Mozilla Firefox öffnet neue Tabs

Gavin · 26.04.2014, 17:56

Guten Tag,

ich habe mir vor kurzem auf Empfehlung von Mozilla Firefox ein Addon geladen (Tab Utilities) und habe dieses installiert. Seitdem öffnet Firefox beim surfen ständig neue tabs wie zB. hxxp://srv123.com. Ausserdem werde ich anstelle meiner Startseite zu mystart.incredibar.com/mb155?a=6R8CNCSSyI&loc=FF_NT weitergeleitet, sobald ich einen neuen Tab öffne. Ich habe nicht wirklich Ahnung von sowas, hatte aber noch die kostenlose Testversion von Malwarebytes Anti Malware auf dem Rechner und habe nach 3 stündiger suche 9 Funde entfernen lassen, jedoch besteht das Problem weiterhin. GData Internetsecurity 2014 findet leider garnichts.
Ich hoffe ihr könnt mir helfen.

Vielen Dank schonmal

schrauber · 26.04.2014, 18:21

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Gavin · 26.04.2014, 18:49

FRST

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-04-2014 03
Ran by Gavin (administrator) on GAVIN-PC on 26-04-2014 19:46:10
Running from C:\Users\Gavin\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlX64.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe
(AVM Berlin) C:\Program Files (x86)\FRITZ!DSL\IGDCTRL.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files (x86)\XSManager\WTGService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Akamai Technologies, Inc.) C:\Users\Gavin\AppData\Local\Akamai\netsession_win.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVM Berlin) C:\Program Files (x86)\FRITZ!DSL\StCenter.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(Akamai Technologies, Inc.) C:\Users\Gavin\AppData\Local\Akamai\netsession_win.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(BL) C:\Program Files (x86)\lg_fwupdate\fwupdate.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUsb\XFastUsb.exe
(Creative Technology Ltd) C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Macrovision Europe Ltd.) C:\Users\Gavin\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
(Creative Technology Ltd.) C:\Windows\system32\AMBSpiE.exe
(Creative Labs) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor)
HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\AmbRunE.dll [17920 2009-02-26] (Creative Technology Ltd.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2009-02-17] (CyberLink Corp.)
HKLM-x32\...\Run: [LGODDFU] => C:\Program Files (x86)\lg_fwupdate\fwupdate.exe [548864 2008-10-01] (BL)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [222504 2010-04-20] (CyberLink Corp.)
HKLM-x32\...\Run: [XFastUsb] => C:\Program Files (x86)\XFastUsb\XFastUsb.exe [4942336 2012-03-09] (FNet Co., Ltd.)
HKLM-x32\...\Run: [CTSyncService] => C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe [1233195 2009-07-08] (Creative Technology Ltd)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [GDFirewallTray] => C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe [1724728 2013-12-19] (G Data Software AG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-06-10] (Geek Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-04-15] (LogMeIn Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-08-16] (Hewlett-Packard Company)
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\Run: [KPeerNexonEU] => C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Gavin\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21822128 2014-01-30] (Google)
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\MountPoints2: {1a102fbb-93ca-11e3-9af4-bc5ff40a229e} - F:\XSManager.exe
HKU\S-1-5-21-488730168-4103553154-1724347971-1000\...\MountPoints2: {91021179-f691-11e1-9b0f-bc5ff40a229e} - F:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Startcenter.lnk
ShortcutTarget: FRITZ!DSL Startcenter.lnk -> C:\Program Files (x86)\FRITZ!DSL\StCenter.exe (AVM Berlin)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x83761C0AEA6CCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = 
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLEP1&pc=SPLH
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLEP1&pc=SPLH
SearchScopes: HKCU - {5D882B45-5AAB-4975-B54B-0066EAB88F43} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
SearchScopes: HKCU - {6F99DCC7-59B6-4e8a-B79B-92C07CD4C33D} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A6976579318&ie=UTF-8&q=&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A6976579318&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default
FF user.js: detected! => C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\user.js
FF NewTab: hxxp://mystart.incredibar.com/mb155?a=6R8CNCSSyI&loc=FF_NT
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Homepage: google.de
FF NetworkProxy: "ftp", "195.103.219.106"
FF NetworkProxy: "ftp_port", 8080
FF NetworkProxy: "http", "195.103.219.106"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "195.103.219.106"
FF NetworkProxy: "socks_port", 8080
FF NetworkProxy: "ssl", "195.103.219.106"
FF NetworkProxy: "ssl_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.140.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.140.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.3 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Gavin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: ProxTube - Unblock YouTube - C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\Extensions\ich@maltegoetz.de [2013-12-26]
FF Extension: DivX Web Player - C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\Extensions\DivXWebPlayer@divx.com.xpi [2012-08-19]
FF Extension: GoPhotoIt - C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\Extensions\gophoto@gophoto.it.xpi [2012-07-31]
FF Extension: Stealthy - C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\Extensions\stealthyextension@gmail.com.xpi [2012-04-01]
FF Extension: Adblock Plus - C:\Users\Gavin\AppData\Roaming\Mozilla\Firefox\Profiles\pi4px4bn.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-04-08]
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox

==================== Services (Whitelisted) =================

R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2244728 2014-02-12] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKService.exe [914552 2013-12-19] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlX64.exe [2723400 2014-03-25] (G Data Software AG)
R2 AVM IGD CTRL Service; C:\Program Files (x86)\FRITZ!DSL\IGDCTRL.EXE [118784 2005-03-04] (AVM Berlin)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-28] ()
S3 de_serv; C:\Program Files (x86)\Common Files\AVM\de_serv.exe [315392 2005-03-04] (AVM Berlin)
R3 GDFwSvc; C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe [2992760 2014-01-30] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [700024 2014-02-03] (G Data Software AG)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-08] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-07-31] (Overwolf Ltd)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-09] ()
R2 WTGService; C:\Program Files (x86)\XSManager\WTGService.exe [329848 2013-05-06] ()

==================== Drivers (Whitelisted) ====================

S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2012-03-23] ()
S3 cmnsusbser; C:\Windows\System32\DRIVERS\cmnsusbser.sys [126080 2014-02-12] (QUALCOMM Incorporated)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-06-04] (DT Soft Ltd)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [31808 2012-03-17] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2012-03-09] (FNet Co., Ltd.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [57344 2014-04-26] (G Data Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [22016 2014-04-26] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [135168 2014-04-26] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [68608 2014-04-26] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64000 2014-04-26] (G Data Software AG)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [65024 2014-04-26] (G Data Software AG)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2012-03-23] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 skfiltv; C:\Windows\System32\drivers\skfiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
S1 SSHDRV79; C:\Windows\SysWOW64\drivers\SSHDRV79.sys [75264 2014-01-05] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-26 19:46 - 2014-04-26 19:46 - 00019491 _____ () C:\Users\Gavin\Downloads\FRST.txt
2014-04-26 19:45 - 2014-04-26 19:46 - 00000000 ____D () C:\FRST
2014-04-26 19:45 - 2014-04-26 19:45 - 02061824 _____ (Farbar) C:\Users\Gavin\Downloads\FRST64.exe
2014-04-26 19:17 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-26 19:17 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-26 19:17 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-26 19:17 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-26 19:15 - 2014-04-26 19:17 - 00004253 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-26 18:58 - 2014-04-26 18:58 - 00001994 _____ () C:\Windows\PFRO.log
2014-04-26 15:06 - 2014-04-26 18:58 - 00000715 _____ () C:\Windows\setupact.log
2014-04-26 15:06 - 2014-04-26 15:06 - 00022016 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2014-04-26 15:06 - 2014-04-26 15:06 - 00001978 _____ () C:\Users\Public\Desktop\G Data InternetSecurity.lnk
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data InternetSecurity
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-26 15:04 - 2014-04-26 15:04 - 00002058 _____ () C:\Windows\DPINST.LOG
2014-04-26 14:20 - 2014-04-26 14:20 - 00091360 _____ () C:\Users\Gavin\Documents\cc_20140426_142012.reg
2014-04-22 03:01 - 2014-03-06 12:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-22 03:01 - 2014-03-06 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-22 03:01 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-22 03:01 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-22 03:01 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-22 03:01 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-22 03:01 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-22 03:01 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-22 03:01 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-22 03:01 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-22 03:01 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-22 03:01 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-22 03:01 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-22 03:01 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-22 03:01 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-22 03:01 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-22 03:01 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-22 03:01 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-22 03:01 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-22 03:01 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-22 03:01 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-22 03:01 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-22 03:01 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-22 03:01 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-22 03:01 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-22 03:01 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-22 03:01 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-22 03:01 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-22 03:01 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-22 03:01 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-22 03:01 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-22 03:01 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-22 03:01 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-22 03:01 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-22 03:01 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-22 03:00 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-22 03:00 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-22 03:00 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-22 03:00 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-22 03:00 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-22 03:00 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-22 03:00 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-22 03:00 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-22 03:00 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-22 03:00 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-22 03:00 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-22 03:00 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-22 03:00 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-20 20:29 - 2014-04-20 20:28 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-20 20:29 - 2014-04-20 20:28 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-20 20:29 - 2014-04-20 20:28 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-20 20:29 - 2014-04-20 20:28 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-20 20:26 - 2014-04-20 20:26 - 30818216 _____ (Oracle Corporation) C:\Users\Gavin\Downloads\jre-7u55-windows-x64.exe
2014-04-17 14:36 - 2014-04-19 23:27 - 00000000 ____D () C:\Users\Gavin\Desktop\Mucke
2014-04-17 12:29 - 2014-04-17 12:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files\iTunes
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files\iPod
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-17 12:25 - 2014-04-17 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-16 22:50 - 2014-04-16 22:50 - 00002233 _____ () C:\Users\Gavin\Desktop\Play withSIX.lnk
2014-04-16 22:50 - 2014-04-16 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Six Networks
2014-04-16 22:49 - 2014-04-16 23:23 - 00000000 ____D () C:\Users\Gavin\AppData\Local\SIX Networks
2014-04-16 22:49 - 2014-04-16 22:49 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\SIX Networks
2014-04-16 22:49 - 2014-04-16 22:49 - 00000000 ____D () C:\ProgramData\SIX Networks
2014-04-16 22:47 - 2014-04-16 22:47 - 11209040 _____ (SIX Networks) C:\Users\Gavin\Downloads\withSIX-Play.exe
2014-04-16 13:56 - 2014-04-16 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 13:56 - 2014-04-16 13:56 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-10 08:42 - 2014-04-10 08:42 - 00000222 _____ () C:\Users\Gavin\Desktop\Nether.url
2014-04-09 23:49 - 2014-04-09 23:50 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-09 23:17 - 2014-04-09 23:17 - 00000222 _____ () C:\Users\Gavin\Desktop\APB Reloaded.url
2014-04-09 17:13 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 17:12 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 17:12 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-09 17:12 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-09 17:12 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-09 17:12 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-09 17:12 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 17:12 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 17:12 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-09 17:12 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-09 17:12 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-09 17:12 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-09 17:12 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 17:12 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 17:12 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 17:12 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-09 17:12 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-05 01:47 - 2014-04-07 07:39 - 00000036 _____ () C:\Users\Gavin\Desktop\bots.txt
2014-03-31 02:28 - 2014-03-31 02:28 - 00000000 ____D () C:\Ubisoft
2014-03-31 02:27 - 2014-04-07 18:09 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-03-31 02:27 - 2014-04-07 18:09 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Deployment
2014-03-31 02:27 - 2014-03-31 02:27 - 00000332 _____ () C:\Users\Gavin\Desktop\Ghost Recon Online (EU).appref-ms
2014-03-31 02:27 - 2014-03-31 02:27 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Apps\2.0
2014-03-31 02:26 - 2014-03-31 02:26 - 04212280 _____ (DevAge, Vestris Inc. & Contributors) C:\Users\Gavin\Downloads\GhostReconOnline_Setup(EU).exe
2014-03-29 21:04 - 2014-04-20 20:27 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-28 23:38 - 2014-03-28 23:38 - 00001190 _____ () C:\Users\Public\Desktop\Dead Space.lnk
2014-03-28 23:38 - 2014-03-28 23:38 - 00000000 ____D () C:\Users\Gavin\Documents\Electronic Arts
2014-03-28 23:38 - 2014-03-28 23:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space
2014-03-28 18:27 - 2014-03-28 18:27 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Awesomium
2014-03-28 18:26 - 2014-03-28 18:26 - 00002033 _____ () C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
2014-03-28 18:26 - 2014-03-28 18:26 - 00002024 _____ () C:\Users\Public\Desktop\Smite.lnk
2014-03-28 18:26 - 2014-03-28 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2014-03-28 18:24 - 2014-03-28 18:24 - 39967251 _____ (Hi-Rez Studios) C:\Users\Gavin\Downloads\InstallHiRezGamesEnglish.exe
2014-03-27 20:20 - 2014-03-27 20:20 - 00001944 _____ () C:\Users\Public\Desktop\Metin2.lnk
2014-03-27 20:20 - 2014-03-27 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-03-27 20:10 - 2014-04-24 19:26 - 00000000 ____D () C:\Users\Gavin\Downloads\Gameforge Live
2014-03-27 20:10 - 2014-04-10 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-03-27 20:10 - 2014-04-10 09:54 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-03-27 20:10 - 2014-03-27 20:10 - 20152104 _____ (Gameforge ) C:\Users\Gavin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-03-27 20:10 - 2014-03-27 20:10 - 00001067 _____ () C:\Users\Public\Desktop\Gameforge Live.lnk
2014-03-27 20:10 - 2014-03-27 20:10 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Gameforge4d

==================== One Month Modified Files and Folders =======

2014-04-26 19:46 - 2014-04-26 19:46 - 00019491 _____ () C:\Users\Gavin\Downloads\FRST.txt
2014-04-26 19:46 - 2014-04-26 19:45 - 00000000 ____D () C:\FRST
2014-04-26 19:45 - 2014-04-26 19:45 - 02061824 _____ (Farbar) C:\Users\Gavin\Downloads\FRST64.exe
2014-04-26 19:29 - 2012-04-07 17:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-26 19:17 - 2014-04-26 19:15 - 00004253 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-26 19:17 - 2013-12-31 16:14 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-26 19:17 - 2012-03-10 00:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-26 19:16 - 2012-08-15 18:30 - 00000000 ____D () C:\Users\Gavin\AppData\Local\LogMeIn Hamachi
2014-04-26 19:16 - 2012-03-09 21:33 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\TS3Client
2014-04-26 19:06 - 2009-07-14 06:45 - 00021856 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-26 19:06 - 2009-07-14 06:45 - 00021856 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-26 19:03 - 2012-03-09 19:32 - 01397720 _____ () C:\Windows\WindowsUpdate.log
2014-04-26 19:00 - 2014-03-23 19:43 - 00000000 ___RD () C:\Users\Gavin\Google Drive
2014-04-26 18:59 - 2014-03-23 19:42 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-26 18:59 - 2012-03-09 20:10 - 00000272 _____ () C:\Windows\lgfwup.ini
2014-04-26 18:59 - 2012-03-09 20:09 - 00000000 ____D () C:\Program Files (x86)\lg_fwupdate
2014-04-26 18:58 - 2014-04-26 18:58 - 00001994 _____ () C:\Windows\PFRO.log
2014-04-26 18:58 - 2014-04-26 15:06 - 00000715 _____ () C:\Windows\setupact.log
2014-04-26 18:58 - 2012-03-09 20:02 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-26 18:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-26 18:53 - 2014-03-23 19:42 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-26 17:10 - 2013-01-20 02:31 - 00000000 ____D () C:\Users\Gavin\Hiddenkal Client
2014-04-26 17:10 - 2013-01-12 18:15 - 00000000 ____D () C:\Users\Gavin\Desktop\Hiddenkal Client
2014-04-26 17:10 - 2012-07-29 01:08 - 00000000 ____D () C:\Program Files (x86)\vGrabber-software
2014-04-26 17:08 - 2012-07-31 16:15 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-04-26 15:07 - 2012-05-09 16:38 - 00068608 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2014-04-26 15:06 - 2014-04-26 15:06 - 00022016 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2014-04-26 15:06 - 2014-04-26 15:06 - 00001978 _____ () C:\Users\Public\Desktop\G Data InternetSecurity.lnk
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data InternetSecurity
2014-04-26 15:06 - 2014-04-26 15:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-26 15:06 - 2012-05-09 16:37 - 00065024 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2014-04-26 15:06 - 2012-05-09 16:37 - 00064000 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2014-04-26 15:05 - 2012-05-09 16:37 - 00135168 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2014-04-26 15:05 - 2012-05-09 16:37 - 00057344 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2014-04-26 15:04 - 2014-04-26 15:04 - 00002058 _____ () C:\Windows\DPINST.LOG
2014-04-26 15:04 - 2012-05-09 16:37 - 00000000 ____D () C:\ProgramData\G DATA
2014-04-26 15:03 - 2012-08-20 16:54 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Skype
2014-04-26 14:20 - 2014-04-26 14:20 - 00091360 _____ () C:\Users\Gavin\Documents\cc_20140426_142012.reg
2014-04-26 14:16 - 2012-12-17 23:30 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\FileZilla
2014-04-26 14:14 - 2013-02-21 16:29 - 00000000 ____D () C:\Windows\Minidump
2014-04-26 14:14 - 2012-03-13 18:45 - 00000000 ____D () C:\Users\Gavin\AppData\Local\CrashDumps
2014-04-26 14:14 - 2012-03-09 19:29 - 00000000 ____D () C:\Windows\Panther
2014-04-26 14:03 - 2012-08-22 11:56 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-26 14:03 - 2012-08-22 11:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
2014-04-26 14:03 - 2012-08-22 11:56 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-25 15:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-24 19:26 - 2014-03-27 20:10 - 00000000 ____D () C:\Users\Gavin\Downloads\Gameforge Live
2014-04-24 14:50 - 2013-08-31 20:30 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Akamai
2014-04-23 02:28 - 2012-03-09 23:47 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-04-23 02:28 - 2012-03-09 22:08 - 00290776 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-04-23 02:26 - 2012-03-09 22:08 - 00281288 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-04-22 07:17 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-21 22:03 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-20 20:32 - 2012-03-17 21:18 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Adobe
2014-04-20 20:28 - 2014-04-20 20:29 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-20 20:28 - 2014-04-20 20:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-20 20:28 - 2014-04-20 20:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-20 20:28 - 2014-04-20 20:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-20 20:27 - 2014-03-29 21:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-20 20:26 - 2014-04-20 20:26 - 30818216 _____ (Oracle Corporation) C:\Users\Gavin\Downloads\jre-7u55-windows-x64.exe
2014-04-20 16:48 - 2011-04-12 09:43 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-04-20 16:48 - 2011-04-12 09:43 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-04-20 16:48 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-19 23:27 - 2014-04-17 14:36 - 00000000 ____D () C:\Users\Gavin\Desktop\Mucke
2014-04-18 23:37 - 2013-12-26 11:43 - 00000000 ____D () C:\Users\Gavin\AppData\Local\DayZ
2014-04-17 12:29 - 2014-04-17 12:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-04-17 12:29 - 2013-02-19 19:49 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files\iTunes
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files\iPod
2014-04-17 12:28 - 2014-04-17 12:28 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-17 12:26 - 2013-02-19 19:46 - 00000000 ____D () C:\ProgramData\Apple
2014-04-17 12:25 - 2014-04-17 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-04-16 23:31 - 2013-09-04 14:33 - 00000000 ____D () C:\Users\Gavin\Documents\Arma 3
2014-04-16 23:31 - 2013-09-04 14:33 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Arma 3
2014-04-16 23:23 - 2014-04-16 22:49 - 00000000 ____D () C:\Users\Gavin\AppData\Local\SIX Networks
2014-04-16 23:23 - 2012-06-06 20:38 - 00000000 ____D () C:\Users\Gavin\AppData\Local\ArmA 2 OA
2014-04-16 23:19 - 2012-10-24 22:57 - 00000000 ____D () C:\Users\Gavin\Documents\ArmA 2
2014-04-16 22:50 - 2014-04-16 22:50 - 00002233 _____ () C:\Users\Gavin\Desktop\Play withSIX.lnk
2014-04-16 22:50 - 2014-04-16 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Six Networks
2014-04-16 22:49 - 2014-04-16 22:49 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\SIX Networks
2014-04-16 22:49 - 2014-04-16 22:49 - 00000000 ____D () C:\ProgramData\SIX Networks
2014-04-16 22:47 - 2014-04-16 22:47 - 11209040 _____ (SIX Networks) C:\Users\Gavin\Downloads\withSIX-Play.exe
2014-04-16 22:47 - 2012-05-09 16:34 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Downloaded Installations
2014-04-16 13:56 - 2014-04-16 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-04-16 13:56 - 2014-04-16 13:56 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-16 13:56 - 2012-08-29 15:47 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-04-14 20:13 - 2014-04-26 19:17 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-26 19:17 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-26 19:17 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-26 19:17 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-11 16:30 - 2012-04-07 17:48 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-11 16:30 - 2012-04-07 17:48 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-11 16:30 - 2012-03-09 21:52 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-10 09:54 - 2014-03-27 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2014-04-10 09:54 - 2014-03-27 20:10 - 00000000 ____D () C:\Program Files (x86)\GameforgeLive
2014-04-10 08:52 - 2012-07-06 23:58 - 00000000 ____D () C:\Users\Gavin\Documents\My Games
2014-04-10 08:42 - 2014-04-10 08:42 - 00000222 _____ () C:\Users\Gavin\Desktop\Nether.url
2014-04-10 08:42 - 2012-07-31 16:19 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-10 03:05 - 2013-08-18 19:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 03:01 - 2012-03-23 16:29 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 23:57 - 2012-03-09 23:47 - 00000000 ____D () C:\Users\Gavin\AppData\Local\PunkBuster
2014-04-09 23:50 - 2014-04-09 23:49 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-09 23:49 - 2012-03-09 22:08 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-04-09 23:17 - 2014-04-09 23:17 - 00000222 _____ () C:\Users\Gavin\Desktop\APB Reloaded.url
2014-04-07 18:09 - 2014-03-31 02:27 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-04-07 18:09 - 2014-03-31 02:27 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Deployment
2014-04-07 07:39 - 2014-04-05 01:47 - 00000036 _____ () C:\Users\Gavin\Desktop\bots.txt
2014-04-01 14:02 - 2012-04-27 11:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-31 09:35 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-31 02:28 - 2014-03-31 02:28 - 00000000 ____D () C:\Ubisoft
2014-03-31 02:27 - 2014-03-31 02:27 - 00000332 _____ () C:\Users\Gavin\Desktop\Ghost Recon Online (EU).appref-ms
2014-03-31 02:27 - 2014-03-31 02:27 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Apps\2.0
2014-03-31 02:26 - 2014-03-31 02:26 - 04212280 _____ (DevAge, Vestris Inc. & Contributors) C:\Users\Gavin\Downloads\GhostReconOnline_Setup(EU).exe
2014-03-28 23:38 - 2014-03-28 23:38 - 00001190 _____ () C:\Users\Public\Desktop\Dead Space.lnk
2014-03-28 23:38 - 2014-03-28 23:38 - 00000000 ____D () C:\Users\Gavin\Documents\Electronic Arts
2014-03-28 23:38 - 2014-03-28 23:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space
2014-03-28 23:38 - 2012-03-09 21:35 - 00000000 ____D () C:\ProgramData\Origin
2014-03-28 23:38 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-03-28 23:13 - 2012-03-09 21:35 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-03-28 23:13 - 2012-03-09 21:35 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-03-28 18:27 - 2014-03-28 18:27 - 00000000 ____D () C:\Users\Gavin\AppData\Roaming\Awesomium
2014-03-28 18:26 - 2014-03-28 18:26 - 00002033 _____ () C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
2014-03-28 18:26 - 2014-03-28 18:26 - 00002024 _____ () C:\Users\Public\Desktop\Smite.lnk
2014-03-28 18:26 - 2014-03-28 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2014-03-28 18:26 - 2012-07-06 23:25 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-03-28 18:26 - 2012-07-06 23:25 - 00000000 ____D () C:\Program Files (x86)\Hi-Rez Studios
2014-03-28 18:26 - 2012-03-09 20:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-28 18:24 - 2014-03-28 18:24 - 39967251 _____ (Hi-Rez Studios) C:\Users\Gavin\Downloads\InstallHiRezGamesEnglish.exe
2014-03-27 20:20 - 2014-03-27 20:20 - 00001944 _____ () C:\Users\Public\Desktop\Metin2.lnk
2014-03-27 20:20 - 2014-03-27 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2
2014-03-27 20:10 - 2014-03-27 20:10 - 20152104 _____ (Gameforge ) C:\Users\Gavin\Downloads\Metin2_GameforgeLiveSetup.exe
2014-03-27 20:10 - 2014-03-27 20:10 - 00001067 _____ () C:\Users\Public\Desktop\Gameforge Live.lnk
2014-03-27 20:10 - 2014-03-27 20:10 - 00000000 ____D () C:\Users\Gavin\AppData\Local\Gameforge4d
2014-03-27 13:48 - 2014-03-23 19:42 - 00004104 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-27 13:48 - 2014-03-23 19:42 - 00003852 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\Gavin\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-25 15:05

==================== End Of Log ============================

--- --- ---

Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-04-2014 03
Ran by Gavin at 2014-04-26 19:46:40
Running from C:\Users\Gavin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: G Data InternetSecurity (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G Data InternetSecurity (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G Data Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}

==================== Installed Programs ======================

Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Any Video Converter 3.5.6 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Arma 3 Beta (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
ASRock App Charger v1.0.4 (HKLM\...\ASRock App Charger_is1) (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.27 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version:  - )
ASRock InstantBoot v1.26 (HKLM-x32\...\ASRock InstantBoot_is1) (Version:  - )
ASUS nVidia Driver (x32 Version: 1.00.0000 - ASUSTek) Hidden
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )
AVM FRITZ!DSL (HKLM-x32\...\FRITZ!DSL) (Version:  - )
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.4.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CAE Report Generator v1.1 (HKLM-x32\...\{F7849D41-0A46-457D-827D-00FF47AF2D85}_is1) (Version:  - )
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 3.21 - Piriform)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version:  - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0314 - DT Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.96 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.96 - Etron Technology) Hidden
EVE Online (remove only) (HKLM-x32\...\EVE) (Version:  - CCP Games Ltd.)
FileZilla Client 3.6.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube to MP3 Converter version 3.11.24.608 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.24.608 - DVDVideoSoft Ltd.)
FRITZ!Box (HKLM-x32\...\AVMFBox) (Version:  - )
G Data InternetSecurity (HKLM-x32\...\{85203592-3610-4FB9-AA11-15B2255B5A12}) (Version: 25.0.1.2 - G Data Software AG)
Gameforge Live 2.0.1 "Baby Genius" (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.1 - Gameforge)
Ghost Recon Online (EU) (HKCU\...\d8be6c3f847d7d92) (Version: 1.35.3440.2 - Ubisoft)
Google Drive (HKLM-x32\...\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}) (Version: 1.14.6059.644 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version:  - )
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LG CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3109 - CyberLink Corp.)
LG CyberLink LabelPrint (x32 Version: 2.5.3109 - CyberLink Corp.) Hidden
LG CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.4009 - CyberLink Corp.)
LG CyberLink Power2Go (x32 Version: 6.2.4009 - CyberLink Corp.) Hidden
LG CyberLink PowerBackup (HKLM-x32\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.5529 - CyberLink Corp.)
LG CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3304a - CyberLink Corp.)
LG CyberLink YouCam (x32 Version: 2.0.3304a - CyberLink Corp.) Hidden
LG ODD Auto Firmware Update (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
LG Power Tools (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3316 - CyberLink Corp.)
LG Power Tools (x32 Version: 6.0.3316 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{705B639E-FAAF-40D7-AD58-C445321C7C3F}) (Version: 1.18.18.1 - LightScribe)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.188 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.188 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Metin2 (HKLM-x32\...\Metin2_is1) (Version:  - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
NC Launcher (GameForge) (HKLM-x32\...\NCLauncher_GameForge) (Version:  - NCsoft)
Nether (HKLM-x32\...\Steam App 247730) (Version:  - Phosphor Games)
Nexon Game Manager (HKLM-x32\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version:  - )
NVIDIA 3D Vision Controller Driver (x32 Version: 267.67 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller-Treiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 314.22 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 314.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 314.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.115.743 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1422 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 314.22 (Version: 314.22 - NVIDIA Corporation) Hidden
NVIDIA Update 1.12.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.12.12 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.12.12 - NVIDIA Corporation) Hidden
OpenOffice.org 3.3 (HKLM-x32\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4554 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{E46894B8-52C3-452E-86A2-D60BC6E650DA}) (Version: 0.43.251 - Overwolf)
PDF24 Creator 5.6.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Pelles C for Windows (HKLM-x32\...\PellesC) (Version: 7.00 - Pelle Orinius)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Six Updater (HKLM-x32\...\{2D8CED57-CCDB-4D86-9087-3BBCAE8F8F22}) (Version: 2.09.7038 - Six Projects)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2107.0 - Hi-Rez Studios)
Sound Blaster X-Fi MB (HKLM-x32\...\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}) (Version: 1.0 - Creative Technology Limited)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - )
Splashtop Connect IE (HKLM-x32\...\{F9F5EF72-18CF-4DCF-A721-EC86B94DAC46}) (Version: 1.1.12.1 - Splashtop Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
tConfig version 0.23.9 (HKLM-x32\...\{224E185A-DCC7-45C5-B04D-77E6CE82D83E}_is1) (Version: 0.23.9 - Surfpup)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.13989 - TeamViewer)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vegas Movie Studio HD Platinum 10.0 (HKLM-x32\...\{40AE01BE-A290-4FFB-8DAB-C624C17DC87E}) (Version: 10.0.179 - Sony)
War Thunder Launcher 1.0.1.322 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - 2013 Gaijin Entertainment Corporation)
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM-x32\...\x264vfw) (Version:  - )
XFastUsb (HKLM-x32\...\XFastUsb) (Version:  - )
XSManager (HKLM-x32\...\XSManager) (Version: 3.2 - XSManager)

==================== Restore Points  =========================

25-04-2014 08:56:47 Windows Update
26-04-2014 17:15:21 Installed Java 7 Update 55

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {057F4C2B-CFDB-49D0-952E-79A88AB88B65} - System32\Tasks\{991A7A28-EA12-44EA-9CA3-91482B334EBD} => C:\Valve\Condition Zero\czero.exe
Task: {075B1F81-2649-4AAB-90DB-FC68AA4B0C15} - System32\Tasks\{8C147474-26F6-44AA-80D0-7A22598808BB} => C:\Valve\Condition Zero\czero.exe
Task: {0B520009-916C-483B-AD9D-C5B5A9ABEEAA} - System32\Tasks\{C8A1D727-0984-4350-B87A-66DD39EE3830} => C:\Valve\Condition Zero\czero.exe
Task: {16052239-F396-4396-9697-40799609A967} - System32\Tasks\{08474DA3-30EE-4D75-8A77-AE5B5000024D} => C:\Valve\Condition Zero\czero.exe
Task: {17F33F44-0FB1-4BA1-98E0-3DF07F3DB3F1} - System32\Tasks\{7E5BDC09-8ECD-4B00-8504-49D8F9A076FD} => C:\Program Files (x86)\Ascaron Entertainment\Sacred\Sacred.exe
Task: {1BFB2CF2-26E3-49FF-9236-5A8CA17FD6F6} - System32\Tasks\{2015B323-E3D8-4879-A02B-C0632E85DDF6} => C:\InixSoft\KalOnline\KalOnline.exe
Task: {21DAD591-FB3B-4D59-B88A-C5A0370AA3BF} - System32\Tasks\{BD561D10-906A-469E-AAA4-A8725C4E93A8} => C:\Valve\Condition Zero\czero.exe
Task: {274ADCF8-E6E8-4C3B-B749-E9D3E789F807} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-23] (Google Inc.)
Task: {378762FB-8511-47EC-8330-1AA61775F2CA} - System32\Tasks\{6206033F-B0EF-46B1-954D-CE850E87BA4F} => C:\Valve\Condition Zero\czero.exe
Task: {3FC11F5C-800A-4D7D-9939-30A50D4CDF74} - System32\Tasks\{CB18810F-E300-4526-9154-A04E4001F4C6} => C:\InixSoft\KalOnline\KalOnline.exe
Task: {45F1FCEA-CFBD-478F-A63E-18A0FE364542} - System32\Tasks\{7A7D7D9E-DFD3-473F-B456-4FD86CFBA462} => C:\Valve\Condition Zero\czero.exe
Task: {5C383DCB-2205-4F7F-AC46-34F238A0DE61} - System32\Tasks\{2E07101B-AC2C-4FA1-810C-7437D9E786D7} => C:\InixSoft\KalOnline\KalOnline.exe
Task: {5FD1C41E-EBB3-400D-96C7-1F121FC213C3} - System32\Tasks\{8818F09C-BAD6-4CD7-AD48-8A59D1166D81} => C:\Program Files (x86)\Ascaron Entertainment\Sacred\Sacred.exe
Task: {61665D32-471E-42DC-8A22-D688103B597C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {685553E8-D5AD-4F27-B3AC-A67B440667F0} - System32\Tasks\{824E063F-4815-4935-8974-9D6F785A7BC6} => C:\Valve\Condition Zero\czero.exe
Task: {6F0581A7-3D71-4D9C-BE31-8B948FD2CF06} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {74AD7691-B116-4B7F-8BA3-AE5794CF9314} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {795B06EF-84D9-4FCE-9825-82A65CD7D4CD} - System32\Tasks\{3BA27A74-F9E5-4CB6-B216-842D972E07FA} => C:\Valve\Condition Zero\czero.exe
Task: {7D210A6D-FFFF-4BA1-9A27-BEF0F13A4407} - System32\Tasks\{00FFC741-A0F7-4D69-865B-C710BF454E77} => C:\Users\Gavin\Desktop\KalOnline - Kopie - Kopie\KalOnline.exe [2010-10-13] ()
Task: {80EED95F-AB24-4B5C-9F6B-6F063BC89CB7} - System32\Tasks\{6C0AE2FE-75E0-4638-945F-F2A784148CF7} => C:\Valve\Condition Zero\czero.exe
Task: {9371CE19-4B78-49B6-98CB-4A249086A5E7} - System32\Tasks\{8DEF5923-5FED-4AE6-B989-6BA95BCD67BF} => C:\Valve\Condition Zero\czero.exe
Task: {981E3341-F099-4B91-B0C5-E3DD7ECE027C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-07-24] (Piriform Ltd)
Task: {B40A0CBD-1581-4B9A-B8CA-45E9E685E8B2} - System32\Tasks\{0183B989-86AB-4C10-B988-BF740288DA8B} => C:\InixSoft\KalOnline\KalOnline.exe
Task: {C00205FC-A137-4F92-A16A-9032281F75C1} - System32\Tasks\{028F5BC8-A977-4EB5-92CB-80685033F48B} => C:\Valve\Condition Zero\czero.exe
Task: {D17E86ED-44CE-49B1-9446-0DFCB214FC5D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-23] (Google Inc.)
Task: {D59D23B7-A0D7-41B2-9984-38192A1D80A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-11] (Adobe Systems Incorporated)
Task: {DDDF897B-8283-498B-ABA4-0EF53819F255} - System32\Tasks\{3416EF3F-65D4-4B75-8D5F-E2EEC26B4387} => C:\Program Files (x86)\Ascaron Entertainment\Sacred\Sacred.exe
Task: {E271DD5F-E5FF-49E8-89EC-30AEDE859510} - System32\Tasks\{0B5D79B8-E83A-4DD3-BBD2-7846A7BC4EBD} => C:\Valve\Condition Zero\czero.exe
Task: {E31987B5-7AB1-4F22-99E2-FC9466962718} - System32\Tasks\{828F8220-C64C-4293-9820-8591592B8CDA} => C:\Program Files (x86)\Ascaron Entertainment\Sacred\Sacred.exe
Task: {E5AB07F7-E673-4053-A781-50C39BF269B9} - System32\Tasks\{5E1DA225-D2DD-47C4-ADF8-596C2344ABD6} => C:\Valve\Condition Zero\czero.exe
Task: {EAAF0E24-8BA3-4598-AB5E-B6E64BCC4780} - System32\Tasks\{6A4E6BC9-3C16-4CD5-B516-9C3DD2FA3F2E} => C:\Program Files (x86)\Ascaron Entertainment\Sacred\Sacred.exe
Task: {FE93273A-94E0-4B75-999F-CF506D9A96B1} - System32\Tasks\{DE3929B5-73DA-42CE-86F4-93A0EEDF49DC} => C:\Program Files (x86)\Anno 1701\Anno1701.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-03-10 00:01 - 2013-03-15 06:16 - 00086304 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2012-06-04 18:51 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2012-03-09 22:08 - 2014-04-09 23:49 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-02-12 12:05 - 2013-05-06 15:45 - 00329848 ____N () C:\Program Files (x86)\XSManager\WTGService.exe
2013-12-19 04:42 - 2013-12-19 04:42 - 00350840 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 00173568 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 01080832 _____ () C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 00833024 _____ () C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2012-02-15 12:33 - 2014-03-14 13:54 - 00102344 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2012-02-15 12:33 - 2014-03-14 13:54 - 00108488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 00030208 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 00233984 _____ () C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2012-02-15 12:33 - 2014-03-14 13:54 - 00563656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-09 18:28 - 2014-03-14 13:54 - 00577480 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-03-14 13:54 - 2014-03-14 13:54 - 00159232 _____ () C:\Program Files\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-03-09 21:25 - 2005-03-04 12:47 - 00155648 _____ () C:\Program Files (x86)\FRITZ!DSL\SSLEAY32.dll
2012-03-09 21:25 - 2005-03-04 12:46 - 00790528 _____ () C:\Program Files (x86)\FRITZ!DSL\LIBEAY32.dll
2010-08-16 14:21 - 2010-08-16 14:21 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2010-08-16 14:21 - 2010-08-16 14:21 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2010-08-16 14:21 - 2010-08-16 14:21 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2009-12-15 14:46 - 2009-12-15 14:46 - 00619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-12-15 14:49 - 2009-12-15 14:49 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-04-26 18:59 - 2014-04-26 18:59 - 00697884 _____ () C:\Users\Gavin\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0000\~df394b.tmp
2014-04-26 18:59 - 2014-04-26 18:59 - 00592896 _____ () C:\Users\Gavin\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001.dir.0000\~de6248.tmp
2012-03-09 20:51 - 2009-02-06 19:52 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2012-03-09 20:51 - 2009-04-20 12:55 - 00148480 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-03-29 21:04 - 2014-03-29 21:05 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-02-21 18:28 - 2014-04-14 20:07 - 00018856 _____ () C:\Program Files (x86)\Java\jre7\bin\jp2native.dll
2014-04-11 16:30 - 2014-04-11 16:30 - 16351920 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:CE2C623F

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^Gavin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk => C:\Windows\pss\OpenOffice.org 3.3.lnk.Startup
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/26/2014 07:00:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 02:10:30 PM) (Source: Application Hang) (User: )
Description: Programm mbam-setup.tmp, Version 51.52.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1094

Startzeit: 01cf614776ad34b6

Endzeit: 2

Anwendungspfad: C:\Users\Gavin\AppData\Local\Temp\is-EQBF6.tmp\mbam-setup.tmp

Berichts-ID:

Error: (04/26/2014 01:59:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 05:59:33 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Name des fehlerhaften Moduls: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Ausnahmecode: 0xc0000094
Fehleroffset: 0x00adbfdb
ID des fehlerhaften Prozesses: 0x1e94
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3

Error: (04/25/2014 05:59:09 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Name des fehlerhaften Moduls: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Ausnahmecode: 0xc0000094
Fehleroffset: 0x00adbfdb
ID des fehlerhaften Prozesses: 0x1e5c
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3

Error: (04/25/2014 05:58:16 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Name des fehlerhaften Moduls: Skype.exe, Version: 6.3.0.105, Zeitstempel: 0x512fa5e2
Ausnahmecode: 0xc0000094
Fehleroffset: 0x00adbfdb
ID des fehlerhaften Prozesses: 0x3f8
Startzeit der fehlerhaften Anwendung: 0xSkype.exe0
Pfad der fehlerhaften Anwendung: Skype.exe1
Pfad des fehlerhaften Moduls: Skype.exe2
Berichtskennung: Skype.exe3

Error: (04/25/2014 03:07:41 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/25/2014 03:07:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (04/25/2014 10:31:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/24/2014 01:47:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (04/26/2014 07:01:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (04/26/2014 07:01:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (04/26/2014 06:59:15 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (04/26/2014 06:59:12 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (04/26/2014 06:58:44 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Windows\SysWow64\drivers\SSHDRV79.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (04/26/2014 02:00:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (04/26/2014 02:00:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (04/26/2014 01:58:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (04/26/2014 01:58:33 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (04/26/2014 01:57:53 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Windows\SysWow64\drivers\SSHDRV79.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.


Microsoft Office Sessions:
=========================
Error: (04/26/2014 07:00:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/26/2014 02:10:30 PM) (Source: Application Hang)(User: )
Description: mbam-setup.tmp51.52.0.0109401cf614776ad34b62C:\Users\Gavin\AppData\Local\Temp\is-EQBF6.tmp\mbam-setup.tmp

Error: (04/26/2014 01:59:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/25/2014 05:59:33 PM) (Source: Application Error)(User: )
Description: Skype.exe6.3.0.105512fa5e2Skype.exe6.3.0.105512fa5e2c000009400adbfdb1e9401cf609f4e1f7d07C:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\Skype\Phone\Skype.exe97554b5e-cc92-11e3-b2ea-bc5ff40a229e

Error: (04/25/2014 05:59:09 PM) (Source: Application Error)(User: )
Description: Skype.exe6.3.0.105512fa5e2Skype.exe6.3.0.105512fa5e2c000009400adbfdb1e5c01cf609f2ee1e64dC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\Skype\Phone\Skype.exe88f6098f-cc92-11e3-b2ea-bc5ff40a229e

Error: (04/25/2014 05:58:16 PM) (Source: Application Error)(User: )
Description: Skype.exe6.3.0.105512fa5e2Skype.exe6.3.0.105512fa5e2c000009400adbfdb3f801cf609bd3f61b6fC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\Skype\Phone\Skype.exe6925a68e-cc92-11e3-b2ea-bc5ff40a229e

Error: (04/25/2014 03:07:41 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (04/25/2014 03:07:37 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (04/25/2014 10:31:24 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/24/2014 01:47:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-04-26 18:59:15.921
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 18:59:15.874
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 18:59:12.395
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 18:59:12.348
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 13:58:35.972
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 13:58:35.922
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 13:58:33.462
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-26 13:58:33.422
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-25 10:30:18.197
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-04-25 10:30:18.147
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\lirsgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 29%
Total physical RAM: 8174.69 MB
Available physical RAM: 5738.46 MB
Total Pagefile: 16347.55 MB
Available Pagefile: 13284.13 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:147.33 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 1120EDC4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================

schrauber · 27.04.2014, 18:12

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Mozilla Firefox öffnet neue Tabs

Plagegeister aller Art und deren Bekämpfung: Mozilla Firefox öffnet neue Tabs