Zurück   Trojaner-Board > Web/PC > Netzwerk und Hardware

Netzwerk und Hardware: USB Tastatur funktioniert NUR im Bios

Windows 7 Hilfe zu Motherboards, CPUs, Lüfter, Raid-Controller, Digitalkameras, Treiber usw. Bitte alle relevanten Angaben zur Hardware machen. Welche Hardware habe ich? Themen zum Trojaner Entfernen oder Viren Beseitigung bitte in den Bereinigungsforen des Trojaner-Boards posten.

Antwort
Alt 04.01.2014, 22:30   #1
Benedikt94
 
USB Tastatur funktioniert NUR im Bios - Standard

USB Tastatur funktioniert NUR im Bios



Hallo Trojaner-Board-Community,

ich habe zu Weihnachten eine neue Tastatur (Sharkoon, Skiller) bekommen, da meine Alte kaputt war. Dachte ich zumindestens. Stellt sich heraus, die Neue funktioniert auch nur beim ersten anschließen. Danach ist sie nicht mehr zu benutzen. Was könnte es sein?

Die Fakten:
- Tastatur bekommt Strom und der USB Port (alle ausprobiert) ist nicht kaputt.
- Ich habe Windows 7 Ultimate
- Asus Mainboard
- funktioniert im BIOS (!)
- Bitdefender (free), AVG (free) und Spybot haben nichts gefunden.
- Maus funktioniert
- tastatur funktioniert nicht im abgesicherten modus

Was habe ich schon ausprobiert:
- An und ausschalten
- Cmos clear (Mainboard batterie rausnehmen)
- Treiber aktualisiert (Mithilfe der Bildschirmtastatur)
- Keyboard Support im BIOS disabled/enabled

Gerätemanager Screenshot: hxxp://hostarea.de/show.php/323899_unbenannt.png.html

Ich würde mein Windows ungerne platt machen und neu drauf spielen. Habe da einiges an Daten welche ich dummerweise lange nicht mehr gesichert habe.

Bin für alle Ideen und Tipps aufgeschlossen. Ich hoffe ich habe hier auch den richtigen Forumsbereich ausgewählt.

Danke schon mal im vorraus,
Benedikt

P.S. Falls ihr mehr Daten braucht, sagt einfach Bescheid. Ist hier mein erster Beitrag und kenne mich noch nicht sogut aus.

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 21:25 on 04/01/2014 (Ben)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...
SPTD -> Disabled (Service running -> reboot required)


-=E.O.F=-
         


FRST.txt

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-01-2014
Ran by Ben (administrator) on HEADQUARTER on 04-01-2014 21:31:03
Running from C:\Users\Ben\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Spotify Ltd) C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\osk.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Cm106Sound] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2000-01-01] (NVIDIA Corporation)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7204568 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-01-02] (Spotify Ltd)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
MountPoints2: {62b3826e-2fea-11e2-9659-5404a627fc3e} - G:\Autorun.exe
MountPoints2: {78472476-4a73-11e1-b7c9-5404a627fc3e} - G:\Autorun.exe
MountPoints2: {a86b0127-6df7-11e1-a063-5404a627fc3e} - F:\Autorun.exe
MountPoints2: {dd054540-3f06-11e2-885b-806e6f6e6963} - J:\Autorun.exe
HKU\Gast\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe -update plugin

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xBE5C297FB0E9CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={02800016-CD69-4926-92C6-42C4BD545CC2}&mid=395bb767514e47d1ac8e854de0c315cd-59da482aa48759aac87581f6c89f24f90f2f3b9e&lang=de&ds=ts024&pr=sa&d=2012-02-24 23:07:35&v=10.0.0.7&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={02800016-CD69-4926-92C6-42C4BD545CC2}&mid=395bb767514e47d1ac8e854de0c315cd-59da482aa48759aac87581f6c89f24f90f2f3b9e&lang=de&ds=ts024&pr=sa&d=2012-02-24 23:07:35&v=10.0.0.7&sap=dsp&q={searchTerms}
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - instplugin - {DFEFCDEE-CF1A-4FC8-89AF-189327213627} - C:\Users\Ben\AppData\Roaming\instplugin\toolbar.dll ()
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-129872198372} -  No File
Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-129872198372} -  No File
DPF: HKLM-x32 {74DBCB52-F298-4110-951D-AD2FF67BC8AB} hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 127.0.0.1	secure.tune-up.com
Tcpip\Parameters: [DhcpNameServer] 192.168.2.254

FireFox:
========
FF ProfilePath: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default
FF user.js: detected! => C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\user.js
FF DefaultSearchEngine: foxsearch
FF SearchEngineOrder.1: foxsearch
FF SelectedSearchEngine: foxsearch
FF Keyword.URL: 	hxxp://www.google.de/search?q=
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20(url.indexOf('turntable.fm')%20!%3D%20-1%20%26%26%20url.indexOf('static.turntable.fm')%20%3D%3D%20-1%20%26%26%20url.indexOf('s3.amazonaws.com')%20%3D%3D%20-1%20%26%26%20url.indexOf('ping.chartbeat.net')%20%3D%3D%20-1%20%26%26%20url.indexOf('.png')%20%3D%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1))%20%7B%20return%20'PROXY%20ab-us01.personalitycores.com%3A8000%3B%20PROXY%20ab-us13.personalitycores.com%3A8000%3B%20PROXY%20ab-us15.personalitycores.com%3A8000%3B%20PROXY%20ab-us03.personalitycores.com%3A8000%3B%20PROXY%20ab-us07.personalitycores.com%3A8000%3B%20PROXY%20ab-us10.personalitycores.com%3A8000%3B%20PROXY%20ab-us02.personalitycores.com%3A8000%3B%20PROXY%20ab-us22.personalitycores.com%3A8000%3B%20PROXY%20ab-us20.personalitycores.com%3A8000%3B%20PROXY%20ab-us17.personalitycores.com%3A8000%3B%20PROXY%20ab-us16.personalitycores.com%3A8000%3B%20PROXY%20ab-us18.personalitycores.com%3A8000%3B%20PROXY%20ab-us21.personalitycores.com%3A8000%3B%20PROXY%20ab-us12.personalitycores.com%3A8000%3B%20PROXY%20ab-us11.personalitycores.com%3A8000%3B%20PROXY%20ab-us14.personalitycores.com%3A8000%3B%20PROXY%20ab-us09.personalitycores.com%3A8000%3B%20PROXY%20ab-us08.personalitycores.com%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "gopher", ""
FF NetworkProxy: "gopher_port", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @videolan.org/vlc,version=2.1.0-git-20120217-1212 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\foxsearch.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Search the web.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Fast Dial - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\fastdial@telega.phpnet.us
FF Extension: ProxTube - Unblock YouTube - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\ich@maltegoetz.de
FF Extension: DownloadHelper - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Disconnect - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\2.0@disconnect.me.xpi
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: ProxMate - Proxy on steroids! - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi
FF Extension: Social Fixer - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\socialfixer@mattkruse.com.xpi
FF Extension: WEB.DE MailCheck - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\toolbar@web.de.xpi
FF Extension: Adblock Plus - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Disable Anti-Adblock - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF Extension: DownThemAll! - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\q5oxbdsg.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [llmfehnfojojfamjjijjciopbjimcffa] - C:\Users\Ben\AppData\Local\Chat Undetected\Chrome\Chat Undetected.crx

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2014-01-02] (Bitdefender)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2000-01-01] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75064 2013-09-02] ()
R2 PnkBstrB; C:\Windows\SysWow64\PnkBstrB.exe [190144 2013-09-03] ()
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)

==================== Drivers (Whitelisted) ====================

R0 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-03-07] (AVAST Software)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310984 2012-11-17] ()
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-05-14] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-05-14] (BitDefender)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-09-05] (Bitdefender SRL)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-07-03] (DT Soft Ltd)
S3 EC168x64; C:\Windows\System32\DRIVERS\EC168x64.sys [104576 2007-05-18] (e3C, Inc.)
S3 GameKB; C:\Windows\System32\drivers\GameKB.sys [27648 2012-05-11] ()
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-05-14] (BitDefender LLC)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-04-24] (AnchorFree Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2012-11-17] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2000-01-01] (NVIDIA Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-01-04] ()
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-06-21] (BitDefender S.R.L.)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1306624 2009-05-14] (C-Media Electronics Inc)
S4 sptd; \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-04 21:31 - 2014-01-04 21:31 - 00377856 _____ C:\Users\Ben\Downloads\gmer_2.1.19163.exe
2014-01-04 21:31 - 2014-01-04 21:31 - 00019368 _____ C:\Users\Ben\Downloads\FRST.txt
2014-01-04 21:30 - 2014-01-04 21:30 - 01931368 _____ (Farbar) C:\Users\Ben\Downloads\FRST64.exe
2014-01-04 21:30 - 2014-01-04 21:30 - 00000000 ____D C:\FRST
2014-01-04 21:25 - 2014-01-04 21:25 - 00050477 _____ C:\Users\Ben\Downloads\Defogger.exe
2014-01-04 21:25 - 2014-01-04 21:25 - 00000578 _____ C:\Users\Ben\Downloads\defogger_disable.log
2014-01-04 21:25 - 2014-01-04 21:25 - 00000020 _____ C:\Users\Ben\defogger_reenable
2014-01-04 19:41 - 2014-01-04 21:27 - 00000840 _____ C:\Windows\setupact.log
2014-01-04 19:41 - 2014-01-04 19:41 - 00000000 _____ C:\Windows\setuperr.log
2014-01-04 19:33 - 2014-01-04 19:34 - 00000000 ____D C:\Users\Ben\Documents\Neuer Ordner
2014-01-04 14:03 - 2014-01-04 14:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-03 20:24 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-03 20:24 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-03 20:24 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-03 20:24 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-03 20:24 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-03 20:24 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-03 20:24 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-03 20:24 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-03 20:24 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-03 20:24 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-03 20:24 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-03 20:24 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-03 20:24 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-03 20:24 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-03 20:24 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-03 20:24 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-03 20:24 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-03 20:24 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-03 20:24 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-03 20:24 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-03 20:24 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-03 20:24 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-03 20:24 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-03 20:24 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-03 20:24 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-03 20:24 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-03 20:24 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-03 20:24 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-03 20:24 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-03 20:24 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-03 20:24 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-03 18:12 - 2014-01-03 18:12 - 00003232 _____ C:\Windows\System32\Tasks\{52CF030A-637E-4493-8863-2C02D567219A}
2014-01-03 18:11 - 2014-01-03 18:11 - 00000000 ____D C:\Users\Ben\Desktop\Neuer Ordner
2014-01-03 18:10 - 2014-01-03 18:10 - 34922387 _____ C:\Users\Ben\Downloads\20131710_skiller_zip_10554.zip
2014-01-02 19:27 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-02 19:27 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-02 19:27 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-02 19:27 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-02 19:26 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-02 19:22 - 2014-01-02 19:22 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 19:22 - 2014-01-02 19:22 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 19:22 - 2014-01-02 19:22 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 19:22 - 2014-01-02 19:22 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 19:22 - 2014-01-02 19:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 19:22 - 2014-01-02 19:22 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 19:22 - 2014-01-02 19:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Roaming\AVG2014
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Local\LogMeIn
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Local\Avg2014
2014-01-02 17:36 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-02 17:36 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-02 17:36 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-02 17:36 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-02 17:36 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-02 17:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-01-02 17:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-01-02 17:36 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-01-02 17:36 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-01-02 17:35 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-02 17:35 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-02 17:35 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-02 17:35 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-02 17:35 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-02 17:35 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-01-02 17:35 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-01-02 17:35 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-02 17:35 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-01-02 17:35 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-01-02 17:35 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-01-02 17:35 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-01-02 17:35 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-01-02 17:35 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-01-02 17:35 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-01-02 17:35 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-01-02 17:35 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-01-02 17:35 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-01-02 17:35 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-01-02 17:35 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-01-02 17:35 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-01-02 17:35 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-01-02 17:35 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-01-02 17:35 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-01-02 17:35 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-01-02 17:35 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-01-02 17:35 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-01-02 17:35 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-01-02 17:35 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-01-02 17:35 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-01-02 17:35 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-01-02 17:35 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-01-02 17:35 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-01-02 17:35 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-01-02 17:35 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-01-02 17:35 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-01-02 17:35 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-01-02 17:35 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-01-02 17:35 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-01-02 17:35 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-01-02 17:35 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-01-02 17:35 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-01-02 17:35 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-01-02 17:35 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-01-02 17:35 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-01-02 17:35 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-01-02 17:35 - 2013-07-12 11:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-01-02 17:35 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-01-02 17:35 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-01-02 17:35 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-01-02 17:35 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-01-02 17:35 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-01-02 17:35 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-01-02 17:35 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-01-02 17:35 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-01-02 17:35 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-01-02 17:35 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-01-02 17:35 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-01-02 17:35 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-01-02 17:35 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-01-02 17:35 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-01-02 17:35 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-01-02 17:35 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-01-02 17:35 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-01-02 17:35 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-01-02 17:35 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-01-02 17:35 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-01-02 17:34 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-02 17:34 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-02 17:34 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-01-02 17:34 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-01-02 17:34 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-01-02 17:34 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-02 17:34 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-01-02 17:34 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-02 17:34 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-01-02 17:34 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-02 17:34 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-02 17:34 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-02 17:34 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-02 17:34 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-01-02 17:34 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-01-02 17:34 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-01-02 17:34 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-02 17:34 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-02 17:30 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-01-02 17:23 - 2012-05-11 15:24 - 00027648 _____ () C:\Windows\system32\Drivers\GameKB.sys
2014-01-02 17:13 - 2005-01-01 01:11 - 00000000 ____D C:\Users\Ben\AppData\Local\CrashDumps
2014-01-02 17:08 - 2014-01-02 17:08 - 00000000 ____D C:\Users\Ben\AppData\Local\LogMeIn
2014-01-02 17:08 - 2014-01-02 17:08 - 00000000 ____D C:\ProgramData\LogMeIn
2014-01-02 17:07 - 2014-01-02 17:07 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi

==================== One Month Modified Files and Folders =======

2014-01-04 21:31 - 2014-01-04 21:31 - 00377856 _____ C:\Users\Ben\Downloads\gmer_2.1.19163.exe
2014-01-04 21:31 - 2014-01-04 21:31 - 00019368 _____ C:\Users\Ben\Downloads\FRST.txt
2014-01-04 21:31 - 2013-09-04 19:34 - 01080905 _____ C:\Windows\WindowsUpdate.log
2014-01-04 21:30 - 2014-01-04 21:30 - 01931368 _____ (Farbar) C:\Users\Ben\Downloads\FRST64.exe
2014-01-04 21:30 - 2014-01-04 21:30 - 00000000 ____D C:\FRST
2014-01-04 21:30 - 2012-04-13 15:27 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-04 21:28 - 2005-01-01 00:13 - 00002828 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2014-01-04 21:28 - 2005-01-01 00:13 - 00000406 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2014-01-04 21:27 - 2014-01-04 19:41 - 00000840 _____ C:\Windows\setupact.log
2014-01-04 21:27 - 2012-05-04 14:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-04 21:27 - 2012-02-24 23:07 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2014-01-04 21:27 - 2012-01-28 22:28 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-04 21:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-04 21:25 - 2014-01-04 21:25 - 00050477 _____ C:\Users\Ben\Downloads\Defogger.exe
2014-01-04 21:25 - 2014-01-04 21:25 - 00000578 _____ C:\Users\Ben\Downloads\defogger_disable.log
2014-01-04 21:25 - 2014-01-04 21:25 - 00000020 _____ C:\Users\Ben\defogger_reenable
2014-01-04 21:25 - 2012-01-28 19:55 - 00000000 ____D C:\Users\Ben
2014-01-04 20:19 - 2009-07-14 05:45 - 00022560 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-04 20:19 - 2009-07-14 05:45 - 00022560 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-04 20:18 - 2010-11-21 07:50 - 00707318 _____ C:\Windows\system32\perfh007.dat
2014-01-04 20:18 - 2010-11-21 07:50 - 00152910 _____ C:\Windows\system32\perfc007.dat
2014-01-04 20:18 - 2009-07-14 06:13 - 01642228 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-04 19:41 - 2014-01-04 19:41 - 00000000 _____ C:\Windows\setuperr.log
2014-01-04 19:38 - 2012-08-19 15:03 - 00000000 ____D C:\Users\Ben\AppData\Roaming\Spotify
2014-01-04 19:36 - 2012-01-30 12:57 - 00000000 ____D C:\Users\Ben\AppData\Local\LogMeIn Hamachi
2014-01-04 19:36 - 2012-01-29 13:36 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-04 19:34 - 2014-01-04 19:33 - 00000000 ____D C:\Users\Ben\Documents\Neuer Ordner
2014-01-04 18:16 - 2013-09-14 22:07 - 00000000 ____D C:\ProgramData\MFAData
2014-01-04 14:03 - 2014-01-04 14:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-04 11:57 - 2012-10-04 17:13 - 00000000 ____D C:\Users\Ben\AppData\Roaming\Dropbox
2014-01-04 11:55 - 2012-10-04 17:15 - 00000000 ___RD C:\Users\Ben\Dropbox
2014-01-04 11:07 - 2012-04-29 00:19 - 01619186 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-03 18:15 - 2009-07-14 05:45 - 00319280 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-03 18:12 - 2014-01-03 18:12 - 00003232 _____ C:\Windows\System32\Tasks\{52CF030A-637E-4493-8863-2C02D567219A}
2014-01-03 18:11 - 2014-01-03 18:11 - 00000000 ____D C:\Users\Ben\Desktop\Neuer Ordner
2014-01-03 18:10 - 2014-01-03 18:10 - 34922387 _____ C:\Users\Ben\Downloads\20131710_skiller_zip_10554.zip
2014-01-03 09:09 - 2013-09-14 22:12 - 00000981 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2014-01-02 23:10 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2014-01-02 20:17 - 2012-01-28 19:56 - 00001425 _____ C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 19:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-02 19:26 - 2012-01-30 15:26 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-02 19:22 - 2014-01-02 19:22 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 19:22 - 2014-01-02 19:22 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 19:22 - 2014-01-02 19:22 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 19:22 - 2014-01-02 19:22 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 19:22 - 2014-01-02 19:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 19:22 - 2014-01-02 19:22 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 19:22 - 2014-01-02 19:22 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 19:22 - 2014-01-02 19:22 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 19:22 - 2014-01-02 19:22 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 19:14 - 2013-08-15 00:20 - 00000000 ____D C:\Windows\system32\MRT
2014-01-02 18:40 - 2012-04-13 15:27 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-02 18:30 - 2012-04-13 15:27 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-02 18:30 - 2012-01-28 20:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Roaming\AVG2014
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Local\LogMeIn
2014-01-02 18:15 - 2014-01-02 18:15 - 00000000 ____D C:\Users\Gast\AppData\Local\Avg2014
2014-01-02 18:15 - 2012-04-06 19:43 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 18:15 - 2012-04-06 19:43 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-02 18:15 - 2012-04-06 19:43 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-02 18:15 - 2012-04-06 19:43 - 00000000 ____D C:\Users\Gast\AppData\Local\LogMeIn Hamachi
2014-01-02 17:37 - 2013-05-16 13:16 - 00000000 ____D C:\Program Files (x86)\Opera
2014-01-02 17:36 - 2012-10-03 21:51 - 00000000 ____D C:\Program Files\Opera x64
2014-01-02 17:34 - 2013-09-08 15:53 - 00000000 ____D C:\ProgramData\acer
2014-01-02 17:34 - 2013-09-08 15:50 - 00000000 ____D C:\Users\Ben\AppData\Local\clear.fi
2014-01-02 17:23 - 2012-01-28 20:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-02 17:16 - 2012-08-19 15:03 - 00000000 ____D C:\Users\Ben\AppData\Local\Spotify
2014-01-02 17:08 - 2014-01-02 17:08 - 00000000 ____D C:\Users\Ben\AppData\Local\LogMeIn
2014-01-02 17:08 - 2014-01-02 17:08 - 00000000 ____D C:\ProgramData\LogMeIn
2014-01-02 17:07 - 2014-01-02 17:07 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2014-01-02 17:07 - 2012-02-03 19:46 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-02 23:02

==================== End Of Log ============================
         
--- --- ---

--- --- ---


addition.txt
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2014
Ran by Ben at 2014-01-04 21:31:58
Running from C:\Users\Ben\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (x32 Version:  - Microsoft)
AC3Filter 1.63b (x32 Version: 1.63b - Alexander Vigovsky)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
American Conquest (x32 Version:  - )
American Conquest Fight Back (x32 Version:  - )
ANNO 1602 Königs-Edition (x32 Version:  - )
Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03 - Sunflowers)
Anno 1701 (x32 Version: 1.04 - Sunflowers)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.14.8.0 - Asmedia Technology)
Aufstieg des Hexenkönigs™ (x32 Version:  - )
AVG 2014 (Version: 14.0.3658 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 2014.0.4259 - AVG Technologies)
Bitdefender Antivirus Free Edition (Version: 1.0.21.1099 - Bitdefender)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Modern Warfare 3 - Dedicated Server (x32 Version:  - Infinity Ward - Sledgehammer Games)
Call of Duty: Modern Warfare 3 - Multiplayer (x32 Version:  - Infinity Ward - Sledgehammer Games)
Call of Duty: Modern Warfare 3 (x32 Version:  - Infinity Ward - Sledgehammer Games)
Canon MP560 series MP Drivers (Version:  - )
CCleaner (Version: 4.00 - Piriform)
DAEMON Tools Lite (x32 Version: 4.45.4.0315 - DT Soft Ltd)
Die Schlacht um Mittelerde™ II (x32 Version:  - )
DivX-Setup (x32 Version: 2.6.1.84 - DivX, LLC)
Dropbox (HKCU Version: 2.0.22 - Dropbox, Inc.)
EAX4 Unified Redist (x32 Version: 4.001 - Creative Labs)
GameRanger (HKCU Version:  - GameRanger Technologies)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Hawken (HKCU Version:  - Meteor Entertainment)
HP Photosmart 5510 series - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
iCloud (Version: 3.0.2.163 - Apple Inc.)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1281 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.738.1 - Intel Corporation) Hidden
iTunes (Version: 11.1.0.126 - Apple Inc.)
Java 7 Update 21 (x32 Version: 7.0.210 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
League of Legends (x32 Version: 1.3 - Riot Games)
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.) Hidden
Metro 2033 (x32 Version:  - THQ)
Microsoft .NET Framework 1.1 (x32 Version:  - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (x32 Version: 3.4.54.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.82 (Version: 331.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.140.952 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA Update 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9 - NVIDIA Corporation)
OF: Red River (x32 Version: 1.0.0003.129 - Codemasters) Hidden
Operation Flashpoint ®: Red River (x32 Version: 1.0.0000.129 - Codemasters)
Operation Flashpoint ®: Red River (x32 Version: 1.0.0000.129 - Codemasters) Hidden
QuickTime (x32 Version: 7.72.80.56 - Apple Inc.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Realtek Ethernet Controller Driver (x32 Version: 7.47.714.2011 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Schriftenbibliothek (x32 Version:  - )
SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden
Skype™ 5.10 (x32 Version: 5.10.116 - Skype Technologies S.A.)
SlimDrivers (x32 Version: 2.2.32705 - SlimWare Utilities, Inc.)
Spotify (HKCU Version: 0.9.6.81.gd359a796 - Spotify AB)
Spybot - Search & Destroy (x32 Version: 1.6.2 - Safer Networking Limited)
StarCraft II (x32 Version: 1.4.2.20141 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader Extreme HD (x32 Version: 2.0.0.6 - GOG.com)
TP-LINK TL-WN822N/TL-WN821N Driver (x32 Version: 1.0.0 - TP-LINK)
TP-LINK Wireless Client Utility (x32 Version: 7.0 - TP-LINK)
Trust USB Audio (Version:  - )
TVGo DVB-T02PRO (x32 Version: v1.0.0 - Genius)
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (x32 Version:  - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (x32 Version: 1 - Microsoft Corporation)
VLC media player 2.1.0-git-20120217-1212 (Version: 2.1.0-git-20120217-1212 - VideoLAN)
Warcraft III (x32 Version:  - Blizzard Entertainment)
WinRAR 4.20 (64-Bit) (Version: 4.20.0 - win.rar GmbH)

==================== Restore Points  =========================

31-12-2004 23:14:52 SlimDrivers Installing Drivers
31-12-2004 23:24:14 Windows Update
31-12-2004 23:37:59 SlimDrivers Installing Drivers
31-12-2004 23:48:33 SlimDrivers Installing Drivers
31-12-2004 23:51:50 SlimDrivers Installing Drivers
03-01-2014 08:38:53 Geplanter Prüfpunkt
03-01-2014 17:12:48 Entfernt SHARKOON Skiller
03-01-2014 19:14:00 Windows Update
04-01-2014 09:49:20 Windows Update

==================== Hosts content: ==========================

2009-07-14 03:34 - 2012-06-06 12:17 - 00000885 ____A C:\Windows\system32\Drivers\etc\hosts
\Windows\System32\drivers\etc
127.0.0.1	secure.tune-up.com

==================== Scheduled Tasks (whitelisted) =============

Task: {08DA1727-950E-4AE9-BC8D-F491356A5B2E} - System32\Tasks\{DFA940CF-AE36-4B5F-A45D-405EE5D69E31} => C:\Program Files (x86)\American Conquest - Fight Back\dmcr.exe [2003-04-24] (-GSC-)
Task: {1699CAEA-A307-43FC-B169-EAEAFA95387A} - System32\Tasks\{D36D1980-4074-44DA-B330-A5829C18E138} => C:\Program Files (x86)\ANNO 1503\1503Startup.exe
Task: {1CEF30F6-E961-4635-969E-6DF4D6A7A0B9} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4247174237-1483454471-2662617943-1000
Task: {1FE4FF7C-88DE-464C-B18F-ACC0908136ED} - System32\Tasks\{E669F4DE-8BAD-42F9-8AE4-FDA0159BCBF4} => C:\Program Files (x86)\Genius\TVGo DVB-T02PRO\AVCapture.exe [2007-10-01] ()
Task: {21C91E69-7D4D-4709-803D-47349110559B} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {2E4A21FA-854D-48F5-9A12-C0DEA1B5B646} - System32\Tasks\{0A6A16D4-D6FF-4BA1-B198-BD8AC77DF098} => C:\Program Files (x86)\Genius\TVGo DVB-T02PRO\AVCapture.exe [2007-10-01] ()
Task: {5BBCD636-F4BD-4130-B4FE-C1E0FC693BE6} - System32\Tasks\{27ACF1EA-4538-48C4-B880-5C805A7884C8} => C:\Program Files (x86)\Genius\TVGo DVB-T02PRO\AVCapture.exe [2007-10-01] ()
Task: {6061061E-70A9-4531-B013-37C1B62E8DFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {71A5BA72-04C1-4D6F-806D-AEA429D8AC42} - System32\Tasks\{DD1DB221-3164-4147-8648-1E2B76ECF99F} => C:\Program Files (x86)\Genius\TVGo DVB-T02PRO\AVCapture.exe [2007-10-01] ()
Task: {8BE40F84-5349-45BB-BFC9-1FC4DD3EAFDA} - System32\Tasks\{8A08CC5F-6230-4442-9A80-4966F9A11B89} => C:\Program Files (x86)\MeteorEntertainment\Hawken\InstalledHawkenFiles\HawkenLauncher.exe [2013-05-29] (Solid State Networks)
Task: {989E1E9C-433A-42D3-977E-64926BC8E34F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-02] (Adobe Systems Incorporated)
Task: {B80C204A-A704-4451-8465-B752B6AD4D05} - System32\Tasks\{4D2F1D08-01C6-4CCE-A867-D2368AED228C} => C:\Program Files (x86)\ANNO 1503\1503Startup.exe
Task: {BCA62B1F-8004-4901-88AD-3311A75874F6} - System32\Tasks\{3FDEE2F7-84D0-4A7D-8A9A-28EB5B43CFB5} => C:\Users\Ben\Saved Games\Stronghold Crusader\Stronghold Crusader.exe
Task: {C14DC40F-DDB0-4164-B7E3-20E4CD7A5C5C} - System32\Tasks\{E0BD1F89-C804-43F1-882A-B0B9F1562B17} => C:\Program Files (x86)\Genius\TVGo DVB-T02PRO\AVCapture.exe [2007-10-01] ()
Task: {F48BB24C-FF08-4315-A292-356B5D9AED2D} - System32\Tasks\{24761F5F-03CA-4470-AC15-3FB6F812DB93} => C:\Program Files (x86)\ANNO 1602 Königs-Edition\1602.exe [1999-09-30] (MAX DESIGN)
Task: {FF7B1D86-8AFC-4463-ACFC-E7AF3DC3C6F0} - System32\Tasks\{47FEECCC-77DF-425B-BE8E-B153A5A615BB} => C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Loaded Modules (whitelisted) =============

2014-01-02 18:04 - 2014-01-02 18:04 - 00696632 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-04 14:03 - 2014-01-04 14:03 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2005-01-01 00:55 - 2000-01-01 01:00 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/04/2014 09:27:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2014 09:08:19 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(e0:f8:47:58:50:dc@fe80::e2f8:47ff:fe58:50dc._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (01/04/2014 09:08:19 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(e0:f8:47:58:50:dc@fe80::e2f8:47ff:fe58:50dc._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 21

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 20

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 19

Error: (01/04/2014 09:04:52 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 18


System errors:
=============
Error: (01/04/2014 09:28:51 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (01/04/2014 09:27:28 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/04/2014 09:27:28 PM) (Source: Application Popup) (User: )
Description: Treiber atksgt.sys konnte nicht geladen werden.

Error: (01/04/2014 09:27:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\athExt.dll
Fehlercode: 126

Error: (01/04/2014 09:25:34 PM) (Source: DCOM) (User: )
Description: {60A90A2F-858D-42AF-8929-82BE9D99E8A1}

Error: (01/04/2014 08:14:09 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (01/04/2014 08:12:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/04/2014 08:12:42 PM) (Source: Application Popup) (User: )
Description: Treiber atksgt.sys konnte nicht geladen werden.

Error: (01/04/2014 08:12:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\athExt.dll
Fehlercode: 126

Error: (01/04/2014 08:06:06 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2005-01-01 00:56:12.658
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:12.611
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:09.059
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:09.012
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:07.605
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:07.558
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:05.637
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:56:05.575
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:51:49.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2005-01-01 00:51:49.050
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Windows\System32\RtkAPO64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 30%
Total physical RAM: 8173.26 MB
Available physical RAM: 5650.68 MB
Total Pagefile: 16344.7 MB
Available Pagefile: 13827.82 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:618.85 GB) NTFS
Drive e: (Platte X) (Fixed) (Total:315.34 GB) (Free:294.49 GB) NTFS
Drive h: (RECOVER) (Fixed) (Total:20 GB) (Free:17.58 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D0B68FD4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 335 GB) (Disk ID: 866BF538)
Partition 1: (Active) - (Size=315 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=20 GB) - (Type=OF Extended)

==================== End Of Log ============================
         


gmer.txt
GMER Logfile:
Code:
ATTFilter
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2014-01-04 22:17:09
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD10EALX-009BA0 rev.15.01H15 931,51GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Ben\AppData\Local\Temp\ffldiaob.sys


---- Kernel code sections - GMER 2.1 ----

.text  C:\Windows\System32\win32k.sys!W32pServiceTable                                                                                                                                                                                                                            fffff96000163f00 7 bytes [80, 9D, F3, FF, 01, A9, F0]
.text  C:\Windows\System32\win32k.sys!W32pServiceTable + 8                                                                                                                                                                                                                        fffff96000163f08 3 bytes [C0, 06, 02]

---- User code sections - GMER 2.1 ----

.text  C:\Windows\SysWOW64\PnkBstrA.exe[2852] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                                                                                                                                                    0000000072c51a22 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2852] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                                                                                                                                                    0000000072c51ad0 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2852] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                                                                                                                                                    0000000072c51b08 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2852] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                                                                                                                                                    0000000072c51bba 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2852] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                                                                                                                                                    0000000072c51bda 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                                                                                                                                                    0000000072c51a22 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                                                                                                                                                    0000000072c51ad0 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                                                                                                                                                    0000000072c51b08 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                                                                                                                                                    0000000072c51bba 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                                                                                                                                                    0000000072c51bda 2 bytes [C5, 72]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                                                                                                                                                             0000000076cb1465 2 bytes [CB, 76]
.text  C:\Windows\SysWOW64\PnkBstrB.exe[2876] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                                                                                                                                                                            0000000076cb14bb 2 bytes [CB, 76]
.text  ...                                                                                                                                                                                                                                                                        * 2
.text  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe[3264] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                                                                                                                                0000000076cb1465 2 bytes [CB, 76]
.text  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe[3264] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                                                                                                                                               0000000076cb14bb 2 bytes [CB, 76]
.text  ...                                                                                                                                                                                                                                                                        * 2

---- Registry - GMER 2.1 ----

Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04                                                                                                                                                                                           
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                                                                                                                                                                        C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                                                                                                                                                                        0
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                                                                                                                                                                     0x6B 0x51 0xCD 0x1E ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001                                                                                                                                                                                  
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                                                                                                                                                                               0xA0 0x02 0x00 0x00 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew                                                                                                                                                                            0x3F 0xC3 0x48 0x1D ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                                                                                                                                                                           
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                                                                                                                                        C:\Program Files (x86)\DAEMON Tools Lite\
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                                                                                                                                        0x00 0x00 0x00 0x00 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                                                                                                                                        1
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                                                                                                                                     0x2B 0x99 0xB4 0xB5 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                                                                                                                                                                                  
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                                                                                                                                               0xA0 0x02 0x00 0x00 ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                                                                                                                                            0xB4 0xD1 0xDC 0x4B ...
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                                                                                                                                                                             
Reg    HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                                                                                                                                       0x32 0x73 0xBA 0x98 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)                                                                                                                                                                       
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0                                                                                                                                                                                            C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0                                                                                                                                                                                            0
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew                                                                                                                                                                                         0x6B 0x51 0xCD 0x1E ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)                                                                                                                                                              
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0                                                                                                                                                                                   0xA0 0x02 0x00 0x00 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew                                                                                                                                                                                0x3F 0xC3 0x48 0x1D ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                                                                                                                                                                       
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                                                                                                                                            C:\Program Files (x86)\DAEMON Tools Lite\
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                                                                                                                                            0x00 0x00 0x00 0x00 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                                                                                                                                            1
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                                                                                                                                         0x2B 0x99 0xB4 0xB5 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)                                                                                                                                                              
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                                                                                                                                                   0xA0 0x02 0x00 0x00 ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                                                                                                                                                0xB4 0xD1 0xDC 0x4B ...
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)                                                                                                                                                         
Reg    HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                                                                                                                                           0x32 0x73 0xBA 0x98 ...
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Aufstieg des Hexenkönigs\x2122\Der Herr der Ringe\x2122, Aufstieg des Hexenkönigs\x2122-Weltenbauer.lnk  1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Aufstieg des Hexenkönigs\x2122\Der Herr der Ringe\x2122, Aufstieg des Hexenkönigs\x2122-Weltenbauer.lnk                1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Aufstieg des Hexenkönigs\x2122\Online nach Update suchen.lnk                                             1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Aufstieg des Hexenkönigs\x2122\Online nach Update suchen.lnk                                                           1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Die Schlacht um Mittelerde\x2122 II - Weltenbauer.lnk                1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Die Schlacht um Mittelerde\x2122 II - Weltenbauer.lnk                              1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Elektronische Registrierung.lnk                                      1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Elektronische Registrierung.lnk                                                    1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\Ben\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Online nach Update suchen.lnk                                        1
Reg    HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde\x2122 II\Online nach Update suchen.lnk                                                      1

---- EOF - GMER 2.1 ----
         
[/CODE]
--- --- ---

Alt 05.01.2014, 20:59   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
USB Tastatur funktioniert NUR im Bios - Standard

USB Tastatur funktioniert NUR im Bios



Hallo und

Zitat:
Hosts: 127.0.0.1 secure.tune-up.com
Derartige Einträge in der Hosts dienen dazu, raubkopierte (gecrackte) Software lauffähig zu machen

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________

__________________

Alt 06.01.2014, 22:51   #3
Benedikt94
 
USB Tastatur funktioniert NUR im Bios - Standard

USB Tastatur funktioniert NUR im Bios



Hey,

meine Zeiten des Benutzen von illigaler Software sind lange vorbei. War ein kleines Überbleibsel. Ist jetzt auch weg, da ich Windows nun doch neu installiert habe.
Trotzdem danke für drüberschauen! Finde ich echt gut was ihr hier macht!

Gruß,
Benedikt Middelhoff
__________________

Alt 06.01.2014, 23:15   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
USB Tastatur funktioniert NUR im Bios - Standard

USB Tastatur funktioniert NUR im Bios



Wie kann denn die alte Hosts-Datei überleben wenn du Windows neu installierst?

Zitat:
AV: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237
Sowas unbedingt sein lassen, zwei derartiger Scanner hat man niemals gleichzeitig installiert. Umgehend einen der beiden deinstallieren.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 07.01.2014, 11:20   #5
Benedikt94
 
USB Tastatur funktioniert NUR im Bios - Standard

USB Tastatur funktioniert NUR im Bios



Hat sie ja nicht
Habe mein Problem durch eine Windows Neuinstallation gelöst. Und jetzt habe ich auch nur noch einen Virenscanner Hab den anderen nur ab und zu für manuelle Überprüfungen benutzt

Mein Problem ist also jetzt gelöst. Trotzdem danke für das Durchforsten meiner logs!

Gruß,
Benedikt


Antwort

Themen zu USB Tastatur funktioniert NUR im Bios
adblock, asus, avg, avg antivirus, bat, bildschirm, bios, bitdefender, cmos, defender, free, funktioniert, funktioniert nicht, kaputt, maus, neue, nicht mehr, port, required, s3.amazonaws.com, safer networking, screenshot, spiele, spotify web helper, spybot, tastatur, tipps, treiber, usb, windows, windows 7



Ähnliche Themen: USB Tastatur funktioniert NUR im Bios


  1. Laptop-tastatur funktioniert nur selten richtig
    Netzwerk und Hardware - 17.11.2015 (6)
  2. PC landet im BIOS und erkennt keine Tastatur
    Netzwerk und Hardware - 18.02.2015 (3)
  3. Lautstärkeregelung auf der Tastatur funktioniert nicht mehr
    Alles rund um Windows - 21.11.2014 (3)
  4. PS2 Tastatur wird nicht erkannt / kein BIOS Zugriff möglich
    Netzwerk und Hardware - 04.02.2014 (13)
  5. Nach Trojaner funktioniert nur noch BIOS
    Log-Analyse und Auswertung - 22.07.2013 (1)
  6. Tastatur am Laptop funktioniert nicht mehr richtig
    Alles rund um Windows - 23.05.2013 (11)
  7. Tastatur spinnt und Strg+Alt+Ent funktioniert nicht
    Log-Analyse und Auswertung - 16.05.2013 (22)
  8. Tastatur funktioniert nach Trojanerbereinigung nicht
    Netzwerk und Hardware - 12.12.2012 (9)
  9. WINXP Virus - Maus & Tastatur blockiert, keine Kontrolle über BIOS
    Plagegeister aller Art und deren Bekämpfung - 24.10.2012 (5)
  10. USB-Tastatur funktioniert plötzlich nicht mehr
    Netzwerk und Hardware - 22.08.2012 (13)
  11. Tastatur funktioniert nicht nach otl fix
    Netzwerk und Hardware - 27.12.2011 (3)
  12. Komme nicht ins Bios con Laptop ++ Maus und Tastatur geht nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 22.09.2011 (6)
  13. @ von Tastatur funktioniert nicht mehr
    Alles rund um Windows - 23.07.2009 (10)
  14. Tastatur funktioniert nicht PC piepst
    Mülltonne - 13.11.2008 (0)
  15. Tastatur funktioniert nicht richtig...
    Plagegeister aller Art und deren Bekämpfung - 30.12.2007 (8)
  16. Kein Bios mit "drahtloser Tastatur"!!!
    Alles rund um Windows - 09.01.2005 (3)

Zum Thema USB Tastatur funktioniert NUR im Bios - Hallo Trojaner-Board-Community, ich habe zu Weihnachten eine neue Tastatur (Sharkoon, Skiller) bekommen, da meine Alte kaputt war. Dachte ich zumindestens. Stellt sich heraus, die Neue funktioniert auch nur beim ersten - USB Tastatur funktioniert NUR im Bios...
Archiv
Du betrachtest: USB Tastatur funktioniert NUR im Bios auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.