED5D8}_is1) (Version: 1.22.021813 - Cristi Diaconu)
Fortix (HKLM-x32\...\Steam App 45400) (Version:  - Nemesys Games)
Gameiki Mod Installer (HKCU\...\Gameiki) (Version:  - )
gamelauncher-ps2-psg (HKCU\...\SOE-D:/Spiele/Planetside2) (Version:  - Sony Online Entertainment)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Half-Life (HKLM-x32\...\Half-Life_is1) (Version: Half-Life - Non Steam - KingSOFT DVD)
Heroes of Might and Magic V Collector Edition (HKLM-x32\...\{DDB68A90-340C-42B9-B42B-D2CBED1B91DC}) (Version:  - )
ISO Workshop 4.5 (HKLM-x32\...\ISO Workshop_is1) (Version:  - Glorylogic)
Java 7 Update 10 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417010FF}) (Version: 7.0.100 - Oracle)
Java 7 Update 10 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217010F0}) (Version: 7.0.100 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.53 (HKLM\...\Logitech Gaming Software) (Version: 8.53.154 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.214 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.214 - LogMeIn, Inc.) Hidden
Media Player (HKLM-x32\...\MediaPlayerV1alpha5890) (Version: 1.1 - Media Player) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha1529) (Version: 1.1 - Media View) <==== ATTENTION
Media View (HKLM-x32\...\MediaViewV1alpha7049) (Version: 1.1 - Media View) <==== ATTENTION
Media Viewer (HKLM-x32\...\MediaViewerV1alpha844) (Version: 1.1 - Media Viewer) <==== ATTENTION
Media Watch (HKLM-x32\...\MediaWatchV1home663) (Version: 1.1 - Media Watch) <==== ATTENTION
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.5.1 (HKLM-x32\...\Minecraft1.5.1) (Version:  - )
Minecraft1.7.9 (HKLM-x32\...\Minecraft1.7.9) (Version:  - )
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{48615A7B-F026-4F62-A3F1-49001B8E21CB}) (Version: 0.44.256 - Overwolf)
PrivitizeVPN (HKLM-x32\...\PrivitizeVPN) (Version: 1.0.0 - OOO Industry) <==== ATTENTION
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
R.A.T.TE (HKLM\...\{0BE3138E-CB5E-4C09-8E06-B09BA9FEF86B}) (Version: 7.0.31.77 - Mad Catz Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.107 - Skype Technologies S.A.)
Southpark Stick of Truth (HKLM-x32\...\U291dGhwYXJrU3RpY2tvZlRydXRo_is1) (Version: 1 - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TP-LINK Wireless Client Utility (HKLM-x32\...\{5EF44D3A-E86E-434C-8418-71E277C565DF}) (Version: 2.0 - TP-LINK)
UltraISO Premium V9.6 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Virtual Audio Cable 4.9 (HKLM\...\Virtual Audio Cable 4.9) (Version:  - )
VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Tanks - Common Test (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812CT}_is1) (Version:  - Wargaming.net)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version:  - Wargaming.net)
YoutubeAdblocker (HKLM-x32\...\{4820778D-AB0D-6D18-C316-52A6A0E1D507}) (Version: 1.3.0.1798 - YoutubeAdblocker) <==== ATTENTION
YoutubeAdblocker (HKLM-x32\...\{CF830981-8F31-C561-C7A0-FE2CE1878B40}) (Version: 4.2.0.1447 - YoutubeAdblocker) <==== ATTENTION
ZoomEx (HKLM\...\{18234582-1913-4EB9-AC52-5131C3C06774}) (Version: 1.0 - )

==================== Restore Points  =========================

11-07-2014 10:40:35 Geplanter Prüfpunkt
11-07-2014 11:21:48 Uninstall Install Macro Express 3

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {04E5182F-9846-4181-8563-11C016C65874} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect <==== ATTENTION
Task: {17FF25E0-2BEB-4C73-865B-19D75D0B30F8} - System32\Tasks\FreeDriverScout => C:\Program Files\Covus Freemium\Free Driver Scout\1Click.exe
Task: {683B0DA8-2F14-4782-A668-8E5B6927B5F8} - System32\Tasks\PC Performer => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: {71A8E4B9-000C-4068-95CC-D696139C398C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09] (Adobe Systems Incorporated)
Task: {8077F1C3-D406-488E-8C9A-23562C57B9FD} - System32\Tasks\PC Performer_UPDATES => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: {92DDB2B7-1C04-4DE2-B787-C290D037D806} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-02-19] (Piriform Ltd)
Task: {A90D140F-E5B2-49CF-A7B1-16C78BE50EA3} - System32\Tasks\PC Performer_DEFAULT => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: {B350C7B7-5EFB-4113-BF16-64CE19297AA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-14] (Google Inc.)
Task: {BB2B5E91-0FED-4558-9E24-72ED8E2C8B8E} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-18] ()
Task: {BFD57B85-6323-40EB-84AD-4367C4B5B15E} - System32\Tasks\RegistryDr_Start => C:\Program Files (x86)\Registry Dr\RegistryDr.exe <==== ATTENTION
Task: {CA337F45-3B3C-4F8A-86E4-1B2471757454} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-18] ()
Task: {CC11B6B0-CBBC-486E-BFE1-6F6B93A7B999} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-14] (Google Inc.)
Task: {ED966A0D-CE10-4290-94F2-3B87F64A2312} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {EF66E205-149A-4EA7-89DB-F12D19A7A36E} - System32\Tasks\ZoomExUpdaterTask{D5F77443-76F8-4031-8389-46B2A7B7FF66} => C:\ProgramData\Premium\ZoomEx\ZoomEx.exe <==== ATTENTION
Task: {FF8841C1-CBEC-4AA9-9148-F0BBBF583160} - System32\Tasks\RegistryDr_Popup => C:\Program Files (x86)\Registry Dr\Splash.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PC Performer_DEFAULT.job => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: C:\Windows\Tasks\PC Performer_UPDATES.job => C:\Program Files (x86)\PC Performer\PCPerformer.exe <==== ATTENTION
Task: C:\Windows\Tasks\ZoomExUpdaterTask{D5F77443-76F8-4031-8389-46B2A7B7FF66}.job => C:\ProgramData\Premium\ZoomEx\ZoomEx.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2011-01-10 14:49 - 2011-01-10 14:49 - 00014848 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2014-02-02 02:50 - 2014-02-02 02:52 - 00063168 _____ () C:\Program Files (x86)\Mobogenie\MgAssist.exe
2014-02-11 20:21 - 2014-02-11 20:21 - 00860160 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 01043968 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-02-11 20:21 - 2014-02-11 20:21 - 00052736 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2014-02-11 20:22 - 2014-02-11 20:22 - 00236032 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-02-11 17:01 - 2014-02-11 17:01 - 12533760 _____ () C:\Program Files\Mad Catz\R.A.T.TE\Pr0fileEditor_Forms.dll
2014-02-11 17:04 - 2014-02-11 17:04 - 00299008 _____ () C:\Program Files\Mad Catz\R.A.T.TE\de\Pr0fileEditor_Forms.resources.dll
2014-02-02 02:50 - 2014-02-02 02:52 - 00775872 _____ () C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
2014-02-23 22:34 - 2014-02-23 22:34 - 00358912 _____ () D:\Terraria\Gameiki Mod Installer\Gameiki Mod Installer.exe
2014-06-03 05:17 - 2014-07-09 23:10 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-07-10 22:27 - 2014-07-10 20:14 - 02819584 _____ () C:\Program Files\AVAST Software\Avast\defs\14071001\algo.dll
2014-02-02 02:50 - 2014-02-02 02:52 - 00061440 _____ () C:\Program Files (x86)\Mobogenie\Device.dll
2014-06-18 18:43 - 2014-06-18 18:43 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\Firefox\mozjs.dll
2014-07-11 13:22 - 2014-07-11 13:22 - 00010752 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\auth.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00069120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\burnlib.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00025088 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\dsp_sc.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00013824 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\dsp_sps.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006656 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_fhgaac.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004096 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_flac.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005632 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_lame.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004096 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_vorbis.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004096 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_wav.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006144 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\enc_wma.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00023552 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_classicart.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00007168 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_crasher.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00023040 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_ff.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00012288 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_hotkeys.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00041984 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_jumpex.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00022528 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_ml.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00009728 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_nopro.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00011776 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_skinmanager.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00010240 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_timerestore.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00008192 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_tray.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00010752 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\gen_undo.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_avi.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00014848 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_cdda.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006656 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_dshow.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005632 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_flac.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_flv.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_linein.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00020480 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_midi.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004608 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_mkv.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00018432 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_mod.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00023040 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_mp3.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_mp4.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00011776 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_nsv.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_swf.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00011264 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_vorbis.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006656 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_wav.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005632 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_wave.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00015360 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_wm.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004608 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\in_wv.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_addons.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006656 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_autotag.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_bookmarks.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00024064 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_cloud.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00008192 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_devices.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00047616 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_disc.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00009728 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_downloads.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004608 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_enqplay.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00009728 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_history.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_impex.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00056320 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_local.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_nowplaying.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00014336 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_online.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00017408 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_playlists.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00034816 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_plg.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00055296 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_pmp.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00005120 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_rg.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00008192 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_transcode.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00015360 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ml_wire.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00036352 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\ombrowser.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006144 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\out_disk.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00016384 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\out_ds.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00007680 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\out_wave.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003072 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\playlist.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004608 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_activesync.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00019968 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_android.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00007680 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_cloud.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00036864 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_ipod.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00003584 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_njb.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004096 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_p4s.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00011776 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_usb.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00039936 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\pmp_wifi.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00006144 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\tagz.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00088064 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\vis_avs.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00155648 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\vis_milk2.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00007680 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\vis_nsfs.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00211456 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\winamp.lng
2014-07-11 13:22 - 2014-07-11 13:22 - 00004096 _____ () C:\Users\Phillip\AppData\Local\Temp\WDEB51D.tmp\winampa.lng
2013-07-24 00:57 - 2013-07-24 00:57 - 00340992 _____ () D:\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2014-07-09 00:34 - 2014-07-09 00:34 - 17029808 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
2014-05-21 21:01 - 2014-05-31 03:27 - 01116672 _____ () D:\Steam\libavcodec-55.dll
2014-04-23 10:57 - 2014-05-31 03:27 - 00438784 _____ () D:\Steam\libavutil-53.dll
2014-05-21 21:01 - 2014-05-31 03:27 - 00399360 _____ () D:\Steam\libavformat-55.dll
2014-01-08 15:50 - 2014-05-31 03:27 - 00331264 _____ () D:\Steam\libavresample-1.dll
2013-03-12 18:10 - 2014-06-27 00:40 - 00764416 _____ () D:\Steam\SDL2.dll
2014-05-21 21:02 - 2014-07-10 20:21 - 02139328 _____ () D:\Steam\video.dll
2014-05-21 21:01 - 2014-04-29 02:37 - 00519168 _____ () D:\Steam\libswscale-2.dll
2013-01-28 15:54 - 2014-07-10 20:21 - 01116864 _____ () D:\Steam\bin\chromehtml.DLL
2013-01-28 15:54 - 2014-05-02 01:35 - 20628160 _____ () D:\Steam\bin\libcef.dll
2013-01-28 15:54 - 2013-06-15 01:49 - 01100800 _____ () D:\Steam\bin\avcodec-53.dll
2013-01-28 15:54 - 2013-06-15 01:49 - 00124416 _____ () D:\Steam\bin\avutil-51.dll
2013-01-28 15:54 - 2013-06-15 01:49 - 00192000 _____ () D:\Steam\bin\avformat-53.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:373E1720

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: avast => "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files (x86)\avmwlanstick\wlangui.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "D:\DAEMON TOOLS\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EADM => "D:\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: iWareV3 => D:\\OfficeMouse.exe
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Optimizer Pro => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
MSCONFIG\startupreg: PrivitizeVPN => C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "D:\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Super-Charger => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/09/2014 11:46:33 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Steam\steam.exe

Error: (07/09/2014 00:05:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Steam.exe, Version 2.30.30.94 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 12b4

Startzeit: 01cf9ab2242b3b9e

Endzeit: 60000

Anwendungspfad: D:\Steam\Steam.exe

Berichts-ID: c1dcddc1-06eb-11e4-863e-942135c3a834

Error: (07/08/2014 00:43:19 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Steam\steam.exe

Error: (07/08/2014 00:19:14 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Steam\steam.exe

Error: (07/07/2014 11:06:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl.exe, Version: 1.1.1.1, Zeitstempel: 0x3fd11900
Name des fehlerhaften Moduls: serverbrowser.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x42f19fab
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0d64e293
ID des fehlerhaften Prozesses: 0xa70
Startzeit der fehlerhaften Anwendung: 0xhl.exe0
Pfad der fehlerhaften Anwendung: hl.exe1
Pfad des fehlerhaften Moduls: hl.exe2
Berichtskennung: hl.exe3

Error: (07/07/2014 11:03:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl.exe, Version: 1.1.1.1, Zeitstempel: 0x3fd11900
Name des fehlerhaften Moduls: serverbrowser.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x42f19fab
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0df0e290
ID des fehlerhaften Prozesses: 0x15e0
Startzeit der fehlerhaften Anwendung: 0xhl.exe0
Pfad der fehlerhaften Anwendung: hl.exe1
Pfad des fehlerhaften Moduls: hl.exe2
Berichtskennung: hl.exe3

Error: (07/07/2014 10:52:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: hl.exe, Version: 1.1.1.1, Zeitstempel: 0x43712ff5
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x04c00ec9
ID des fehlerhaften Prozesses: 0xd04
Startzeit der fehlerhaften Anwendung: 0xhl.exe0
Pfad der fehlerhaften Anwendung: hl.exe1
Pfad des fehlerhaften Moduls: hl.exe2
Berichtskennung: hl.exe3

Error: (07/07/2014 09:07:02 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Steam\steam.exe

Error: (07/05/2014 07:56:16 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for D:\Steam\steam.exe

Error: (07/04/2014 09:04:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 30.0.0.5269 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2bfc

Startzeit: 01cf97bab557e16c

Endzeit: 21

Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\Firefox\firefox.exe

Berichts-ID: 01cdf2d3-03ae-11e4-99ff-c4a17fb1cd34


System errors:
=============
Error: (07/11/2014 11:47:49 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (07/11/2014 11:46:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (07/10/2014 10:01:01 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (07/10/2014 06:05:43 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (07/10/2014 06:04:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (07/10/2014 06:03:56 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎10.‎07.‎2014 um 18:02:13 unerwartet heruntergefahren.

Error: (07/10/2014 00:16:20 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (07/10/2014 00:15:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "AODDriver4.2" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (07/09/2014 05:46:59 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (07/09/2014 11:39:18 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.


Microsoft Office Sessions:
=========================
Error: (04/29/2014 11:48:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 0 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (04/29/2014 11:10:42 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-01-02 10:56:05.376
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\6031fa.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-01-02 10:56:05.369
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\6031fa.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info ===========================

Percentage of memory in use: 29%
Total physical RAM: 8191.18 MB
Available physical RAM: 5738.77 MB
Total Pagefile: 16380.51 MB
Available Pagefile: 13667.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.52 GB) (Free:11.72 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Maxtor) (Fixed) (Total:189.91 GB) (Free:14.91 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 190 GB) (Disk ID: 24CEAD1D)
Partition 1: (Active) - (Size=190 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 75 GB) (Disk ID: F071F071)
Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS)

==================== End Of Log ============================
hier ist übrigens das Fenster, dass immer aufploppt
[IMG]www.bilder-upload.eu/show.php?file=7b7f77-1405091896.png[/IMG]
Twain.dll Client's 32-Bit Thunking Server<---- das ding führt den download aus :balla:

schrauber 12.07.2014 15:42
Adware & Co. deinstallieren

Solltest Du ein Programm nicht finden oder nicht deinstallieren können, mache bitte mit dem nächsten Schritt weiter:



Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.


Alle Zeitangaben in WEZ +1. Es ist jetzt 02:43 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131